00:55:49 <V_PauAmma_V> if gh00p comes back and I'm idle, could someone tell them a 17 years old handbook isn't going to help much and point them to https://docs.freebsd.org/en/books/handbook/jails/ instead?
01:08:13 <jauntyd> will do
02:05:09 <zwr> retro documentation
04:52:53 <TommyC> Anyone here familiar with terms & conditions? I'm not a lawyer so I was wondering if anyone here is by any chance. :3
10:05:42 <polyduekes> what are yall think about random PIDs, do you think it provides any benefit in terms of security? i think the fast PID reuse might allow remotely exploitable flaws and sequential PID might allow local-only flaws
10:18:17 <burie> How are the installer images built? I would like to make some modifications to them, but I don't want to merely modify the image, I want to be able to modify the build process of the image.
10:49:29 <tercaL> preparing to manage few VMs under FreeBSD bhyve, and focusing on implementing a good set of PF rules on the main host machine. I wanted to ask for your opinions; is it better to have pass in/out quick on vm-vmswitch all, to allow everything going to VMs and coming from VMs, and managing the strictive rules within each VM individually, or you guys would suggest me to do everything on the main host PF?
13:13:53 <polyduekes> since PF was mentioned, is it still as much of a mess it was before or something has changed? for context see
13:13:53 <polyduekes> https://vez.mrsk.me/freebsd-defaults.html
13:23:55 <polyduekes> another question btw, is sendmail disabled by default in fbsd 14.1 release?
13:31:21 <ridcully> polyduekes: since 14.0 the default mailer is dma; sendmail is still installed.  if you have updated or want to make sure, check your mailer.conf
13:32:27 <polyduekes> ridcully: thanks for the answer, i will check
13:35:43 <last1> is zfs send/receive of snapshots slow ? I transferred a dataset and it went pretty quickly
13:35:58 <last1> received 136T stream in 200121 seconds (711M/sec)
13:36:17 <last1> but now it's doing the incremental and cpu load went to 0, drives barely getting worked up
14:04:54 <dch> last1 TLDR no but if you have a lot (1000s) of snapshots this can be slow, I forget the details but its something about each snapshot needing a txn sync on the send side
14:05:15 <dch> a good tip is a zfs send > /dev/null to compare
14:05:31 <dch> and if possible zfs send > $NETWORK > /tmp/incrementals.zfs
14:05:40 <dch> and then do the recv separately to compare
14:06:40 <dch> polyduekes: security is swiss cheese, so yes it helps a bit. once your hacker is local, this could make escalating privileges to a vulnerable daemon easier
14:06:50 <dch> burie:  2 main ways to build images.
14:10:16 <dch> 1. Ye Olde Way. cd /usr/src, run buildworld and buildkernel. then cd /usr/src/release, run make memstick
14:10:55 <dch> 2. The New Way. use `poudriere image` see https://klarasystems.com/articles/building-customized-freebsd-images/ which can create a full image in any form you want, from sources with an overlay
14:11:23 <dch> I prefer 2 most of the time, but Official Releases are built via 1.
14:11:37 <dch> they're both pretty easy to set up and modify, feel free to AMA for details
14:18:53 <dch> polyduekes: I think that the consensus is that you can take that page with a grain of salt
14:20:13 <polyduekes> well i am not only talking about the page, on the mailing list as well, many people have shown their disapproval with the hurried up decision to enable multi threading
14:20:22 <polyduekes> in PF
14:20:32 <tercaL> polyduekes: Yes.
14:27:16 <dch> polyduekes: any change in FLOSS always results in an archive full of angry opinions to refer to later.
14:29:45 <dch> there are entire ISPs who rely on multicore pf for their business, at a scale far larger than most of us touch.
14:39:24 <dch> latest firefox is giving me no audio at all
14:40:31 <dch> isn't there an about:* page in firefox to tell you what multimedia info it has?
14:41:15 <dch> not talking about the about:config which lets me set e.g. media.cubeb.backend=oss
14:41:24 <dch> but one that shows what's actually chosen
14:43:04 <dch> I made sure pulseaudio can't start / isn't running
14:46:08 <dch> cat /dev/sndstat shows the correct stuff, and command line mgp123 does play
14:47:33 <dch> aaah I found the page in firefox `about:support`
14:52:51 <dch> burie: for (1), read https://man.freebsd.org/build & https://man.freebsd.org/release for the background
14:53:26 <dch> burie: for (2), https://github.com/freebsd/poudriere/wiki/poudriere-image.8-devel
15:31:40 <Demosthenex> dch: i remember finding one of those firefox setting was case sensitive to make it work
15:36:19 <last1> dch: I only have 10 snapshots but it seems to be doing *something* that's not very resource intensive
15:36:22 <last1> just taking lots of time
15:36:53 <last1> the main dataset is 136T while the snapshots are 4-5T each
17:32:59 <s2r> I would like to set up a mini PC at home with external storage since there's nowhere to plug any ssds. Has anybody got a DAS to recommend?
17:42:34 <yuripv> s2r: no pcie slots as well?
18:03:09 <s2r> yuripv, No, they are small boxes like GEM10 Mini PC or Beelink, don't want to paste the link from amazon here.
18:36:18 <scoobybejesus> asrock deskmini has two nvme and two sata, and it is tiny. I am happy with mine
18:43:45 <yuripv> s2r: so what kind of DAS are you looking for? Thunderbolt (does the box have it?)?
19:15:08 <s2r> yuripv no, at least in the ones I could find.