02:34:22 *I* am not even sure how to do system administration anymore with all these new technologies. 02:34:59 if I were an AI bot trying to mimic what I see currently, I'd be blending together random buzzwords into a blender and pouring the soup on top of linux 02:35:28 "grafana and prometheus on the kubernetes cluster to manage our docker containers on the AWS EC2 instance" 02:37:15 replace yourself with ai 02:37:20 I mean, if they want to do that, good for them, they can have their tech stack. Meanwhile i'm stuck in the year 2005 with FreeBSD/Nginx/Postgres/PHP or python or something 02:37:34 and more mentally stable because of it 02:39:12 well it all kind of sucks indeee 02:39:15 indeed 02:39:37 where's security in 1000 js libs from github? 02:39:48 it's in Rust 02:39:54 if you rewrite it all in rust, it'll be flawless 02:39:55 good for hackers :p 02:40:04 the issue is those memory corruption buggers 02:40:26 we can trust 4000 randoms on the internet whose libraries we depend upon 02:40:41 it's not like there were ever any backdoored npm modules before 02:40:44 wait 02:41:31 there are also examples how you could get libs easily installed with curl | sh 02:41:34 :p 02:41:38 awesome 03:08:13 increase libraries and other peoples great work and in the same time increase copmlexity with liability.. fun times 03:21:26 sshd patch appeared, fyi 03:21:33 polarian: ? 03:21:39 :p 08:40:00 o/ braindumped what it takes to develop elixir on freebsd. might be useful to some, if there are glairing issues, shout. https://mh.8by3.net/posts/elixir-bsd/ 10:06:10 for GigaByte GeForce RTX 4090 OC, can I get something like nvidiafb with small text--what would I need to install? I installed nvidia-driver, nvidia-drm, but it's very large text, and the 4K monitor sets to something like 1024x768 and the other two monitors don't turn on, in XFCE 12:47:59 looks like I need a USB-C <> NVMe M.2 adapter 12:48:35 doesn't need to be fast, just needs to work. Is it likely most anything will be fine? 12:49:59 sbr: I'm the lang/elixir (and related ports) maintainer, and also responsible for the tailwind monstrosity 12:53:37 post looks great to me, sbr, thanks for sharing the BSD love :D 13:34:26 Nice, didn't even consider to check channel members to see if that dch was here ;-). I knew I had to thank you for tailwinds, didn't realise it was elixir on fbsd in general! I owe you beer or non alcoholic beverage of choice next time I am in Austria (not likey soon). Really appreciate the effort to make FBSD a first class elixir platform. 15:48:57 ketas: yeah the patch hit this morning 15:49:07 I saw the security advisory hit my email 15:49:17 only took them like 3 days longer than *Linux distros and OpenBSD :P 15:50:40 also I assume the ? was about my previous message, you geli can do passphrase on its own, keyfile or both, I am setting up a server which needs to boot unattended, I believe TPM was recently merged into geli but there is no docs on this nor does the hardware support it, so that leaves keyfile (a 64 byte random key on a usb stick which is used to decrypt the server disks. 15:50:58 problem is, I am not sure keyfile is supported within the installation media, if it is I cant figure out how to do it 15:51:15 I know how to do it manually using the command line, but that means doing the entire freebsd install manually then 15:51:34 which is fine, just not too sure how to do it (does anyone have a guide on this they can share?) 17:51:21 Hello. I have a question about amdgpu driver on FreeBSD; did anyone tried to undervolt a Navi2 GPU? I was trying to look around how to pass amdgpu.ppfeaturemask param to the kernel, so it would be possible to adjust voltages. Anyone tried that? 18:00:21 polarian: afaik there should be a way in the installer to just setup the disks manually and then let it continue 18:15:56 nimaje: I will look into it 18:16:22 Meanwhile another issue, i915kms still is broken in 14.2-RELEASE :/ 18:16:35 trying to load the module causes a black screen 18:16:45 14.1-RELEASE works just fine but will hit EOL in a few months :/ 18:16:52 wait I think its next month 18:17:14 I wonder if it could be due to libreboot 18:26:09 it is because kernel abis aren't completly stable between minor versions and so the kms kmods have to be build for the exact kernel version they are to be used for, building on 14.1 and using on 14.2 doesn't work 18:31:38 nimaje: I was told that the kmod would be starting to be built on 14.2 after a month or two 18:31:44 its been months since 14.2 why is it still being built on 14.1? 18:32:19 also better question is why the ports aren't release-specific... too much storage/compute needed to build them for each version? 18:37:19 Hey, im new to freebsd and struggling with a custom .rc file for a webdav server. I create an executable /usr/local/etc/rc.d/webdav, made it source /etc/rc.subr, added name="webdav", "rcvar=webdav_enabled", load_rc_config "$name" and run_rc_command "$1" along with command and pid file definiton. Now when i use 'service webdav start' it works as intended, however after enabling it with 'service 18:37:21 webdav enable' it doesnt run on reboot. 18:41:31 kentoj_: you do have $servicename_enabled="YES" in the rc.conf file right? 18:45:16 nimaje: so if I manaully compile i915 from the ports it should work, right? 18:45:59 yes, just compile it from ports 18:46:48 polarian: well its 'webdav_enable="YES"' but yes 18:47:11 oh yea i mistyped the message here, mb 18:50:51 polarian: abis are stable between minor releases, so building ports for each minor release would unnessesary multiply compute and storage, just some kernel intern interfaces aren't stable and some ports (like drm-kmods and vbox-kmod) use them, so those few ports should get build for each minor release and afaik someone works on making that happen, iirc it will likely land together with pkgbase 19:18:07 Problem resolved, turns out pid file is not automatically managed so it reported wrongly as i didnt create it 20:27:45 nimaje: maybe there should be an additional flag introduced such as "verdep" or something which is a version dependency, and all ports are assumed to be "any" unless this flag is set in which case the remote has a different version for each of the port to fetch 20:28:03 although that would be a major change the port system and would need a lot of development 20:28:21 but it would be useful to be able to differentiate between version specific ports, and version inspecific ports (the majority of ports) 20:33:44 well, pkgbase already needs something like that I think, but maybe it is just another repo per minor version there and pkg has no idea about the minor versions, I didn't look how it is implemented 20:40:20 WTF do I have an 800MB ~/.cargo/ directory tree? 20:40:42 I know that .cargo is a rust thing, but that doesn't answer why that file is there. 20:41:28 s/file/directory 20:46:12 why is block log all does not block the outbound connections as it should? 20:46:22 It does the incoming ports except the ones I specifically allowed 20:46:26 but outgoing is free roam 20:47:13 ~/.cargo should only be there if you used cargo, did you build anything as your user? 20:54:07 I'm about to grab the bogons file for pf... I feel like this should be a port. install the port, add the rules, done. 21:17:33 telnet: Unable to connect to remote host: No route to host 21:17:35 hmmm 21:17:41 this is how the pf blocks? 21:17:46 like no route to host lol 21:17:52 not timeout or something 21:18:02 or maybe its doing this cos i blocked icmp alltogether 21:18:15 it can drop or reject depending how it is configured 21:23:58 this is actually quite smart compared to linux if you setup stateful inbound rules for some ports with flags S/SA keep state then you dont need any stateful allow for tcp on outbound its automatic 21:31:43 isnt there a way so root cannot change the gateway period? like in securelevel 2 you cannot change the fw rules 22:22:51 not that i recall