00:47:09 i'm tailing pflog and seeing a bunch of pass out messages, but why when the rules matching them don't have the 'log' keyword? i only have 'log' on 1 rule and it's not the rule matching these messages. my pflog tail cmd is tcpdump -e -i pflog0 -l -n -t fwiw 00:55:26 hmm 00:56:16 it's logging what's not specified? 00:56:39 rules are reloaded, right? 00:56:42 ya no "log" on these rules 00:56:44 yep 00:56:55 fresh install, fresh boot, 14.3p5 00:57:03 it's old state? 00:57:04 eh 00:57:31 got a sys you can try replicating on? 00:57:36 no 00:57:59 Can you pastebin your pf.conf and some example packets showing that behavior? 01:04:09 ya sec 01:12:24 V_PauAmma_V, https://termbin.com/8ws6 01:12:48 I'm at a loss as to what is going on here. I downloaded the mini usb image installer, installed with UFI mode, install went fine. On first boot, it still can't find init 01:12:50 there's a bit more that i left out to simplify but that's basically it. there's only ONE rule that has log on it 01:13:23 It panics, gives me errors, and reboots 01:14:22 Are there any known errors with the 14.3 images? 01:16:44 I should probably back up and fiddle in the bios. This machine had a freebsd install two years ago and it's just sat since I set that up and set it up as a backup. 01:33:58 no luck 01:53:07 kerneldove_, what does the rule that logs contain? I don't see it in your config. 01:53:59 the rule that has log in it that SHOULD be logging? 01:54:12 V_PauAmma_V, ^ 01:54:55 All rules in your pf.conf would be best. Sanitize the addresses if necessary. 01:58:26 btw i removed "log" from that rule and reloaded pf service, those log messages are still going in there lol 01:58:38 i'm just gonna chalk it up to a pf bug and move on ty though 03:53:01 ping 03:54:03 yo 03:54:16 nice! 03:54:45 what's world 03:54:52 up* 03:55:03 sad about a pf bug you? 03:55:54 I'm alright, just had a hell of a time connecting and registering with Libera 03:56:05 ya it sucks 03:56:18 miss the days when you could just /connect 03:56:35 yeah it was simpler before 03:56:55 what's your of bug 03:57:02 Spammers and trolls ruined it for everyone. 03:57:06 i'm tailing pflog and seeing a bunch of pass out messages, but why when the rules matching them don't have the 'log' keyword? https://termbin.com/8ws6. my pflog tail cmd is tcpdump -e -i pflog0 -l -n -t fwiw 03:57:25 meh there was that before. i think some ppl became hypersensitive and couldn't take the heat 03:57:31 went authoritarian 03:57:56 ppl online now never woulda made it in the 90's 03:58:35 there is also AI fucking up the internet big time 03:59:17 Yep. A lot of channels are limited to registered users specifically because of spammers and LLM's. 03:59:43 Not that they can't get around it. But, it slows them down a little. 04:00:24 plus now hardware becoming more expensive 04:01:58 15 will be released soon I mean scheduled 04:02:39 Couple weeks. 04:02:46 2 November last I checked 04:04:40 That's still the word on the streets. 04:05:57 !kerneldove_ set state-defaults no-log 04:06:13 trying... 04:09:34 v01d, you sure? i get syntax error on that 04:09:49 hmm 04:11:13 state-opt = ( "max" number | "no-sync" | timeout | "sloppy" | 04:11:13 "source-track" [ ( "rule" | "global" ) ] | 04:11:13 "max-src-nodes" number | "max-src-states" number | 04:11:13 "max-src-conn" number | 04:11:13 "max-src-conn-rate" number "/" number | 04:11:14 "overload" "<" string ">" [ "flush" ] | 04:11:16 "if-bound" | "floating" ) 04:11:18 no no-log. from pf.conf 04:11:28 man page 04:11:44 got my hopes up :/ 04:12:40 it needs to be placed before your rules 04:12:51 ya it is, doesn't work 04:13:00 it's not a valid state option in freebsd pf 04:13:08 where are you seeing it documented? 04:13:48 you might be picking up docs for openbsd pf? 04:14:04 set skip on pflog0 04:14:55 that didn't bork syntax, but didn't work 04:21:45 pass out quick on $ext_if inet from !($ext_if) to any nat-to ($ext_if:0) no state 04:22:00 add no state 04:22:21 don't i wanna keep state tho? 04:26:23 you sure it's bug 04:27:05 ya. other rules that match but don't have "log" don't create a log entry 04:27:05 I'm a bit lost 04:27:10 ya it's weird 04:35:50 ty for trying 11:25:27 kerneldove_: are you progressing with PF configuration ? 11:25:56 no, no solution to that bug mzar :( 11:26:21 perhaps you can switch to ipfw 11:26:52 i plan to eventually since it's the first priority freebsd fw, but i don't have time atm 11:27:00 after i migrate to 15 probably 12:29:20 anyone else migrated from pf to ipfw? glad you did or? 13:31:41 is anyone currently using pkgbase? 13:41:23 I'm reading the PF book and also got MWL's email hosting book. I feel like I'm doing the tech book equivalent of watching youtube videos about how to draw instead of drawing 13:43:37 just try stuff on your own man 13:43:54 no need to consult a book except for extremely complex subjects 13:54:54 eh, I feel like email is one of those 13:55:12 the firewall one... yeah I should have gone for a tutorial first. Oh well. 13:56:20 I got a lot of value out of Absolute FreeBSD so I've been skewing towards books 14:16:13 20 years ago I took the time to train crm114 discriminator on my mail for spam and ham. it's been doing a wonderful job ever since 14:16:50 sometimes trends change, like suddenly reciving thousands of south american messages, send a few for training to crm114 and that's that 14:18:14 ...if anyone is looking for an extremely lightweight, highly accurate spam filter 14:21:52 at my day job I used to submit a bunch of spam samples to Barracuda Networks. and their subsequent signature updates never improved a damn thing 14:26:55 your book recommendation reminded me of a trend I noticed among some young people, https://wiki.futo.org/index.php/Introduction_to_a_Self_Managed_Life:_a_13_hour_%26_28_minute_presentation_by_FUTO_software 14:30:11 > ""By running your own email, you seize control of your communications." -mwl 14:30:19 they are trying to seize control of all their data 14:37:52 I'm very slowly hopping on that train 14:38:20 Installing LibreOffice and kicking Google Docs to the kerb, and I'm sending a UK business £3/month to run my email for me 14:38:27 one day I'll do the big push and get my ass off iCloud and google 14:38:58 I'm also using blu-rays for backups of my music collection and my photos, because hackers can't delete your blu-rays 14:41:03 one of the main things I did was cancelling my Spotify subscription at the start of 2022 and switched to buying albums. At this point I have all the albums I used to stream, plus a bunch more, and for a lot less money 14:42:02 Which reminds me, today I'm supposed to be setting up the spare box with Freebsd-15-BETA5 and getting at least one jail up and running. 14:42:52 well, after checking if RC1 came out I guess 14:43:26 Buying albums is actually really good, since it supports the artist a lot more than streaming services 14:43:35 yeah 14:51:13 wish Bandcamp wasn't owned Epic Games but I still buy from them, and from Beatport 14:59:48 yup. CDs are great as well 15:07:14 I used LibreOffice back through StarOffice, OpenOffice.org, and Apache OpenOffice, and kind of always hated large parts of it, but after our work machines were forced to Office365 and shit like that, LibreOffice fell firmly in the "this sucks, but it sucks in a predictable, consistent way that I am used to for 20 years" bin 15:07:29 and this ended up being so much more manageable than actual MS Office 15:11:50 Honestly, agreed. I wouldn't write my thesis in LibreOffice again, but it gets the work done for smaller projects 15:12:38 * DaliborFox wrote his bachelor's thesis in libreoffice writer :P Then did his master's thesis in LaTeX, because he didn't want to go through the pain of dealing with formatting in a large word-style document, such a fiddly and finnicky operation 15:12:39 like 20 years ago, I did a very large school project on OpenOffice.org on a Pentium with 32 MB RAM 15:12:42 this was painful, but functional 15:13:44 other cool little factoid: LibreOffice Draw can open a PDF and edit it at the object level 15:15:10 anyone else migrated from pf to ipfw? glad you did or? 15:15:31 I've migrated the other way around, I find that pf gives more flexibility 15:15:42 though I might just be bad at using ipfw 15:21:54 ipfw add 65534 deny log irc from kerneldove_ to any via #freebsd 15:22:25 kerneldove_: didn't actually use ipfw now for I think 15 years, moved to pf for the most part myself, but hey, that's just me, ymmv 15:26:10 i'm tailing pflog and seeing a bunch of pass out messages, but why when the rules matching them don't have the 'log' keyword? https://termbin.com/8ws6. my pflog tail cmd is tcpdump -e -i pflog0 -l -n -t fwiw 15:39:52 Should all the bit be in place to support freebsd-updating 9.x to 10,11,12,... ? 15:40:34 freebsd-update serves don't drop EOL releases? 17:14:53 Is there a way to find out the amount of changes (bytes, blocks, whatever) that have been written to a pool after a device was offlined or removed? I'm trying to come up with a way to attach, sync, and detach my USB drive only when the changeset is larger than a certain value - to avoid slowing the machine down too much the rest of the time. 17:24:59 seems like you'd need a snapshot made at the time of offlining/removing 17:41:00 Hmm, capsicum seems really hard to use with sqlite, given most libraries open a connection string and wal creates files. 17:52:34 hodapp: yes, i would agree 18:19:56 hadret: that's a dependency I'd prefer to avoid :-/ 18:26:04 Hmm, zed(8) referenced by zpool(8) doesn't exist.. 18:30:41 All of this talk about using LibreOffice and other programs to write papers and theses (I had to look up the plural of thesis) seems odd to me who would most naturally reach for LaTeX for it. 18:31:22 Ltning, A snapshot could be created and then look at the space it is consuming to know the difference between it and the current file system and then use that size to trigger an action. 18:35:28 yea I was thinking of using zpool events -f to pick up on device removal/add, but I also have automated snapshots that may be created after I create on upon detach, which will prevent my "watched" snapshot from providing useful data 18:35:57 rwp: And that's what I did the second time around. The main reason why I didn't for my bachelor's thesis were time constraints and being afraid that I wouldn't be able to learn to use LaTeX in time. For my master's thesis, time constraints were the reason why I decided to go with it, to allow me to actually focus on writing the thesis and not having to fiddle around with it all the time to make 18:35:59 it look good :D 18:37:09 Being able to just cut and paste a bunch of paragraphs and move them around freely, with no delays or glitches, was extremely liberating 18:41:22 my filesystem has developed an undeletable file; fsck diesn�t help 18:46:36 what happens when you try to delete? 18:50:52 it says �operation is not permitted� 18:52:01 I've had a ZFS filesystem develop non-deletable files before. 18:53:38 DaliborFox, "... was extremely liberating" I am not sure if you are talking about LaTeX or LibreOffice there and I am really curious as to which it is at that comment. :-) 18:54:44 rwp: LaTeX; in Libreoffice, if I were to move a paragraph of text, I'd have to wait a good 20 seconds for it to update, slowly scroll to the point where I want to insert it to, paste it, wait for it to render, and start fixing up the broken formatting and links, oh boy 18:55:42 sjjd, Is the file immutable? What does "ls -ldo" on the file say? Use "chflags 0 file" on the file to remove the schg flag? 18:56:11 DaliborFox, That is my experience too! :-) 18:57:37 sjjd, By default FreeBSD installs with a list of some files that they set the schg (system-change) flag making them immutable. /I/ wish these were not set by default as it seems redundant to me but whatever. You can find them with this find command. 18:57:43 find . -flags +schg -exec ls -ldo {} + 18:58:31 This often gets bumped into with deleting a jail directory. The schg system-change immutable flag needs to be removed first. 18:58:39 chflags -xR 0 /jails/sys1 18:58:44 rm -rf /jails/sys1 19:01:25 * hodapp tries to figure out why he has both /home/hodapp and /usr/home/hodapp 19:02:17 yes, it shows the word �schg� in the listing 19:03:36 That's the reason for the "operation is not permitted" when trying to remove it. It's not permitted! :-/ 19:04:23 �illegal option -x� rwp 19:05:28 Huh? "man chflags" -x Do not cross mount points 19:17:36 s/mount points/streams/ 20:12:24 is there an easy / reliable way to see if a host is pkgbase? preferably without a pkg info call 20:36:40 -current @ arm64 is broken: 20:36:44 In file included from /usr/src/stand/efi/fdt/efi_fdt.c:31: 20:36:44 /usr/src/stand/efi/include/efi.h:47:10: fatal error: 'Uefi.h' file not found 20:36:44 47 | #include 20:40:43 mailed warner 21:41:48 hodapp: is /home a symlink to /usr/home? 23:12:11 I was able to get my new install to boot, but I have to remove my SATA card for my zfs pool. 23:23:38 wipt, why? 23:33:27 what's up in here 23:34:46 kerneldove_: have you figured out your pf issue 23:35:02 no sadly 23:35:33 sad I could not help 23:36:21 atleast you tried bud 23:36:45 have you tried that on FreeBSD forum 23:38:10 I think you'll have more help there 23:39:04 rwp, re: SSH static address via a tunnel> I hope I understood the first part: I log into my home machine, and open a referse tunnel to the pubnix. I have done that and made sure the pubnix port (5119 in my case) is indeed taken. But I don't understand the rest: why can I not, now that the reverse tunnel is open, simply ssh pubnix:5119 ? 23:40:50 I have also noticed that `$ service sshd restart' does not show any error message, but does not restart the service (because a normal users cannot do that). Is it the expected behavior of the service command? I'd expect it to print an error message... 23:43:12 BarnabasDK: If I leave the disk controller connected, FreeBSD won't boot, it panics because it can't find init 23:44:55 on my hand I have a memory issue, I constantly run out of swap space and drm0: [drm] Error atomic update failure on pipe A 23:44:58 v01d, maybe i'll try that ty 23:46:34 kerneldove_: yeah there is sections on the forum for firewall issue and more experienced user me 23:47:28 the zpool hasn't been imported, so it shouldn't be looking for the init on there. I had FreeBSD installed on this machine with the same setup awhile back without issues, and I had the same conctroller in another box next to it that's been going for a long time. 23:48:13 kerneldove_: https://forums.freebsd.org/forums/firewalls.44/ 23:49:09 still looks active which is cool 23:50:21 kerneldove_: the forum or your firewall?