Search results

I really enjoyed Assembly Language Step By Step by Jeff Duntemann. It's an introduction for the 32-bit x86 instruction set so don't expect it to be the last book you read on assembly language. Other books I looked at first out all felt like reference manuals for the x86 instruction set, whereas...

balanga, ports-mgmt/synth might be worth a look as an alternative if you are only building ports for a single system.

Hi harika1258. I've been intending to write an updated version of this post for some time since as of FreeBSD 10.3 the UEFI bootloader supports booting from a ZFS pool, not just a UFS partition. Hooray! Also a cause for celebration is the fact that the installer now includes the option to...

Hi greatfox, welcome to the forums. It's certainly possible to install FreeBSD by hand and judging by your posts here you are not afraid to dive in. There is no magic and if you like you can take a look at exactly what the bsdinstall tool does by looking at its source here. However, I would...

I understand what you want to do and why, though unfortunately I don't think it's possible. However, I would suggest also asking on the freebsd-pkg mailing list. Do consider sysutils/poudriere, particularly if you were planning to provide your software via a package repository. As long as...

Welcome to the forums, Xylene. You could use Poudriere (available as the port sysutils/poudriere) to build multiple versions of your package, each targeted at a different version of FreeBSD and also for each of the i386 and amd64 architectures if needed.

You can create the device manually with ifconfig ipfw0 create and automatically by including firewall_logif="YES" in rc.conf. You also need the sysctl value for net.inet.ip.fw.verbose set to 0, which I think is default anyway. I believe the IPFIREWALL_VERBOSE kernel option (if you're using a...

Welcome to the forums, sysnes. Two further alternatives: security/sudo configured to allow your user account to run ezjail-admin with root privileges. (Assuming you connect from a remote machine anyway) Run sshd in the jail and log in directly to it, rather than first via the host.

I found an old post seeking to solve the same issue: ipv4-source-address-selection.1425. I tried to find what the logic is in FreeBSD to choose a source IP address but couldn't find it documented (I was hoping for something like this, which details rules for source IP address selection for two...

It's probably also worth pointing out that with the possible exception of assigning the static public IP as primary and the DHCP assigned private address as an alias by configuring dhclient.conf, which may or may not be possible [Edit: I tried it and it's not possible] and may or may not work...

You make a good point regarding the default router being on the same subnet -- I feel foolish for not thinking it through properly. It is possible to specify a static route using route, using the -interface switch to specify a directly reachable destination. Perhaps you could set up a static...

Welcome to the forums, pl. Can you link to the old posts that you found? I also thought of NAT as I was reading your post. It certainly feels clumsy but would get the job done. Rather than solve the problem, can you avoid it? Do you actually need your dynamically assigned address? Could you...

green post-it, I see that was your first post. Welcome to the forums :) Adding to SirDice's post, perhaps you don't need ports-mgmt/poudriere for your purposes. If you are building for a single system, perhaps building from ports would be adequate. ports-mgmt/portmaster is a very helpful tool...

The error is here: How did you create your signing key? I suspect that your usr/local/etc/ssl/certs/poudriere.cert doesn't contain what you need. There is an example in the man page for pkg-repo, which boils down to running openssl genrsa -out repo.key 2048 to create a private RSA key...

I found I didn't need the path= statement in /usr/local/etc/i3status.conf. The following works fine for me: order += "battery 0" battery 0 { format = "%status %percentage %remaining" integer_battery_capacity = true low_threshold = 15 threshold_type = percentage }

From a security perspective, filling the container with random data is a better choice to avoid a potential known-plaintext attack. I've updated my earlier post for anyone reading this in the future.

From the geli man page: When you create a new GELI container you can use dd for the initialization, writing directly to the provider like dd if=/dev/zero of=/dev/da1p2.eli bs=1m* dd if=/dev/random of=/dev/da1p2.eli bs=1m. Since you already installed your system, you probably don't want to do...

A ZFS pool containing ZFS datasets is different to a simple UFS partition. It's not quite as simple as mounting the device and you might want to do some reading about ZFS before attempting to fix your server. zpool is the tool you need. zpool list will show the name(s) of your ZFS pool(s). I...

Sysadmins and developers alike may be interested in a bundle of security eBooks available to buy from Humble Bundle until 31 July. Highlights for me are "Security Engineering" by Ross Anderson and "Applied Cryptography" by Bruce Schneier though there are a least two that may feel rather behind...

Have a look at 56874 and the tool it mentions by obsigna. I've been meaning to look at it myself.