Latest activity

Have you tried to compare this with similar thing from CBSD: CBSDFile and `cbsd forms`? One of the incredible CBSD features is that you can reconfigure the service at any time (for example, re-configure Memcached/Redis, create additional...

Interesting. That syntax feels quite similar to zadm.

I just tried installing and running imake (xmkmf) and was disappointed when I got (full messages): /usr/local/lib/X11/config/Imake.rules:1674:27: warning: empty character constant [-Winvalid-pp-token] for flag in ${MAKEFLAGS} ''; do \...

0.8 Hz. You can literally see through CPU cycles.

That is not correct. They make cards for virtuilization that use seperate PCIe addresses for each controller onboard. https://www.startech.com/en-us/cards-adapters/pexusb3s44v I am using these with bhyve for USB passthrough. It has 4 independent...

Hi All! What's going on? Built an 8-bit Z80 assembly machine running at 0.8 Hz, trying to understand how computers work (as if FreeBSD itself isn't enough!) and just for fun. Sharing the link here with a video of it crunching instructions...

This is a freaking chaos!

Hi All! What's going on? Built an 8-bit Z80 assembly machine running at 0.8 Hz, trying to understand how computers work (as if FreeBSD itself isn't enough!) and just for fun. Sharing the link here with a video of it crunching instructions...

Please, keep us updated on your migration.

This should be helpful: https://bastillebsd.org/compare/ Today your choices are: plain jail.conf(5) and jail(8) command. BastilleBSD pot/nomad CBSD Very nice thing about BastilleBSD is the Templates they offer and maintain. They also have...

What version of bsdisks is this? Version 0.24 crashed and hung a lot, and I helped the developer (Gleb Popov) with extensive testing and we found and fixed many issues. Version 0.26 should be stable and reliable, even for edge cases like drives...

What are you referring to as "system applications"? Things included in base (like find and tar), or packages? Our of curiosity, can you explain what "lexicography and semantics" means, and what specific differences you see?

I found that using the native jail command and config is far more easier than learning/using any of the jail managers with many dependencies. When the development stops on those managers for some reason the cycle starts all over again.

There are colons missing in front of the "charset" and "lang" variables. If the "lang" environment variable is the last line then there must not be a backslash ( \ ) after the colon ( : ). Also I suggest to integrate the "default" login class...

It's not missing, it's right there, as the forth system to boot. But the entry is named incomprehensible (UEFI OS): You should be able to boot from that boot entry choosing it from the machines UEFI boot manager. In case you are unfamiliar with...

Yes, no, maybe, probably, not. Not a supported configuration in any case.

Why do you think this is not in tune with the forums?

Without more actual info to go on, perhaps the OP incorrectly assumes that "user experience on FreeBSD" refers entirely to a userbase consisting of children and beginners who are unable to learn and does not include skilled users and their user...

Yes it's possible. I have been using GPT disks on machines that only have legacy BIOS without any problems. You will need a GPT partition of type freebsd-boot that holds either /boot/gptboot or /boot/gptzfsboot depending on whether you will be...

I don't understand your comment, but that doesn't mean it's wrong. All data is always sent one byte at a time. Depends on the use case. My favorite is arranging things such that no synchronization is even needed: every process has exactly one...

Ah, I thought you were more in contact with upstream. In the past they have been very receptive of patches. In that case, I will keep it on my TODO list!

The list order in that file doesn't determine the version to be selected first, the file provides only a list of registered java vms: javavms DESCRIPTION The javavms file contains a list of the registered Java VMs which are available...

How can I keep uptodate with the changes in UNIX/BSD/Linux IPC ? e

In a multiple process application where input and output is written and read using pipes, the data reads and writes are synchronized by a command pipe as a "wait queue". A single byte is sent in a (command) pipe and reading it notifies to start...

I have the same problem since upgrade to 1.74.0. Downgrading to 1.72.0 is OK, but I would like to solve this. As I don't see any bug report, I guess it's not happening everywhere. @Iory, how did you solve this ? Does anyone have an idea about it...

My original post included a github source that already ported some of the code not sure if it's working. But this is something they've worked on like 10years ago hence this post, I figured if someone worked on it 10 years ago it might already be...

Yeah, I think this is one of the best solutions for now until the web browser ecosystem has a major reshuffle (if it ever does). You might want to consider still putting it through a proxy and blocking raw ports. I notice some of the random...

Heh. Honestly with browsers these days; the only safe bet is to keep them offline. Even a strict proxy (SOCKS5h or HTTP) doesn't protect you from threats within the browser itself. Firefox and Chrome are just as scummy as one another. Either...

This exactly what I thought when I read your post. You do not know how to ask for help, so you are complaining about the consequences of your initial problem, what's you want is getting attention : Sorry if I can't contribute but even if I...

Not that I know of. Just don't remove the file: /bin/sh because many shell scripts start with the line: #!/bin/sh as a "shebang" line to select the correct shell interpreter program, and many of them will not run correctly if they're unable to...

That's what I do for daily/random browsing. I have a disposable jail which is zfs cloned from a template, and when the jail shuts down, the clone is destroyed and re-created. So a new FF profile is created every time. Either that, or I use...

Typically as port maintainers it's not good idea, if possible, to deviate from the upstream code base, except to fix bugs. Even when fixing bugs one must or should upstream patches. But to maintain FreeBSD-only patches is ill advised for the...

You can set it to whatever you want. You don't necessarily need that shell to be included in /etc/shells either, ssh access would work in default configuration. Idea is if you can't execute /bin/sh there's very good chance you have deeper...

What was the question?

I agree. What I do differently is I set user of different name to uid 0 which has /bin/sh as shell. It's sort of a security measure as this user can ssh with password. But otherwise it's user I never use for anything. Caveat to this solution: I...

And, if you have an account like "toor" set up with a shell that's pretty much guaranteed to work, you have belt and suspenders: You can use the toor account in multi-user mode, and you can go to single user. Personally, I use bash for root. I...

Then it's not a problem (but was not a problem ever as reasons for not doing it are still the same). I'd add an option to be able to recover system from rescue mode booted from external media. If you are confident there then it's ok.

Of the millions of Chrome users, I'd bet very few ever read the security postings. Of the millions of Firefox users, I'd bet very few have security issues on non-Windows systems. And what are you to do? You are not an expert on this so...

It has absolutely nothing to do with "installation and maintenance of ports or packages", and only serves as a bait for heated discussion (or what shkhln said above ;)).

To me, boycotting Amazon is more effort than it's worth. It's only there when I need it, the rest of the time it's reasonably easy to ignore, unlike the in-your-face constant ads about incontinence pills. 🤮 I look for what I need/want, will pay a...

Are you a versatile problem-solver with a knack for operating system development? Do you thrive working in an open source development environment with a diverse team? If so, the FreeBSD Foundation is searching for a software developer with...

Submit a PR here: https://bugs.freebsd.org You can ask the maintainer of the port to add the option.

I have bacula9-server already installed and running for years. I need to add data encryption to the software. Unfortunately the 'make config' command does not reveal any openssl options. This link states to use the configure command to add...

Is /etc/ssl/cert.pem still a symlink to ../../usr/local/share/certs/ca-root-nss.crt? I've seen some instances where /etc/ssl/cert.pem was a copy of an older ca-root-nss.crt. # ll /etc/ssl/cert.pem lrwxr-xr-x 1 root wheel 43 Jan 11 13:20...

Yeah, I think this is one of the best solutions for now until the web browser ecosystem has a major reshuffle (if it ever does). You might want to consider still putting it through a proxy and blocking raw ports. I notice some of the random...

That's what I do for daily/random browsing. I have a disposable jail which is zfs cloned from a template, and when the jail shuts down, the clone is destroyed and re-created. So a new FF profile is created every time. Either that, or I use...

I don't know. I wouldn't be surprised either way. The sandboxing is one thing, but the other mitigations might use Linux features that have no direct equivalent on FreeBSD. There are more than 1000 patches in Chromium's FreeBSD port and I never...

This whole thread is rather embarrassing (as usual with this topic). 1. OpenBSD doesn't even approach Qubes in terms of isolation: Qubes runs everything in a separate virtual machine with appropriate access controls, while OpenBSD does nothing...

How much of the Chromium sandboxing is actually done in the FreeBSD port? (of course you could also use Linux Chrome, which presumably has all of it)

Heh. Honestly with browsers these days; the only safe bet is to keep them offline. Even a strict proxy (SOCKS5h or HTTP) doesn't protect you from threats within the browser itself. Firefox and Chrome are just as scummy as one another. Either...