From owner-freebsd-questions@freebsd.org Sun Aug 9 14:23:55 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 72AD73B6C98 for ; Sun, 9 Aug 2020 14:23:55 +0000 (UTC) (envelope-from va6bmj@gmail.com) Received: from mail-ej1-x644.google.com (mail-ej1-x644.google.com [IPv6:2a00:1450:4864:20::644]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPhDB03lDz46WZ for ; Sun, 9 Aug 2020 14:23:53 +0000 (UTC) (envelope-from va6bmj@gmail.com) Received: by mail-ej1-x644.google.com with SMTP id o18so6861353eje.7 for ; Sun, 09 Aug 2020 07:23:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=dkLVch+UoB2Rt9UD/E2IxQyZ2AwBC36yWRierF3Su3Q=; b=lR9OJ97ap+0OvCwYfrTRvSHi1hKREn03MFg6D568G88dsbJjt6CvDr37GKtgXHLIQz Mg+Upqyih6LZr/MtfvV0hPxvaff1WvYUr/kEBPugS0p48vTPQqvR+ssjktkZakISpJTH 5wIRe+s3dHKiJV949QkUShwjWTVdtpxwNkwLTityVRBx8ZvvKv0j2d/HG7Y/T1bLTM9V CxYzvj/LcuBwqaT56AgkpjheEKx30PmDCNNYOlo+zZL0lR3yzks+wJjvJVV+mp1ga5Yl NUo+3fGzbhObP+R69YbVMm6p773bX8YaZUQoOkfc6inFQ3JAYPsZmEQDZx9IsBhe4kkG al5A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=dkLVch+UoB2Rt9UD/E2IxQyZ2AwBC36yWRierF3Su3Q=; b=Vdt+VzQdrucELPGoByY5OjcHftpEt0fnL5/dL8xddYYWyWjg0h88y9JDd3G1qodi3R ss+gALc6JAN4AMlBePK4TbShTC5Vp/q6L2Qri47S2ZwNluQpMN1U2siZV0BN/p03tTRq iyFKO584gBAYyFSTO4BPwKDD4dLvrJT9I89N9SsLwYIx/t49UNH8MWnW/LBx/wNaZqFF D2EJBum9f2fAUtFogUhaFX50gxDqff9rLFzZidzEGDCgSc/NwJg4ZtLlCUyXg5XSXE3j QO2Xb6TuZyIAjGL7sXhRZGEOJg20rFK1ufUrDa/uwO3zsR017/M9C4VLzH/ObAPVZF2v HO1A== X-Gm-Message-State: AOAM531QHADnTGF+FJz84E31Iju7SG2N4k1wY3i3A4JQ/Guhm95AkWYn feNW7FHl/zTRa9aASoAUxA9pCXwxiu8A0ihF8ijn76R5HNs= X-Google-Smtp-Source: ABdhPJwxHABJyes/uQ4z1/SAjh27jekOEsCqDEYhiZ4bJWCB8vsM07rieaKx2RFYIwmydFcvgdPBx/JEXV/A4cxDYvU= X-Received: by 2002:a17:906:35ce:: with SMTP id p14mr18388204ejb.276.1596983032048; Sun, 09 Aug 2020 07:23:52 -0700 (PDT) MIME-Version: 1.0 From: B J Date: Sun, 9 Aug 2020 14:23:41 +0000 Message-ID: Subject: Mate And Slim Load But Don't Work To: freebsd-questions X-Rspamd-Queue-Id: 4BPhDB03lDz46WZ X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=lR9OJ97a; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of va6bmj@gmail.com designates 2a00:1450:4864:20::644 as permitted sender) smtp.mailfrom=va6bmj@gmail.com X-Spamd-Result: default: False [-1.42 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.015]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-0.92)[-0.921]; URI_COUNT_ODD(1.00)[1]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::644:from]; HTTP_TO_IP(1.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.48)[-0.483]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Aug 2020 14:23:55 -0000 This one has me baffled. A few days ago, I did my monthly system FreeBSD upgrades. The results for one machine didn=E2=80=99t go quite as expected as Slim wouldn=E2=80=99t al= low me to log on. I disabled Slim in /etc/rc.conf through single-user mode and I managed to resolve it by what I found at: https://forums.freebsd.org/threads/glib-gio-error.76086/ After running the following: pkg autoremove -y pkg update -f pkg upgrade -f reboot I enabled Slim again and I=E2=80=99m able to log in again. The only proble= m is that Mate apparently doesn=E2=80=99t recognize my monitor. Yesterday, I tried the same thing on the other installation on the same machine. The only thing I did differently was to enable Slim before rebooting. Slim loads but doesn=E2=80=99t appear to work as all I get is the command l= ine log-in prompt. I thought the problem might be only with Slim, so I tried: exec mate-session after logging in (startx is apparently missing) and I got the following messages: Unable to init server: Could not connect to 127.0.0.1: Connection refused ** (mate-session:963): WARNING**: 22:14:10.767: Cannot open display: and I was returned to the log-in prompt. I don=E2=80=99t think it=E2=80=99s a problem with the monitor as I tried th= e same thing with two others I had on hand. Any suggestions as to what do to fix it? Was a file corrupted or do I have to re-install something? As much as I like Mate and Slim, I=E2=80=99m seriously thinking of trying a= nother desktop. I don=E2=80=99t particularly like Xfce, but it=E2=80=99s given me= less trouble than Mate has in recent months. I=E2=80=99ve installed FreeBSD on another = machine with Lumina as the desktop, though it seems a bit quirky for me. (For example, Firefox loads, but I can=E2=80=99t get a connection to the Interne= t with it.) I=E2=80=99ll have to try it some more to see if I can figure it out. Maybe I should be looking at something like GhostBSD. Thank you. BMJ From owner-freebsd-questions@freebsd.org Sun Aug 9 16:52:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CF55F3B9B76 for ; Sun, 9 Aug 2020 16:52:42 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPlWs578Zz4D3h for ; Sun, 9 Aug 2020 16:52:41 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) by bucksport.safeport.com (8.14.5/8.14.5) with ESMTP id 079GqZ67045969 for ; Sun, 9 Aug 2020 12:52:35 -0400 (EDT) (envelope-from doug@safeport.com) Date: Sun, 9 Aug 2020 12:52:35 -0400 (EDT) From: Doug Denault To: freebsd-questions@FreeBSD.ORG Subject: swapspace grows with no return Message-ID: User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; format=flowed; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (bucksport.safeport.com [198.74.231.101]); Sun, 09 Aug 2020 12:52:35 -0400 (EDT) X-Rspamd-Queue-Id: 4BPlWs578Zz4D3h X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of doug@safeport.com designates 198.74.231.101 as permitted sender) smtp.mailfrom=doug@safeport.com X-Spamd-Result: default: False [-1.58 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.88)[-0.880]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:198.74.231.101]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.75)[-0.751]; DMARC_NA(0.00)[safeport.com]; NEURAL_SPAM_SHORT(0.16)[0.155]; RCVD_COUNT_ONE(0.00)[1]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:11288, ipnet:198.74.228.0/22, country:US]; ONCE_RECEIVED(0.10)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Aug 2020 16:52:42 -0000 This is a smallish server, 8G memory, normally running 8 jails. When this issue started I stopped three of the jails which were used for testing and development. What's left are jails running apache 2.4, wordpress, and MySQL 5.7. One jail, camden is testing a new version of squirrelmail and roundcube. >From swapinfo and top: Device 1K-blocks Used Avail Capacity /dev/aacd0p3 4194304 831572 3362732 20% [ 0, 2010408] root [13, 3359976] camden [15, 5039344] bassharbor [14, 5201500] monhegan [12, 5776608] newharbor [ 4, 6870432] pemaquid total: 28258268 So about 3% of the virtual storage allocated is currently written to the swap file. Two times in the last several weeks the swap file has run out of space. This is Sunday, there is as close to zero activity as these guys get. The 20% will only grow from here. I ran vmstat over night; there were about 10 pageins and no pageouts. top and 'systat vmstat' also show no paging. The swap file when from 18% to 20% over that time frame. The obvious question is: how come? sysctl swap counts: vm.swap_enabled: 1 vm.disable_swapspace_pageouts: 0 vm.swap_idle_enabled: 0 vm.stats.vm.v_swappgsout: 631602 vm.stats.vm.v_swappgsin: 46818 vm.stats.vm.v_swapout: 53454 vm.stats.vm.v_swapin: 9842 vm.swap_idle_threshold2: 10 vm.swap_idle_threshold1: 2 vm.nswapdev: 1 vm.swap_async_max: 4 vm.swap_maxpages: 32444512 vm.swap_reserved: 30920429568 vm.swap_total: 4294967296 Seems ok to me. We had to reboot about five days ago. Twice since then we just rebooted the offending jail. Past what is going on: The default installation will allocate a 4G swapfile. I am pretty sure I read from a FreeBSD source that the 2 x physical memory rule is not needed. Several threads on questions suggest otherwise. What is the 'best practice' here? I also read somewhere that the VM system will preactively pageout changed pages. That would seem to be the case here, but they are never freed. Lastly, can an application lock memory? Thanks for any suggestions, Doug _____ Douglas Denault http://www.safeport.com doug@safeport.com Voice: 301-217-9220 Fax: 301-217-9277 From owner-freebsd-questions@freebsd.org Sun Aug 9 20:08:57 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 758E63BC1FD for ; Sun, 9 Aug 2020 20:08:57 +0000 (UTC) (envelope-from 4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPqtJ3pjVz4LhN for ; Sun, 9 Aug 2020 20:08:56 +0000 (UTC) (envelope-from 4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597003737; x=1599595737; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=x0Uy6guq+iMLxMdbMMX7Sc1lyzfi7UK4TswZ1flqMnY=; b=DmD3khLha56n/TjOLqLwEhcbochbCEukg9Nf65NPk01lm3iv44F7UcAtgVExx48H3pQ+1rbO8xPVjRx8zLzktsTIh6PWRlcpksuQOMKpXNK/uMAmVvPSKlUeZg9TRAuEZO1X8j513RpM+3YbOLWaExIW8pjCLjqNV+RAbw5ZVA8= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDdkMWE2YWIuZnJlZWJzZC1xdWVzdGlvbnM9RnJlZUJTRC5PUkc= Received: from r1.sg.in.socketlabs.com (r1.sg.in.socketlabs.com [142.0.179.11]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Sun, 9 Aug 2020 16:08:45 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.sg.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Sun, 9 Aug 2020 16:08:45 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k4rcZ-0009Y6-AU; Sun, 09 Aug 2020 21:08:43 +0100 Date: Sun, 9 Aug 2020 21:08:43 +0100 From: Steve O'Hara-Smith To: Doug Denault Cc: freebsd-questions@FreeBSD.ORG Subject: Re: swapspace grows with no return Message-Id: <20200809210843.7ad609168aea9ad1cabd6fc8@sohara.org> In-Reply-To: References: X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BPqtJ3pjVz4LhN X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=DmD3khLh; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com X-Spamd-Result: default: False [-2.40 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.06)[-1.058]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; NEURAL_HAM_LONG(-1.00)[-0.996]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; NEURAL_HAM_SHORT(-0.65)[-0.647]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20007d1a6ab.4fff308351ccc78da3a90b709ad3995b@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Aug 2020 20:08:57 -0000 On Sun, 9 Aug 2020 12:52:35 -0400 (EDT) Doug Denault wrote: > I ran vmstat over night; there were about 10 pageins and no pageouts. top > and 'systat vmstat' also show no paging. The swap file when from 18% to > 20% over that time frame. The obvious question is: how come? Do you have a swap backed tmpfs mounted ? -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Sun Aug 9 21:30:13 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id EB1E53BE3CC for ; Sun, 9 Aug 2020 21:30:13 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPsh51TdSz4Qnk for ; Sun, 9 Aug 2020 21:30:12 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) by bucksport.safeport.com (8.14.5/8.14.5) with ESMTP id 079LUB4v055999; Sun, 9 Aug 2020 17:30:11 -0400 (EDT) (envelope-from doug@safeport.com) Date: Sun, 9 Aug 2020 17:30:11 -0400 (EDT) From: Doug Denault To: "Steve O'Hara-Smith" cc: freebsd-questions@FreeBSD.ORG Subject: Re: swapspace grows with no return In-Reply-To: <20200809210843.7ad609168aea9ad1cabd6fc8@sohara.org> Message-ID: References: <20200809210843.7ad609168aea9ad1cabd6fc8@sohara.org> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (bucksport.safeport.com [198.74.231.101]); Sun, 09 Aug 2020 17:30:11 -0400 (EDT) X-Rspamd-Queue-Id: 4BPsh51TdSz4Qnk X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of doug@safeport.com designates 198.74.231.101 as permitted sender) smtp.mailfrom=doug@safeport.com X-Spamd-Result: default: False [-2.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.015]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:198.74.231.101]; NEURAL_HAM_LONG(-0.95)[-0.951]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[safeport.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.38)[-0.376]; RCPT_COUNT_TWO(0.00)[2]; RCVD_COUNT_ONE(0.00)[1]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:11288, ipnet:198.74.228.0/22, country:US]; ONCE_RECEIVED(0.10)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Aug 2020 21:30:14 -0000 On Sun, 9 Aug 2020, Steve O'Hara-Smith wrote: > On Sun, 9 Aug 2020 12:52:35 -0400 (EDT) > Doug Denault wrote: > >> I ran vmstat over night; there were about 10 pageins and no pageouts. top >> and 'systat vmstat' also show no paging. The swap file when from 18% to >> 20% over that time frame. The obvious question is: how come? > > Do you have a swap backed tmpfs mounted ? > > -- > Steve O'Hara-Smith No. Would that make finding the offending jail possible? _____ Douglas Denault http://www.safeport.com doug@safeport.com Voice: 301-217-9220 Fax: 301-217-9277 From owner-freebsd-questions@freebsd.org Sun Aug 9 21:39:54 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 920503BE76B for ; Sun, 9 Aug 2020 21:39:54 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPsvF5Vr1z4Qn3 for ; Sun, 9 Aug 2020 21:39:53 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) by bucksport.safeport.com (8.14.5/8.14.5) with ESMTP id 079LdrQt056264; Sun, 9 Aug 2020 17:39:53 -0400 (EDT) (envelope-from doug@safeport.com) Date: Sun, 9 Aug 2020 17:39:53 -0400 (EDT) From: Doug Denault To: "Steve O'Hara-Smith" cc: freebsd-questions@FreeBSD.ORG Subject: Re: swapspace grows with no return In-Reply-To: Message-ID: References: <20200809210843.7ad609168aea9ad1cabd6fc8@sohara.org> User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (bucksport.safeport.com [198.74.231.101]); Sun, 09 Aug 2020 17:39:53 -0400 (EDT) X-Rspamd-Queue-Id: 4BPsvF5Vr1z4Qn3 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of doug@safeport.com designates 198.74.231.101 as permitted sender) smtp.mailfrom=doug@safeport.com X-Spamd-Result: default: False [-2.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.015]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:198.74.231.101:c]; NEURAL_HAM_LONG(-0.95)[-0.951]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[safeport.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.38)[-0.375]; RCPT_COUNT_TWO(0.00)[2]; RCVD_COUNT_ONE(0.00)[1]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:11288, ipnet:198.74.228.0/22, country:US]; ONCE_RECEIVED(0.10)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Aug 2020 21:39:54 -0000 On Sun, 9 Aug 2020, Doug Denault wrote: > On Sun, 9 Aug 2020, Steve O'Hara-Smith wrote: > >> On Sun, 9 Aug 2020 12:52:35 -0400 (EDT) >> Doug Denault wrote: >> >>> I ran vmstat over night; there were about 10 pageins and no pageouts. top >>> and 'systat vmstat' also show no paging. The swap file when from 18% to >>> 20% over that time frame. The obvious question is: how come? >> >> Do you have a swap backed tmpfs mounted ? >> >> -- >> Steve O'Hara-Smith > > No. Would that make finding the offending jail possible? > Never mind - read about tmpfs, does not seem the best idea in the world as /tmp/ get used a bunch in the wordpress/php world. _____ Douglas Denault http://www.safeport.com doug@safeport.com Voice: 301-217-9220 Fax: 301-217-9277 From owner-freebsd-questions@freebsd.org Mon Aug 10 00:34:56 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0688D3C1702 for ; Mon, 10 Aug 2020 00:34:56 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qv1-xf2c.google.com (mail-qv1-xf2c.google.com [IPv6:2607:f8b0:4864:20::f2c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPxnC1gpDz4Xtp for ; Mon, 10 Aug 2020 00:34:55 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qv1-xf2c.google.com with SMTP id w2so3480360qvh.12 for ; Sun, 09 Aug 2020 17:34:55 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:subject :content-transfer-encoding; bh=o+rWKq/Oz8gPzipIUhNEgV0UzjmK+FHnVBgAZPbRpgY=; b=gZauj85lZ43iS5uKi2pbEsm7zzOFzhejELbdVM1EYq3eyqsJ9VREa6S5CYWNfQz2Re D4LPCUY2VXxlr85k2Itd3FwcrJurPNfta6JdzDsPY9dGjald8HsI1XfX4k4534zfRzv5 ytgiiZVBi88pwJlKiEE7TGwpzs5csgH8+DnQp2vlAKoQllG/pn2wkWUBPL/3t0t/nwLs Fz1uGFzDwmh/Bawp1uOvOP9sxd+OmVKNT/l0Gk5W1zkTLjP56Mnvhj1VPR2UTtNkt3Q9 jIWtcKYRkWTZKV6KHL13WGypdLYJfCEdsBcopE2yCKviK7T5zJ+AC/oiyzkAVengnHze 8L/g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:content-transfer-encoding; bh=o+rWKq/Oz8gPzipIUhNEgV0UzjmK+FHnVBgAZPbRpgY=; b=oQM+7gwm0nV+S2C6tLB8fKM5PJj3xc/souGfmVux353yF0xdt4tT0VrBs1RsvSH/lr 4+xLYFuFCpNA1N5lpFCdzBxUCt8nW58tIJrzIIDNlbdPOnhtiUei9aBKUO+cikvziIR1 F7bm6ElC9RSsmeZKjab++rCqvHZysM9SN9np+hXSQZCwqIRcU9tV1JWbXOtzwtlEAt00 Bc1gZtkvqqxyU7Z18+NHIpDyYkHeqD4ULqPBSpTwETO4z8n5rqCDD8MjNFDL/Va+fyt/ AFn7dyR496yx+6kYbTA3GQvaSNxFOaIyHSVonmMl5BGVZSXCs0ZhwvEPmlFVb5oAXa3K NxaQ== X-Gm-Message-State: AOAM531XfFurLIX+ZOy2ucFneTLXEwQXfjuUjLmGPetSrs1diuowgX+y /J4sBth+J6oxBKzvi4BTv4mTT4MF X-Google-Smtp-Source: ABdhPJy1OvXivFTQehn9IUu0FeeabhHGsOTlC7VVmsMtwCF9KTndS/Kcjg2NnScHm024ACCp3Y7LXw== X-Received: by 2002:a05:6214:13a1:: with SMTP id h1mr25665353qvz.250.1597019693622; Sun, 09 Aug 2020 17:34:53 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id m30sm15569185qtm.46.2020.08.09.17.34.52 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Sun, 09 Aug 2020 17:34:53 -0700 (PDT) Message-ID: <5F30962B.5060005@gmail.com> Date: Sun, 09 Aug 2020 20:34:51 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: "freebsd-questions@freebsd.org" , Ernie Luzar Subject: csh use of grep | tr commands Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BPxnC1gpDz4Xtp X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=gZauj85l; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::f2c as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-4.30 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-1.14)[-1.143]; FREEMAIL_TO(0.00)[freebsd.org,gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.11)[-1.109]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.05)[-1.053]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::f2c:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 00:34:56 -0000 Double quotes are giving me trouble. I have a file with a line in it like this ip4="10.111.098.2" I want to get just the ip address ip=`grep "ip4=" directory-path/file-name $ip ends up having ip4="10.111.098.2" in it ip=`echo -n "${ip}" | tr -d "ip4=" $ip ends up having "10.111.098.2" in it Putting | tr """ " "` after the echo above gives error. How do I remove the " around the ip address? From owner-freebsd-questions@freebsd.org Mon Aug 10 00:40:58 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 765CD3C17CC for ; Mon, 10 Aug 2020 00:40:58 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd29.google.com (mail-io1-xd29.google.com [IPv6:2607:f8b0:4864:20::d29]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPxw927qNz4Y2c for ; Mon, 10 Aug 2020 00:40:57 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd29.google.com with SMTP id g14so7274160iom.0 for ; Sun, 09 Aug 2020 17:40:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=2jEERTZOZFlEuHfLUICU7q1JCzKiCJtXqHYL+9VWhL0=; b=V+IdGze7m/kNNL0760vl1M+JP4A/D1CtOb5FdJaJdcU1iUet30OJGyBOL/US+3SkeN bc5InliWTU2dqz8OfTScjDd4NKW/vROwtJgWLBA6I5acPpMO7fKrU+unyvKimXgPIUWK cF1IQoIQmO1eY/zC4hDvmF3IGdXYlYpqjpNHYwAq3W0VPG9N6S0nNLC68e2keG2xP3+/ r18OGgpgs1UjDA9YQib8gDiBohL6pEe9hhBAqxokYi8sPWKy8qGD9zmtpft7XG69VwbD Nf9+v5A2QQ8/luRIdbFfHKCJQ38ZooQvvI/cJ5Gsg4z+4/J8Yrdd19dEnc6VggknfF+0 TokQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=2jEERTZOZFlEuHfLUICU7q1JCzKiCJtXqHYL+9VWhL0=; b=KBkoQPz3TeFfQRIPbGFhtm+orVhD/GIoYeWlwdqwvFzusthlN/9LUUYn1IlAxx5g6T +CKJfuDeW7sRG6gZp08YSiziuY0SHHCcP8wYgz51E/L8CTApHMq8M0SJ6/yreR/Op5k4 YjYdwMX8CDbeL8moTaaB7B3FVDB8qv6ORmuPX/iSte0yMrNK1ZdFKW9rJawK+jJJ22K8 3+o+FjdTPX3wf3lpjmkkEmS0ED7m57DbWS0ivo9EHcGwDc6cTd/cT/Yp0E9Ycy7F3qPX vlxA/yC6RiQvyQNoHgB4cfZvMJQMg7YZkd1QlwrpbS4ul8RAckco07+/8Q2rk1Kdpfs5 DHMA== X-Gm-Message-State: AOAM533yhwLuldb++fKbet5s4OKfOafMbtgZsTB6fuu3gXlpn+mw+MyF axP45KXZBpmfo0Z0BqkYZWRW68X9FUMTbwA5NHo= X-Google-Smtp-Source: ABdhPJzfOKv+KQo9K7LR834MtQS2A2s64UwSlXJDPd/sbDZiW2Ou3kE5RIJtAnN7x613ancyDiONZpAgeEt6aVXnE1U= X-Received: by 2002:a05:6602:220f:: with SMTP id n15mr15500522ion.103.1597020055415; Sun, 09 Aug 2020 17:40:55 -0700 (PDT) MIME-Version: 1.0 References: <5F30962B.5060005@gmail.com> In-Reply-To: <5F30962B.5060005@gmail.com> From: Aryeh Friedman Date: Sun, 9 Aug 2020 20:40:43 -0400 Message-ID: Subject: Re: csh use of grep | tr commands To: Ernie Luzar Cc: "freebsd-questions@freebsd.org" X-Rspamd-Queue-Id: 4BPxw927qNz4Y2c X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=V+IdGze7; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d29 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-4.31 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-1.16)[-1.156]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.11)[-1.111]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.04)[-1.039]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d29:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 00:40:58 -0000 On Sun, Aug 9, 2020 at 8:35 PM Ernie Luzar wrote: > Double quotes are giving me trouble. > > I have a file with a line in it like this > ip4="10.111.098.2" > I want to get just the ip address > > ip=`grep "ip4=" directory-path/file-name > > $ip ends up having ip4="10.111.098.2" in it > > ip=`echo -n "${ip}" | tr -d "ip4=" > > $ip ends up having "10.111.098.2" in it > > Putting | tr """ " "` after the echo above gives error. > > How do I remove the " around the ip address? > tr -d '"' for example: Desktop@neomarx% cat foo ip4="0.0.0.0" somethingelse="fred" Desktop@neomarx% cat foo | grep ip4 | cut -f2 -d'=' | tr -d '"' 0.0.0.0 From owner-freebsd-questions@freebsd.org Mon Aug 10 01:26:58 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F27263C1B7F for ; Mon, 10 Aug 2020 01:26:58 +0000 (UTC) (envelope-from roberthuff@rcn.com) Received: from smtp.rcn.com (smtp.rcn.com [69.168.97.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPyxG1PSjz4ZkF for ; Mon, 10 Aug 2020 01:26:57 +0000 (UTC) (envelope-from roberthuff@rcn.com) DKIM-Signature: v=1; a=rsa-sha1; d=rcn.com; s=20180516; c=relaxed/simple; q=dns/txt; i=@rcn.com; t=1597022816; h=From:Subject:Date:To:MIME-Version:Content-Type; bh=xRfGyGzz1HV/P03G3E/sUCbQfak=; b=ZOG6ZbXKE6JW455xtWp9E/+ndLedZcEoSJMqb10bJ3qzVC/tAm+bJTTpnNLzysUH Bcw8wY5po3pmn4NXfkuyAzsCrIpNLATLMEFntKkbTkMBf3YD+VKe5SBtoYOeGXjw 9N4g0QukDq2Z10zGwQp8slFfqgqTg5tfJAqw0ntgaGnIQ9VcSR2/UqolaIrP7geF xqrN5TO1RYnwLYBOJ7IV96v0aDHjILrOHjnRf1sqJNV3Cizlstp6TgjQ/8Mhf7dL /zBCE+Z7k3EQGyoVGLac44ex0kiLCX575E0yBNapYxev4Oj+jbUEfUjRnke5T6zi ZsF23HbRd8asCsnlkXGueQ==; X_CMAE_Category: , , X-CNFS-Analysis: v=2.3 cv=Z5uS40ZA c=1 sm=1 tr=0 a=9TgA2UwI6Wy+6BV4wQM/cQ==:117 a=9TgA2UwI6Wy+6BV4wQM/cQ==:17 a=KGjhK52YXX0A:10 a=kj9zAlcOel0A:10 a=XRQyMpdBKAEA:10 a=y4yBn9ojGxQA:10 a=48faUk6PgeAA:10 a=Amql5xnVCW0is45y9fIA:9 a=RRU2haG7krlYyIGl:21 a=Y3WJ1lcEbAhQ47ma:21 a=CjuIK1q_8ugA:10 X-CM-Score: 0 X-Scanned-by: Cloudmark Authority Engine X-Authed-Username: cm9iZXJ0aHVmZkByY24uY29t Received: from [209.6.230.48] ([209.6.230.48:49888] helo=jerusalem.litteratus.org.litteratus.org) by smtp.rcn.com (envelope-from ) (ecelerity 3.6.25.56547 r(Core:3.6.25.0)) with ESMTPSA (cipher=AES256-GCM-SHA384) id 39/C1-10869-062A03F5; Sun, 09 Aug 2020 21:26:56 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Message-ID: <24368.41568.96908.196223@jerusalem.litteratus.org> Date: Sun, 9 Aug 2020 21:26:56 -0400 From: Robert Huff To: Ernie Luzar Cc: "freebsd-questions\@freebsd.org" Subject: csh use of grep | tr commands In-Reply-To: <5F30962B.5060005@gmail.com> References: <5F30962B.5060005@gmail.com> X-Mailer: VM 8.2.0b under 26.3 (amd64-portbld-freebsd13.0) X-Rspamd-Queue-Id: 4BPyxG1PSjz4ZkF X-Spamd-Bar: ----- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=rcn.com header.s=20180516 header.b=ZOG6ZbXK; dmarc=pass (policy=none) header.from=rcn.com; spf=pass (mx1.freebsd.org: domain of roberthuff@rcn.com designates 69.168.97.78 as permitted sender) smtp.mailfrom=roberthuff@rcn.com X-Spamd-Result: default: False [-5.17 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[rcn.com:s=20180516]; RWL_MAILSPIKE_POSSIBLE(0.00)[69.168.97.78:from]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:69.168.97.0/24]; NEURAL_HAM_LONG(-1.01)[-1.014]; MIME_GOOD(-0.10)[text/plain]; NEURAL_HAM_MEDIUM(-1.07)[-1.068]; DWL_DNSWL_LOW(-1.00)[rcn.com:dkim]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[rcn.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[rcn.com,none]; NEURAL_HAM_SHORT(-0.99)[-0.985]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:36271, ipnet:69.168.97.0/24, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[69.168.97.78:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 01:26:59 -0000 Ernie Luzar writes: > Double quotes are giving me trouble. > > I have a file with a line in it like this > ip4="10.111.098.2" > I want to get just the ip address > > ip=`grep "ip4=" directory-path/file-name > > $ip ends up having ip4="10.111.098.2" in it > > ip=`echo -n "${ip}" | tr -d "ip4=" > > $ip ends up having "10.111.098.2" in it > > Putting | tr """ " "` after the echo above gives error. > > How do I remove the " around the ip address? Would awk perhaps be a better tool? Respectfully, Robert Huff -- Get it right: _physical_ distancing; _social_ cohesion From owner-freebsd-questions@freebsd.org Mon Aug 10 01:35:25 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id ECF933C23AF for ; Mon, 10 Aug 2020 01:35:25 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x129.google.com (mail-il1-x129.google.com [IPv6:2607:f8b0:4864:20::129]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BPz710h99z4b9f for ; Mon, 10 Aug 2020 01:35:24 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x129.google.com with SMTP id y18so6268951ilp.10 for ; Sun, 09 Aug 2020 18:35:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=X22PGN8xZQususIbwoNEv0dC219HI40eNK11ZRPI8pg=; b=An9iQDkm4LKc2HtQgzjGf2XkNaP71nfVyLxTRb62WiE4kT0q9ET3m717mm5HQfCTfr GYkmvQRxWHUYADHb9/L7YSsvwmmfBixuQVjUdZr9lGISA/wsBZDZ8//U67a96gjO7pkk mWNOv9GzhlGRxb8dVBX+GTdy5PDV/+jI8X0kMUDBPXg3LL1aN9gOl83Wk6VsDpnNI+za T//50tfJKaMG8Eb80xwvRWCHRSYDofrj2pD9Y+TruTjBqYJkYmPY/JNaoZgj9nmeaGUP ttqczUrpkSRaV+qIrY4ME+eRJuC0WcnJR0jrIU5E1I6CqauNI05fJMFDMg3wGj+U+sKj +h/g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=X22PGN8xZQususIbwoNEv0dC219HI40eNK11ZRPI8pg=; b=e3ZxtXp3GFuja+CHfXzU3b/Yo5NIdqrXwoeFaZKY7GTdUCSyjsNtVq7SIAms9QgsSf yFqRHd+1giEaXXKW4MpOtjeB5lt5K6RR+mUk2Oc5sOBK5dqPB7w56U37/2TzUp0/6hAH pDWQ4P77V/Edo1v5d9ZvFfVa/8AMipYmPYa6wl7PR3n9V/gnvJtILdxz+OZN9Uon1lPp uNTYVQh7CEuClIRgDFDGHNlOTfFOFyS3jhKCWGoslsRNva0WXqaMWM/ki9iGN6F253dt ap0DtU84Dd2w6A65bPDiw3tUlYKxaCBcVrR1Cp6KMggYYdH9YI9PF7hryWm3LNjqQkFB qccw== X-Gm-Message-State: AOAM532WhDzy2ah4x3XJ8ZO8gUFtgSjO24d/ZtInLQx9XO3t35Wq7xIP 4KO6rOkwvQ0pODQj0J9lb0trxZke69cI62yu7no5VOIG X-Google-Smtp-Source: ABdhPJwcVjzmWz2uK5VunKhGQdC/MiN6kg8mKOXKoZ7/l9fGDlODVTdZUwFG/5EoaSy+vYktLjwukY8PA9mIop1ViKc= X-Received: by 2002:a05:6e02:c12:: with SMTP id d18mr14994237ile.185.1597023324102; Sun, 09 Aug 2020 18:35:24 -0700 (PDT) MIME-Version: 1.0 References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> In-Reply-To: <24368.41568.96908.196223@jerusalem.litteratus.org> From: Aryeh Friedman Date: Sun, 9 Aug 2020 21:35:12 -0400 Message-ID: Subject: Re: csh use of grep | tr commands To: Robert Huff Cc: Ernie Luzar , "freebsd-questions@freebsd.org" X-Rspamd-Queue-Id: 4BPz710h99z4b9f X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=An9iQDkm; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::129 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.74 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.61)[-0.614]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.10)[-1.103]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-1.02)[-1.021]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::129:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 01:35:26 -0000 On Sun, Aug 9, 2020 at 9:27 PM Robert Huff wrote: > Ernie Luzar writes: > > > Double quotes are giving me trouble. > > > > I have a file with a line in it like this > > ip4="10.111.098.2" > > I want to get just the ip address > > > > ip=`grep "ip4=" directory-path/file-name > > > > $ip ends up having ip4="10.111.098.2" in it > > > > ip=`echo -n "${ip}" | tr -d "ip4=" > > > > $ip ends up having "10.111.098.2" in it > > > > Putting | tr """ " "` after the echo above gives error. > > > > How do I remove the " around the ip address? > > Would awk perhaps be a better tool? > Complete overkill for what he wants to do. He wants to bang a nail in thus only needs a hammer he does not need a nail gun for only one nail. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Mon Aug 10 04:16:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C5CFD3C5114 for ; Mon, 10 Aug 2020 04:16:42 +0000 (UTC) (envelope-from daniel@dstev.xyz) Received: from mail-40134.protonmail.ch (mail-40134.protonmail.ch [185.70.40.134]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "protonmail.com", Issuer "SwissSign Server Gold CA 2014 - G22" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQ2j466x5z3SxY for ; Mon, 10 Aug 2020 04:16:40 +0000 (UTC) (envelope-from daniel@dstev.xyz) Date: Mon, 10 Aug 2020 04:16:30 +0000 To: Jacques Foucry , FreeBSD Questions From: Daniel Stevenson Reply-To: Daniel Stevenson Subject: Re: Total newbie with bhyve Message-ID: In-Reply-To: <20200808061401.GC61922@mithril> References: <20200807074305.GA61922@mithril> <20200808061401.GC61922@mithril> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-0.7 required=7.0 tests=ALL_TRUSTED,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FROM_SUSPICIOUS_NTLD, T_PDS_OTHER_BAD_TLD shortcircuit=no autolearn=disabled version=3.4.4 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on mail.protonmail.ch X-Rspamd-Queue-Id: 4BQ2j466x5z3SxY X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.01 / 15.00]; HAS_REPLYTO(0.00)[daniel@dstev.xyz]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[dstev.xyz:s=protonmail]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:185.70.40.0/24]; NEURAL_HAM_LONG(-0.99)[-0.991]; MIME_GOOD(-0.10)[text/plain]; NEURAL_HAM_MEDIUM(-1.03)[-1.027]; RWL_MAILSPIKE_POSSIBLE(0.00)[185.70.40.134:from]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[dstev.xyz:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[dstev.xyz,quarantine]; NEURAL_HAM_SHORT(-0.89)[-0.890]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:62371, ipnet:185.70.40.0/24, country:CH]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[185.70.40.134:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 04:16:42 -0000 On Saturday, August 8, 2020 1:14 AM, Jacques Foucry wr= ote: > Le vendredi 07 ao=C3=BBt 2020 =C3=A0 23:50:37 (+0000), Daniel Stevenson = =C3=A0 =C3=A9crit: > > > On Friday, August 7, 2020 2:43 AM, Jacques Foucry jacques+freebsd@foucr= y.net wrote: > > > > > Hello Friends, > > > I am a total newbie with bhyve, but I need a virtual machine linux in= order to > > > run docker. > > > Is it possible to have this kind of configuration: > > > FreeBSD 12-p7 -> bhyve (debian buster) -> docker with web acces ? > > > This is a real theoric question for now but I know that one day I wil= l need to > > > have this kind of configuration. > > > Of course VirtualBox is a anoter approch, but I perfer to use FreeBSD= main > > > virtualization technology. > > > Thanks for your advices and your time to my silly question. > > > > If you don't mind my asking, what are you trying to run with Docker? > > You may be able to accomplish what you need in a more resource- > > efficient manner by using FreeBSD's jail system. Running a VM to run > > containers in seems overkill to me. > > I know :-) > > But I need to product docker-file (and test them). The target system is > Centos. But I did not have a centos/debian/GNU Linux. I only run FreeBSD = even > on my laptop. That makes sense. I've been in similar situations where I had to run a Windows program on my machine. > So I look to the most "easy" solution. > > Thanks for your advise. You're welcome. -- Daniel Stevenson From owner-freebsd-questions@freebsd.org Mon Aug 10 06:41:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 694273C6B5F for ; Mon, 10 Aug 2020 06:41:42 +0000 (UTC) (envelope-from 4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQ5wP1Kbjz3Z30 for ; Mon, 10 Aug 2020 06:41:40 +0000 (UTC) (envelope-from 4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597041701; x=1599633701; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=Zsf5JcQj1oqztQ6ImpHCYQv3BRvRSIN0UbjxdqX56M0=; b=h1qL/BwCh/xVhLi4e3bQvvemBaibl/WTfswElIr71ueadwKdssm5sYz5UiLPzElx5N9jw951DWcPEZv0ZbtmuPiTPAc7PDCBc6aS4uXEBECtj8TJrCg4Cj47YAt7F6DOt4pC/BqFafZ+R262qDROKl2czPPfZ+Nx+OExsUbRZV4= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDdkYTU0NzAuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r1.sg.in.socketlabs.com (r1.sg.in.socketlabs.com [142.0.179.11]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 02:41:38 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.sg.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 02:41:37 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k51V2-000CKF-2E; Mon, 10 Aug 2020 07:41:36 +0100 Date: Mon, 10 Aug 2020 07:41:35 +0100 From: Steve O'Hara-Smith To: Aryeh Friedman Cc: Robert Huff , Ernie Luzar , "freebsd-questions@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810074135.c76402a37676b5d2bf03b851@sohara.org> In-Reply-To: References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BQ5wP1Kbjz3Z30 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=h1qL/BwC; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com X-Spamd-Result: default: False [-1.10 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.85)[-0.846]; FREEMAIL_TO(0.00)[gmail.com]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; MID_RHS_MATCH_FROM(0.00)[]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20007da5470.44c2b1a0331d6881c3224653e4b10cbb@email-od.com]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.037]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-1.02)[-1.017]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; FREEMAIL_CC(0.00)[rcn.com,gmail.com,freebsd.org]; SUSPICIOUS_RECIPS(1.50)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 06:41:42 -0000 On Sun, 9 Aug 2020 21:35:12 -0400 Aryeh Friedman wrote: > On Sun, Aug 9, 2020 at 9:27 PM Robert Huff wrote: > > > Ernie Luzar writes: > > > > > Double quotes are giving me trouble. > > > > > > I have a file with a line in it like this > > > ip4="10.111.098.2" > > > I want to get just the ip address ... > > Would awk perhaps be a better tool? > > > > Complete overkill for what he wants to do. > > He wants to bang a nail in thus only needs a hammer he does not need a > nail gun for only one nail. I'll just pack the perl interpreter up again then Seriously though I'd go with cut. $ echo 'ip4="10.111.098.2"' | cut -d\" -f2 10.111.098.2 -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Mon Aug 10 06:57:20 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DC7753C7624 for ; Mon, 10 Aug 2020 06:57:20 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd44.google.com (mail-io1-xd44.google.com [IPv6:2607:f8b0:4864:20::d44]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQ6GS0GyNz3b5f for ; Mon, 10 Aug 2020 06:57:19 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd44.google.com with SMTP id t15so7817463iob.3 for ; Sun, 09 Aug 2020 23:57:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=m8Q5AMQL4leWsig58VFnEJRIoF4wzvsGKOBRYmWuRks=; b=uLDcsiPs5Jb4YXrVi7WVMtJBj+NYesZhFqD1wVpYKUeAprc/LaFv3z7aIHJVHeHsmg f0EYvAe8TPgrsOfbrcABEJwM0qUJmrLFZcahwVq4szDUi/ha0tEkHe27RDDXIrTL/aks wOtTy/uzbginxggGAjSlXpnHwvKsSqjIuh0Q7BDoymmvkOpPymnI0tvYRU0QM0BrMPbZ 6megCwhQHou3sCOQ1mQ2TkNJ2TFosXzWYrs+eiP7rtKyOnNtMz9+z8yQwOVarjuOg0mF EH+c2j8FPpxKkJBah4EGxDEvie2hTIP95ZbSvJwMVstCMSANh0Pfqn3asQcVRydIiahx b/Bg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=m8Q5AMQL4leWsig58VFnEJRIoF4wzvsGKOBRYmWuRks=; b=d24SztDIPM01ediwOPzOnKgTOwewgw5QDVdGlqchiXvL6Y3FtcjB50p1afSJ2TcBjk gjzfbuuYOY6tiN5n7sPYxFMwSp6ekpvqLav3SghYKTzemQPNwYYNbn3sdf+F26NvXCh3 UOR10l27R5/RN+dyojiEm1nT5RvIPnq7IrrStuzhsnMMhuZenWW8YIYYQol3i7szreIg zZo1QmJyAhRlPMcwRqja8AMdaYnhkz71jcKNXvwhd6CWAGNIhEdK4XzV8wuUKNnWIGFZ s0GByh7groFe/psJFI1xHxIKTR2wFhBxeLziL2MrdCRdIloz8cqI8k/RJb2otxvdiiRB CsLA== X-Gm-Message-State: AOAM533j7SAzva/8/8vi9qT9j11HUphbm7a4agEcMgnu2cYJLii/7nRL uhi3dwLTgTL+TPuFtlTpaLMGJR7JzjyNQn0neTU= X-Google-Smtp-Source: ABdhPJzMOOFh9uRIXe2/qY81dn2hYK8+AUuOUkon2TmwBab+TuF3TL77o+/5MRwWDtaHRwU3jeJXrvkvngur9sb5F8o= X-Received: by 2002:a6b:9289:: with SMTP id u131mr761667iod.89.1597042638866; Sun, 09 Aug 2020 23:57:18 -0700 (PDT) MIME-Version: 1.0 References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> <20200810074135.c76402a37676b5d2bf03b851@sohara.org> In-Reply-To: <20200810074135.c76402a37676b5d2bf03b851@sohara.org> From: Aryeh Friedman Date: Mon, 10 Aug 2020 02:57:07 -0400 Message-ID: Subject: Re: csh use of grep | tr commands To: "Steve O'Hara-Smith" Cc: Robert Huff , Ernie Luzar , "freebsd-questions@freebsd.org" X-Rspamd-Queue-Id: 4BQ6GS0GyNz3b5f X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=uLDcsiPs; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d44 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.18 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.09)[-0.094]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.07)[-1.067]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-1.02)[-1.021]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d44:from]; RCVD_COUNT_TWO(0.00)[2]; FREEMAIL_CC(0.00)[rcn.com,gmail.com,freebsd.org]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 06:57:20 -0000 On Mon, Aug 10, 2020 at 2:41 AM Steve O'Hara-Smith wrote: > On Sun, 9 Aug 2020 21:35:12 -0400 > Aryeh Friedman wrote: > > > On Sun, Aug 9, 2020 at 9:27 PM Robert Huff wrote: > > > > > Ernie Luzar writes: > > > > > > > Double quotes are giving me trouble. > > > > > > > > I have a file with a line in it like this > > > > ip4="10.111.098.2" > > > > I want to get just the ip address > ... > > > Would awk perhaps be a better tool? > > > > > > > Complete overkill for what he wants to do. > > > > He wants to bang a nail in thus only needs a hammer he does not need a > > nail gun for only one nail. > > I'll just pack the perl interpreter up again then > > Seriously though I'd go with cut. > > $ echo 'ip4="10.111.098.2"' | cut -d\" -f2 > 10.111.098.2 > Only problem doesn't handle the case where you might have multiple quoted values on the line where is cut -f2 -d'='|tr -d '"' does > > -- > Steve O'Hara-Smith > -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Mon Aug 10 07:09:40 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 432963C79E2 for ; Mon, 10 Aug 2020 07:09:40 +0000 (UTC) (envelope-from 4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQ6Xg6CYQz3cD9 for ; Mon, 10 Aug 2020 07:09:39 +0000 (UTC) (envelope-from 4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597043380; x=1599635380; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=KKV2Nhu4nEU4y3x3Ib2/wtiD0LPEJ+EI8XtzfqH465Y=; b=MPAUbGCRAEVDIS50ICcTDex+rSCtG7IWgpBbDaZxLPpiasmvEriV0VqsghrBVHU9wXJz8sexCxbMBucJbzvGo6jmexotfXsJxiAJPmPgLfnIyEgg2nXH2DR0i3sRg5TaUg0BlbvioO/6LWdWKsyRSZKuO2/lrlXN0fifkxINbDQ= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDdkYTdkZjUuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r2.us-east-1.aws.in.socketlabs.com (r2.us-east-1.aws.in.socketlabs.com [142.0.191.2]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 03:09:31 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r2.us-east-1.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 03:09:30 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k51w0-000CW5-Ki; Mon, 10 Aug 2020 08:09:28 +0100 Date: Mon, 10 Aug 2020 08:09:28 +0100 From: Steve O'Hara-Smith To: Aryeh Friedman Cc: Robert Huff , Ernie Luzar , "freebsd-questions@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810080928.74df05790dd6676439ad750c@sohara.org> In-Reply-To: References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> <20200810074135.c76402a37676b5d2bf03b851@sohara.org> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BQ6Xg6CYQz3cD9 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=MPAUbGCR; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com X-Spamd-Result: default: False [-1.10 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.85)[-0.848]; FREEMAIL_TO(0.00)[gmail.com]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; MID_RHS_MATCH_FROM(0.00)[]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20007da7df5.d539c938cd13d8f02a2e7c56c92fadcf@email-od.com]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.038]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-1.02)[-1.015]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; FREEMAIL_CC(0.00)[rcn.com,gmail.com,freebsd.org]; SUSPICIOUS_RECIPS(1.50)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 07:09:40 -0000 On Mon, 10 Aug 2020 02:57:07 -0400 Aryeh Friedman wrote: > On Mon, Aug 10, 2020 at 2:41 AM Steve O'Hara-Smith > wrote: > > > Seriously though I'd go with cut. > > > > $ echo 'ip4="10.111.098.2"' | cut -d\" -f2 > > 10.111.098.2 > > > > Only problem doesn't handle the case where you might have multiple quoted > values on the line where is cut -f2 -d'='|tr -d '"' does Agreed - but since we know it's a quoted IP address we can save a process. -- Steve O'Hara-Smith | Directable Mirror Arrays C:\>WIN | A better way to focus the sun The computer obeys and wins. | licences available see You lose and Bill collects. | http://www.sohara.org/ From owner-freebsd-questions@freebsd.org Mon Aug 10 07:18:25 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CFDDD3C7D3E for ; Mon, 10 Aug 2020 07:18:25 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x12a.google.com (mail-il1-x12a.google.com [IPv6:2607:f8b0:4864:20::12a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQ6km272lz3cbv for ; Mon, 10 Aug 2020 07:18:24 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x12a.google.com with SMTP id y18so6709254ilp.10 for ; Mon, 10 Aug 2020 00:18:24 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Vy5yFrahEpgwvFOpWBiKa7q+7sk7Kc7pok4rJohNJlI=; b=L/bG7l1Fvq9xwuwt+fCyHzkVpOPDuQQy5iIQCgUEkJfj4wCHt9ya67N4rNyEu3Ld+5 1Hotg3vn5RTlqr2S+VCy78OfL6oA3TgzNb+Sb9EoVxeFT3yyoBCtVsnDPqZHwRKFnp0a OXkm3sh5zx+NbB8U/oeE5tznCNyYErEk9AJW+JssuX82PIvYrFAq+0btOy9BVg7bes8l NW50tPGazMZP/tPUXEm8Y6AF5D3ow5VfO0TrejlOC+JK2lCHnnGazpQBqVzA2U1ouA5D nQYvFazfZUSC6TSCk3jGNyiJ3gfnNoghcmE+SB6Qwxbiqw92IwbZCBDmkBIwRq76OUJa SKOQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Vy5yFrahEpgwvFOpWBiKa7q+7sk7Kc7pok4rJohNJlI=; b=EqweI/DAVcqSAZ7K7nHOIpgvZnE5kArFk3mio+QkEmHcvTM664GFTiRPUCr5iWTMFu xwxwQFQgSZKtJv+yg8RZOj/NhXHMUzNcmtlTURm2Yl3ZWCl70QstbUDnajmxZdKJANNA MeLOv96RUtyqTHxVbJdtIww1R1XL8npMevWle18ut8hXENSd+kAC5ThdlH+hg64Gg+Jn YiZ153Qdxykz6nZMnw/6xkpmtIlnpp7l3Fh64bVAe1mPa+xewavc9SyqPqv7aVRT4ckG gwxRE2dTI6CriOZAua56IB1i+uG92KJgPaY7q1UZmOCrrHcd8z2eUBX3TneaHMLoZdSW 7skA== X-Gm-Message-State: AOAM533pFlfiqq15YYvd47ElfcuQR7wbUq82GIvwZviK0xjnlkHS1U72 +spc2TvILJ55gv3ogKA6hjDMYEgIM9+tS9Sm9AQ= X-Google-Smtp-Source: ABdhPJxBfMoQ7SdbhEZBYnM0kGTfpbbn5zIdsbLqMu8T8MaT4OJ8+VmBEdF607XwN0jz3zTvsp+b7fI/8pFLtFcvkhM= X-Received: by 2002:a92:cbd0:: with SMTP id s16mr8142160ilq.187.1597043903229; Mon, 10 Aug 2020 00:18:23 -0700 (PDT) MIME-Version: 1.0 References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> <20200810074135.c76402a37676b5d2bf03b851@sohara.org> <20200810080928.74df05790dd6676439ad750c@sohara.org> In-Reply-To: <20200810080928.74df05790dd6676439ad750c@sohara.org> From: Aryeh Friedman Date: Mon, 10 Aug 2020 03:18:12 -0400 Message-ID: Subject: Re: csh use of grep | tr commands To: "Steve O'Hara-Smith" Cc: Robert Huff , Ernie Luzar , "freebsd-questions@freebsd.org" X-Rspamd-Queue-Id: 4BQ6km272lz3cbv X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=L/bG7l1F; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12a as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.18 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.09)[-0.088]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.07)[-1.067]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-1.02)[-1.022]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::12a:from]; RCVD_COUNT_TWO(0.00)[2]; FREEMAIL_CC(0.00)[rcn.com,gmail.com,freebsd.org]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 07:18:25 -0000 On Mon, Aug 10, 2020 at 3:09 AM Steve O'Hara-Smith wrote: > On Mon, 10 Aug 2020 02:57:07 -0400 > Aryeh Friedman wrote: > > > On Mon, Aug 10, 2020 at 2:41 AM Steve O'Hara-Smith > > wrote: > > > > > Seriously though I'd go with cut. > > > > > > $ echo 'ip4="10.111.098.2"' | cut -d\" -f2 > > > 10.111.098.2 > > > > > > > Only problem doesn't handle the case where you might have multiple quoted > > values on the line where is cut -f2 -d'='|tr -d '"' does > > Agreed - but since we know it's a quoted IP address we can save a > process. > In foo: ip4_ifaces="re0:192.168.11.60" "lo0:127.0.0.1" foreach i (`grep ip4 foo|cut -f2 -d'='|tr -d '"') ifconfig `echo $i|cut -f1-2 -d':'` end > -- > Steve O'Hara-Smith | Directable Mirror Arrays > C:\>WIN | A better way to focus the sun > The computer obeys and wins. | licences available see > You lose and Bill collects. | http://www.sohara.org/ > -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Mon Aug 10 12:14:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 247B43A22D9 for ; Mon, 10 Aug 2020 12:14:42 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BQFJd14jpz4DY5 for ; Mon, 10 Aug 2020 12:14:41 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 8555C10276A; Mon, 10 Aug 2020 14:14:34 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1adcG2-Chmhj; Mon, 10 Aug 2020 14:14:34 +0200 (CEST) Received: from christophs-macbook-pro.fritz.box (p508234a4.dip0.t-ipconnect.de [80.130.52.164]) by mail.kukulies.org (Postfix) with ESMTPSA id D9020102769; Mon, 10 Aug 2020 14:14:33 +0200 (CEST) From: Christoph Kukulies Message-Id: <66BD7FC7-D480-4E12-8215-0C351668A5EA@kukulies.org> Content-Type: multipart/signed; boundary="Apple-Mail=_1FFD3F60-EA4F-4B17-83A8-96C20442E71E"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: csh use of grep | tr commands Date: Mon, 10 Aug 2020 14:14:32 +0200 In-Reply-To: <5F30962B.5060005@gmail.com> Cc: "freebsd-questions@freebsd.org" To: Ernie Luzar References: <5F30962B.5060005@gmail.com> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BQFJd14jpz4DY5 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [-2.09 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ATTACHMENT(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; NEURAL_HAM_SHORT(-0.65)[-0.646]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[80.130.52.164:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.64)[-0.641]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; NEURAL_HAM_LONG(-0.20)[-0.202]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; DMARC_NA(0.00)[kukulies.org]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; R_SPF_NA(0.00)[no SPF record] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 12:14:42 -0000 --Apple-Mail=_1FFD3F60-EA4F-4B17-83A8-96C20442E71E Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 file t: ip4=3D"1.2.3.4" sed 's/\(ip4=3D"\)\([^"]*\)\(".*$\)/\2/' Am 10.08.2020 um 02:34 schrieb Ernie Luzar : >=20 > Double quotes are giving me trouble. >=20 > I have a file with a line in it like this > ip4=3D"10.111.098.2" > I want to get just the ip address >=20 > ip=3D`grep "ip4=3D" directory-path/file-name >=20 > $ip ends up having ip4=3D"10.111.098.2" in it >=20 > ip=3D`echo -n "${ip}" | tr -d "ip4=3D" >=20 > $ip ends up having "10.111.098.2" in it >=20 > Putting | tr """ " "` after the echo above gives error. >=20 > How do I remove the " around the ip address? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to = "freebsd-questions-unsubscribe@freebsd.org" --Apple-Mail=_1FFD3F60-EA4F-4B17-83A8-96C20442E71E Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODEwMTIxNDMyWjAvBgkqhkiG9w0BCQQxIgQgrDybaOv4i8v5 s2Bztj0fi0rKBviHyHDX9z20WB9pjqcwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQCHP6rE4f01tD9Bw5XC6Zup3d2bteLBF2KgCRLwo+1tsGsX 8XfvfmOPmyk4vjSvNHamKDyskbgmrsHX+hCawn+lqT/S+7n+K4YsV7K/V/QfcYJwXvXRmUnp3KgN 465Mt01/Sa/ADb5yn5SL19Ms8bHm6uD5qavTRLm+MdhRmHwvqmWz+SVqFBiJBIS824iCu4I88auV O/eiS/D47RGDOsdnGwdXGJqFYovtmFjfmUgpTuxB8czBkRsotqkOwq1H7ltte4Ol24Zy7FzrNEG+ 2HG17k26WJNhIvXKaly2z1fxm4/Fd67tfW6NXQrRSBo65LonbPEq/0hJB3Rj1N2nRL8AAAAAAAAA --Apple-Mail=_1FFD3F60-EA4F-4B17-83A8-96C20442E71E-- From owner-freebsd-questions@freebsd.org Mon Aug 10 14:44:57 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 50F3A3A5491 for ; Mon, 10 Aug 2020 14:44:57 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.187]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQJf02cvQz4N1r for ; Mon, 10 Aug 2020 14:44:55 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.236.89]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1Mdevh-1keCkG1omX-00ZfVi; Mon, 10 Aug 2020 16:44:53 +0200 Date: Mon, 10 Aug 2020 16:44:53 +0200 From: Polytropon To: Ernie Luzar Cc: "freebsd-questions@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810164453.378835aa.freebsd@edvax.de> In-Reply-To: <5F30962B.5060005@gmail.com> References: <5F30962B.5060005@gmail.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:LZ7FOGa576k3CnStkwv6t02XqCZ7O1mqH/qlvf+zrAyt1CFjxrX Y2/STEHQvonSCe0FC3e+9Y/WKeDl2Xs8ALQO0aXzumvIy504AxO6I383hxbkWzw2f0I5aNB liu5044nHPNbexieuFJjF17pp0Wq0KyBs+649DmMG7Qfh8VIe/p5qZ5eHI9N1zLWnNWfiMd BVC7/hnmIlcw6q7KuI3tA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:/j/AXoXtzZg=:gPvB9q2zor3alH/F8FJJI7 nFbLeSObKOeRQ7UyEWHds9i0iGli02xvFjvhow4yzD+B2uKFZ6W29CTLEnIGDeozNRR1xtfbt pYgNlrxsPuVnD5Oa0leJTAqiGoUdD9ZoGe/quqNC+QZFQopNfYFVA2SthGb4RloS1P93VIXsX BvUjuNeTlAatr8hOfzRt6L26McluMoNjgI2hYpANPADoiweKYyyWdvrmjtCBPHH0FYBj2OY81 LvA9KNBgScDD4HzItz070mLgRALEH/ChHbJfPSGc7ms3eDoxe4BW9alKyyYOdQBMOzJFGAJZm B/Bphm5fgLy120HvnHKFxw/6qikMWSfo6accjS7Qu/4LPXbbMfH5MYSio5V+oPvW8qXy+t3Qa J8PcJUyUOfAz+2pLcPXS+BR0VjsaJ9H/2qaBkHijcvaOWpn9io1/aAE7MoiQR9NIiCGKp3Hfp FsPlR78aGrHgAj0jnjjlAeEmjYBDB16MJ+1VguJFuEayu1ScDEpiJ22HujhZxPIh6520n/w3n 1+Tu+NDeGmKPZMEMuLft+LUpuBn86kTCSOhlWBvuvHtepgS3bSosWCMaBbNJFDoTSQwCzT19i y/b52vdSeCpYjI/18f/Q7mO76vm7/rQ2mw6GGXt52xjReMzoCJDgc1E/ynB6wH27BTWYA68hp jAAtDSWFRlaDUmR+3W4S7kVaVMNZknXcAOBCBTTMDtDh++QWUHKPh485gtqlt8yP/U5mr6jy0 vyCT+rb1BxP8DrkZv9I26eO3kmNaIqRylQ/Xcw+hNB4p7biZeSufgLV7OOfYOW/Qc/RPJCaUT smVXSxsi80zHSWA6dZGlrigywcEaMwcRHvw4B2Xs9GgtGyT/ZiDWxyzX/MC3DHRsUf1P1Th X-Rspamd-Queue-Id: 4BQJf02cvQz4N1r X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.187) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [2.46 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; NEURAL_HAM_SHORT(-0.23)[-0.228]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.236.89:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-0.00)[-0.000]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.29)[0.293]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.187:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.187:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 14:44:57 -0000 On Sun, 09 Aug 2020 20:34:51 -0400, Ernie Luzar wrote: > Double quotes are giving me trouble. > > I have a file with a line in it like this > ip4="10.111.098.2" > I want to get just the ip address > > ip=`grep "ip4=" directory-path/file-name > > $ip ends up having ip4="10.111.098.2" in it > > ip=`echo -n "${ip}" | tr -d "ip4=" > > $ip ends up having "10.111.098.2" in it > > Putting | tr """ " "` after the echo above gives error. > > How do I remove the " around the ip address? Without any insult: You're using the wrong tool. While the C shell is acceptable as an interactive shell (and I even prefer it over bash to a certain degree), it's absolutely terrible, and I may even say unsuited for scripting. The system's default scripting shell is sh. Use that. See "man sh" for quoting rules. It makes your life easier and more portable. :-) You can use bash to interactively develop sh scripts; even for creating one-liners bash is very convenient. Back on topic. If you don't mind an additional program call to sed, you can use the "replace with nothing" method: % echo 'those "are" quotes' | sed 's/"//g' those are quotes This example is from a C shell session. :-) Applied to your initial problem: % echo 'ip4="10.111.098.2"' | sed 's/ip4="//g; s/"//g' 10.111.098.2 You can use sed for multiple "replace with nothing" statements. Allow me to leave a pointer to the following article: Tom Christiansen: Csh Programming Considered Harmful http://harmful.cat-v.org/software/csh If you want to process some input files and do something with the lines they contain, use the right tool: This is often perl, but can also be sh or bash. It cannot be csh. That's the truth. ;-) I'd like to remind all readers that I've written one (in numbers: 1) script in the C shell which still works and which I still use from time to time. But I cannot recommend following my example, and I have promised to never do it again. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Mon Aug 10 14:49:31 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2DB093A575A for ; Mon, 10 Aug 2020 14:49:31 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.133]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQJlG01Grz4NGc for ; Mon, 10 Aug 2020 14:49:29 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.236.89]) by mrelayeu.kundenserver.de (mreue009 [212.227.15.167]) with ESMTPA (Nemesis) id 1Mr9OA-1kSwWw3LUs-00oFw7; Mon, 10 Aug 2020 16:49:24 +0200 Date: Mon, 10 Aug 2020 16:49:24 +0200 From: Polytropon To: Robert Huff Cc: Ernie Luzar , "freebsd-questions\@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810164924.4ec11e74.freebsd@edvax.de> In-Reply-To: <24368.41568.96908.196223@jerusalem.litteratus.org> References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:7luJW3OMK/8nPz5fPRBtwAjzwTBTCCTiwVIxwuZsqFyUp7MU5Y6 f8K+FjAJMYKBzAVj+ivQS95qJpL8Ll0uXfdBjQCG0/eRYfxED+VQuBs3n9tuwWCBwXqGUtQ n1AQ0JWQuEjFjYL+WofP7H8FoGdVD1ClF/90jlKGLkHPAjqYvZX4B899CTbQB8wFz7MSbWL AJzIp3iMDdGUmAAl5cbVA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:43e41YfeNNY=:JS4Ch0m8Aav5u0ymkI+w/V BlAZSgryLF8vCwDxNKooHHiLW4CKOLveQUQboMZs0Azt4KUJ/lGseMIX3p9UP0W0uR3ZTwvPZ Qz+2iBwBGP7vCTa1aoi6aAhREanwN8m6R/ivnPA6vkHxIzts8JLt8p9KKYZnXlSvhl0M36jI0 lsMbDwh72R7aBYJ0bI096qDW9zfVx994p5h8gTPZxiKFnzoEKZih47h1OztNEyg9b66mf1bDX KsBXMdQJ8+XHUftSj87DDdjQZbUs5GOFrBV6A8OlgAXtWbdjNlNgHQM2kZHzBe+eIeb6hJrA0 SMIYwHsvOLCRR73YXQucGp8DoLT08oGjC4TtLR2MiIPkiX2Z0Xkb6FCzzyL31dg77awyMPDWy MSLqnmERWSsy5Hh16N2UW1eUCLVcnURCFLy3OXPIT5xL1gYYx0c0OuSA0DttrWOiCp3zUuXvJ 7K7UgZnI+dXVGKOKkiBEh5Px/+stj73yphP7bpdjv/UNI6TSvgHWSQq24I277ye9e9ru4J3oi iTnP0tDqqsWyw4pUHD3751BjmGFm/NPDd2BpyvRNx+V4ZEH4I0HTRYWcEiwoLUfUaSLacFdOk noh6fEvVTn5i45hkAgzKCeQlo80BS//NpltUvTw02k2pSLZaQ+QTf/iubzrP6k6r50yIccYAp rTEnYQ10QtUkEK1seJ+Up7hJBjau7EBJvx3wz0t/Gif5kxk7iwF+jMNtAEdo+CrL+LqneU07Y hvGBWkKkmgEsXvZRsPt4qrjOeAI+4XDjgAdwK0CuIfGgwSHe9n15KM5m04+1et8YCpyYyuIES CbbMMU68PDQPEattXej+TyBFbJ3Kcg5SYqvrG0jePR+8utxOVX2qhA0gFpwB7M+PpcXo5Sb X-Rspamd-Queue-Id: 4BQJlG01Grz4NGc X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.133) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.07 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.236.89:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.14)[0.142]; NEURAL_HAM_LONG(-0.15)[-0.148]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.68)[0.681]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.133:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.133:from]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 14:49:31 -0000 On Sun, 9 Aug 2020 21:26:56 -0400, Robert Huff wrote: > Ernie Luzar writes: > > > Double quotes are giving me trouble. > > > > I have a file with a line in it like this > > ip4="10.111.098.2" > > I want to get just the ip address > > > > ip=`grep "ip4=" directory-path/file-name > > > > $ip ends up having ip4="10.111.098.2" in it > > > > ip=`echo -n "${ip}" | tr -d "ip4=" > > > > $ip ends up having "10.111.098.2" in it > > > > Putting | tr """ " "` after the echo above gives error. > > > > How do I remove the " around the ip address? > > Would awk perhaps be a better tool? Possibly. But it's more elaborate than sed. :-) % echo 'ip4="10.111.098.2"' | awk '/^ip4=/ { gsub("ip4=", "", $0); gsub("\"", "", $0); print $0 }' 10.111.098.2 Compared to: % echo 'ip4="10.111.098.2"' | sed 's/ip4="//g; s/"//g' 10.111.098.2 However, awk can eliminate a possible grep invocation to only process matching lines, which might be an advantage. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Mon Aug 10 14:54:44 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CB7983A5870 for ; Mon, 10 Aug 2020 14:54:44 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.131]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQJsH4tTNz4NjR for ; Mon, 10 Aug 2020 14:54:43 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.236.89]) by mrelayeu.kundenserver.de (mreue011 [212.227.15.167]) with ESMTPA (Nemesis) id 1MZTa2-1kB8gJ1dBu-00WRqc; Mon, 10 Aug 2020 16:54:41 +0200 Date: Mon, 10 Aug 2020 16:54:40 +0200 From: Polytropon To: Christoph Kukulies Cc: Ernie Luzar , "freebsd-questions@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810165440.ea0c541d.freebsd@edvax.de> In-Reply-To: <66BD7FC7-D480-4E12-8215-0C351668A5EA@kukulies.org> References: <5F30962B.5060005@gmail.com> <66BD7FC7-D480-4E12-8215-0C351668A5EA@kukulies.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:zYUW1/o4wCvkTs74L43MxPxuTcaUdXrtHl3CJu6TTOTIIBavEBk 7iR9DHmANMbS7dTUUKJmchQ8es013j9QJBZMGZSiUZ9HOTMPSra4W+2uumurDCNt/Ku0axm lE4z1OsQBP3DvzSOiFouloXDn/oGhYqdVfn8F3TteZIfsgqdJe9ca7l1rT1Rg4x4OHPF9Sg crUAEODKbvy9wNQwi8geA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:3Tqph9YHhBk=:MNl/TrjAJmB7vOgv40stu1 ShA2Qd4BezrE0Pb1Q2RuyuBg6PXNlkvbYc/Rn9TwoDQmHUMuZMsRq4NXXsDbYMrJzSNZDh9lA 2X7tz/jO87JIFzUA0EgJw+rc93XTdaLl4vrrKZEPhr+icFpVoBhhluaw1+VzI6AuGppN4xAlz Anrua+7BB3ejVNlVokxkJtlz9RMT5CZ/nKh65RZXvS3UCnUjC16sdgDlgPH2K50PFpDul4cIu tb4og2y9s6ajDZAl/Xx86SM4UjWZwQ2xi8GQP8QlMNpzMjBNp9PhGDFMndKqNMCf+5L+nLYAu gNHI1w9ELg4dYFjFiW6bdhzns7UQ/3+gnPwWwH25qrqMwy6jf/U3JkMTGQjXDT3geaZmaNJ+h QERZAzaJABYkpkhCCS6UAb1Iktj8stS3iCtdH0dxsjEX75rOX+gsrVOcUwmqpPlf30wtEEVPP F1Y3t5sFtW9wNuT1ixfypvZUZHBEUwGjthzK+oVYFNXw0nfnwRd9gZXsf6RT6bn0fKqvG98bT c3Jpqzf5rDqrxGbTpGtI9GsMFZRkv2RuCYXHePH4EWengI1tWMka3q8AI+QpQms3j8tC+kWxd zj/o1rzRb45B28yGgGDl7LeU9/RcNGNkv5V7SxNN3hiFCE3DBoswBVqVae6iaE+OerPTp7Odu eD5kwx/X8lJ1uvS7avXJ0vsWqZNW+CfnvE0bSMdFIepad6pIyskbgnLVr3aOQ3CraIQtr86Bb 35N3UB04jT+19jZDz7rZIJtcw4TrleYQnmPt5dykXtaVsmspAMdiy1TWK/NfaSx6KOumUYujd axurRhdxD02Zw4MJ9IS4YE3rRG6x3gRixgtI35J+vWJYMq4xweCShEPHNUvqqPCsRtggnYb X-Rspamd-Queue-Id: 4BQJsH4tTNz4NjR X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.131) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [1.86 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; NEURAL_HAM_SHORT(-0.17)[-0.174]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.236.89:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.61)[-0.608]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.24)[0.244]; TO_MATCH_ENVRCPT_SOME(0.00)[]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.131:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.131:from]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 14:54:44 -0000 On Mon, 10 Aug 2020 14:14:32 +0200, Christoph Kukulies wrote: > file t: > > ip4="1.2.3.4" > > > sed 's/\(ip4="\)\([^"]*\)\(".*$\)/\2/' > > OTOH, tr -d '"‘ strips off double quotes. ^ Well, tr -d '"' does, tr -d '"‘ does not. % echo 'ip4="10.111.098.2"' | tr -d '"‘ Unmatched '. Here we can see "smart quotes" in action. Next stop: printf(„Hello world!\n“); ;-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Mon Aug 10 14:57:01 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2F41A3A594E for ; Mon, 10 Aug 2020 14:57:01 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from bede.qeng-ho.org (bede.qeng-ho.org [217.155.128.241]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQJvv2tNGz4Nd8 for ; Mon, 10 Aug 2020 14:56:59 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by bede.qeng-ho.org (Postfix) with ESMTP id 23AFE1063C; Mon, 10 Aug 2020 15:56:52 +0100 (BST) Subject: Re: csh use of grep | tr commands To: Ernie Luzar , "freebsd-questions@freebsd.org" References: <5F30962B.5060005@gmail.com> From: Arthur Chance Message-ID: Date: Mon, 10 Aug 2020 15:56:51 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: <5F30962B.5060005@gmail.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BQJvv2tNGz4Nd8 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Spamd-Result: default: False [-2.88 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.053]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:217.155.128.240/29]; NEURAL_HAM_LONG(-0.98)[-0.983]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[qeng-ho.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.55)[-0.546]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com,freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:13037, ipnet:217.155.0.0/16, country:GB]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 14:57:01 -0000 On 10/08/2020 01:34, Ernie Luzar wrote: > Double quotes are giving me trouble. > > I have a file with a line in it like this > ip4="10.111.098.2" > I want to get just the ip address > > ip=`grep "ip4=" directory-path/file-name > > $ip ends up having ip4="10.111.098.2"  in it > > ip=`echo -n "${ip}" | tr -d "ip4=" > > $ip ends up having "10.111.098.2"  in it > > Putting | tr """ " "` after the echo above gives error. > > How do I remove the " around the ip address? Provided you're using sh (or bash) for your script eval $(grep -e '^ip4=' /path/name) will set the variable ip4 to the address. Try echo $ip4 afterwards to see. -- The number of people predicting the demise of Moore's Law doubles every 18 months. From owner-freebsd-questions@freebsd.org Mon Aug 10 15:17:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B5F6A3A5D65 for ; Mon, 10 Aug 2020 15:17:45 +0000 (UTC) (envelope-from 4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQKMs02ltz4Q6c for ; Mon, 10 Aug 2020 15:17:44 +0000 (UTC) (envelope-from 4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597072665; x=1599664665; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=s8uWnDsmUvWnEUXZyyYDcPartYMzfbj/jBfO9O2FJu4=; b=dfGlqrOzyn6aIpYItFspFBMcXTg/HvW8r+I+iGKELVllAxiUSpLC2r22+L61db+M6iEkl65BfdgDxxhf2W6WABySB5y41hI4XXOBtaLBD8Ei5UWtoWf8AiMe3nHeV6oVVVsTM2E4jZJk11ALU6pkguJk1oV656oUrhbsAzxsUUw= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDdlNDQxOWMuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r1.us-east-2.aws.in.socketlabs.com (r1.us-east-2.aws.in.socketlabs.com [142.0.189.1]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 11:17:39 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.us-east-2.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Mon, 10 Aug 2020 11:17:35 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k59YL-000Dzq-Ey; Mon, 10 Aug 2020 16:17:33 +0100 Date: Mon, 10 Aug 2020 16:17:33 +0100 From: Steve O'Hara-Smith To: Arthur Chance Cc: Ernie Luzar , "freebsd-questions@freebsd.org" Subject: Re: csh use of grep | tr commands Message-Id: <20200810161733.b810a75431ef72e9d7224709@sohara.org> In-Reply-To: References: <5F30962B.5060005@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BQKMs02ltz4Q6c X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=dfGlqrOz; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com X-Spamd-Result: default: False [-2.91 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.05)[-1.053]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; TO_DN_SOME(0.00)[]; NEURAL_HAM_LONG(-0.99)[-0.991]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-1.16)[-1.163]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20007e4419c.72e508db0ec0811e7e9f65ec3bdb756c@email-od.com]; MID_RHS_MATCH_FROM(0.00)[]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 15:17:45 -0000 On Mon, 10 Aug 2020 15:56:51 +0100 Arthur Chance wrote: > eval $(grep -e '^ip4=' /path/name) Sneaky! I like it. -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Mon Aug 10 17:01:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CD6593A85DE for ; Mon, 10 Aug 2020 17:01:12 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from outgoing.tristatelogic.com (segfault.tristatelogic.com [69.62.255.118]) by mx1.freebsd.org (Postfix) with ESMTP id 4BQMgC3gdKz4X4Q for ; Mon, 10 Aug 2020 17:01:11 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: by segfault.tristatelogic.com (Postfix, from userid 1237) id 27F024E67C; Mon, 10 Aug 2020 10:01:03 -0700 (PDT) From: "Ronald F. Guilmette" To: freebsd-questions@freebsd.org Subject: GDB no workie? Permission problem? MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <62604.1597078863.1@segfault.tristatelogic.com> Date: Mon, 10 Aug 2020 10:01:03 -0700 Message-ID: <62605.1597078863@segfault.tristatelogic.com> X-Rspamd-Queue-Id: 4BQMgC3gdKz4X4Q X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of rfg@tristatelogic.com designates 69.62.255.118 as permitted sender) smtp.mailfrom=rfg@tristatelogic.com X-Spamd-Result: default: False [-0.65 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.74)[-0.743]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[tristatelogic.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.54)[-0.536]; NEURAL_HAM_SHORT(-0.08)[-0.076]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14051, ipnet:69.62.128.0/17, country:US]; SUBJECT_ENDS_QUESTION(1.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 17:01:12 -0000 Just ran gdb, which I haven't done for awhile, to find a small bug in one of my own C programs. Set two breakpoints successfully and then tried to r(un) the program to be debugged. (This was all being done under my own personal non-priviliged account.) Immediately got something very unexpected: warning: Could not trace the inferior process. Error: warning: ptrace: Operation not permitted During startup program exited with code 127. I su'd to root and tried again, and of course now it works. So, um, what the hay? What goes on here? I seem to vaguely recall some "security" options being presented at system install time, and I do believe one of these had to do with ptrace. So I guess that I must have made the Wrong Choice with respect to that one. OK. Fine. Now how do I fix that misake on my part, short of re-installing the whole bloody system? (I'm looking at the man page for ptrace(2) and it is not helpful on this question.) From owner-freebsd-questions@freebsd.org Mon Aug 10 17:28:10 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 336E23A969E for ; Mon, 10 Aug 2020 17:28:10 +0000 (UTC) (envelope-from yasu@utahime.org) Received: from gate.utahime.jp (gate.utahime.jp [183.180.29.210]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQNGJ5nfXz4Ynt for ; Mon, 10 Aug 2020 17:28:08 +0000 (UTC) (envelope-from yasu@utahime.org) Received: from eastasia.home.utahime.org (eastasia.home.utahime.org [192.168.174.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by gate.utahime.jp (Postfix) with ESMTPS id 45E3ECCE1 for ; Tue, 11 Aug 2020 02:27:58 +0900 (JST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=utahime.org; s=maybe2019112701; t=1597080478; bh=bcNLk6GeiFUKmG22Zd1ssuVmMeYpMatKaHdt2BUC+Ag=; h=Date:To:Subject:From:In-Reply-To:References; b=LW58SZOP0R5OqVDl9oTi9HTigtrL8UHvlB5xxV9EEx/z+mV1j1BNLuy73m72XpSm9 WzIMt6otuWR3cGY9tcfi/QpMnN0eT5QKK25AB6ZyHsmi2HI7VsYHPQLBlQXh0+8uS+ jNO+lEK9SpJRwb4gicJHwk44cSqOSZ3p/GNAR2ed8V/MfQHlIpsX2UU7Sf6l194WKr Ktt4cPuVC9NZ8r5/9ZDzmc2ZgJUNDhxNyRj1iU7rmNirqgGjmUaPd6w8hDmg5Pc3HX Ci4DKu/Ph40CE9/NdVIscmnlXpY/0pV9AWcX9uKZCWZss/qLvT2dNG/SIVdvIf/VQp rL8HVNWKznBdQ== Received: from localhost (rolling.home.utahime.org [192.168.174.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by eastasia.home.utahime.org (Postfix) with ESMTPSA id B19F94F6CB; Tue, 11 Aug 2020 02:27:56 +0900 (JST) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.102.4 at eastasia.home.utahime.org Date: Tue, 11 Aug 2020 02:26:54 +0900 (JST) Message-Id: <20200811.022654.1924978480022516137.yasu@utahime.org> To: freebsd-questions@freebsd.org Subject: Re: GDB no workie? Permission problem? From: Yasuhiro KIMURA In-Reply-To: <62605.1597078863@segfault.tristatelogic.com> References: <62605.1597078863@segfault.tristatelogic.com> X-Mailer: Mew version 6.8 on Emacs 26.3 Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BQNGJ5nfXz4Ynt X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=pass header.d=utahime.org header.s=maybe2019112701 header.b=LW58SZOP; dmarc=none; spf=pass (mx1.freebsd.org: domain of yasu@utahime.org designates 183.180.29.210 as permitted sender) smtp.mailfrom=yasu@utahime.org X-Spamd-Result: default: False [-0.13 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[utahime.org:s=maybe2019112701]; NEURAL_HAM_MEDIUM(-1.01)[-1.013]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.96)[-0.957]; RCVD_COUNT_THREE(0.00)[3]; DMARC_NA(0.00)[utahime.org]; R_SPF_ALLOW(-0.20)[+a:spf-authorized.utahime.org]; DKIM_TRACE(0.00)[utahime.org:+]; NEURAL_HAM_SHORT(-0.16)[-0.163]; MID_CONTAINS_FROM(1.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; SUBJECT_ENDS_QUESTION(1.00)[]; ASN(0.00)[asn:2519, ipnet:183.180.0.0/16, country:JP]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 17:28:10 -0000 From: "Ronald F. Guilmette" Subject: GDB no workie? Permission problem? Date: Mon, 10 Aug 2020 10:01:03 -0700 > I seem to vaguely recall some "security" options being presented > at system install time, and I do believe one of these had to do > with ptrace. So I guess that I must have made the Wrong Choice > with respect to that one. OK. Fine. Now how do I fix that misake > on my part, short of re-installing the whole bloody system? "System Hardening" stage of installation is handled by /usr/libexec/bsdinstall/hardening and it is shell script. So if you understand syntax of bourne shell you can undo your system hardening settings by reading it. --- Yasuhiro KIMURA From owner-freebsd-questions@freebsd.org Mon Aug 10 18:41:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 958543AC1EB for ; Mon, 10 Aug 2020 18:41:45 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQPvD3dXtz4gFm for ; Mon, 10 Aug 2020 18:41:44 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.236.89]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1MiJEc-1kbUl0482Q-00fQCv; Mon, 10 Aug 2020 20:41:41 +0200 Date: Mon, 10 Aug 2020 20:41:40 +0200 From: Polytropon To: "Ronald F. Guilmette" Cc: freebsd-questions@freebsd.org Subject: Re: GDB no workie? Permission problem? Message-Id: <20200810204140.62390ec3.freebsd@edvax.de> In-Reply-To: <62605.1597078863@segfault.tristatelogic.com> References: <62605.1597078863@segfault.tristatelogic.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:ShhMrYaUx3C6Qo9iVnMvHbA1XDckqI/FxP3s9BXxxzPECSUYV9A e356osK2g8+vG6/mc1250NNzjDla184e7oeiqJHXNdFlU1KunusMdg54ujwGhROlQaNmJIq C0RkcOtYcWKJyTzq4CtIyhba7WvHWMb3mH2sH/VDRLkiiP+lJjQLXWgYZhONGWs7zxMguXg 64GVfihNHbR951q8EtNSA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:HQJwFmCFMsc=:VWKZX+MGIEjPQIjoA5inIJ lCteLYrvSxKPlKjIc9gc+1bADzyCVGr0U25ThI7faYlmKgmo51glycsjSVOGKm82r734r6cdf OZ+fTMQooMmZxWgU7bb+ssPjg9UhDdnNXRU/D1WlNxVQ6bigFjz0hYunMvAJ311Vei/nh3JFv dRyMZMouu2/dbmW0e6jP+ycVJeDfqxTKyjJ03Fs6DxxCmHS3Z+67fU/9/ms6FZv/9+TfaVMdj blk3Bj6JMvBZ53dE0Ul/S9jRJCpCHYK3aYqdSJITqBfANTtsqUYOXyBA8zE2pESxbVSKICqF9 vMOhnSLHGuBbfLZMe0jqOMtbFhM2kT8exA/V4HhuPpV/KSITT7HnBsN6+ajkDTRD4zg5B2g+n RTMWqfRdeSp+53VGh5yHjyJx1+LCNUvRxJxlMpxJZEY5AzP9xm0gKo2ojfYyWzYOsgKijBqFZ PiWMXs+l4hV9wry47N3bOKiGFtmkkdgzG0nOMZrEDbB50dDx7KgQ3Z2gXTnh/cf3Azo9sk0+Y 78J2qsBSjnO4aPhYZE5LsCf+RRrZwjJeONBzntxJkvM3UzHyN7pgQxFz/9kOYBoZc/YUwj9aa hoaRNkjPL4Q5lUxD1WqtsAgtrFIvHISycfW/Xg1gI2/2asaDlzwZGVg5KKP7o6KsALoR/HGb0 FMb1GtyREPSiIv7cePRZZRUeIKPG2pRibCj9qWykafkPCekeVfO6qv07aZ1LdOyAAjDO9uv9m X2MFAfo2XSoIr8Q+078FNcAdHoBeaJ/VcZIQ80Ob2aOUwTKfW/JzpJjZUrvqoI4F9uC3fVl/a HOjFSRIYeso761H6ASonBgZwFq823+OtT7mLYoYYzjhQeb1C9eQpU3PuxkDPIJ4FDEjG41F X-Rspamd-Queue-Id: 4BQPvD3dXtz4gFm X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.134) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.89 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.236.89:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; SUBJECT_ENDS_QUESTION(1.00)[]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.10)[0.104]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.05)[0.054]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.33)[0.328]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.134:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.134:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 10 Aug 2020 18:41:45 -0000 On Mon, 10 Aug 2020 10:01:03 -0700, Ronald F. Guilmette wrote: > Just ran gdb, which I haven't done for awhile, to find a small > bug in one of my own C programs. > > Set two breakpoints successfully and then tried to r(un) the > program to be debugged. (This was all being done under my > own personal non-priviliged account.) > > Immediately got something very unexpected: > > warning: Could not trace the inferior process. > Error: > warning: ptrace: Operation not permitted > During startup program exited with code 127. > > I su'd to root and tried again, and of course now it works. > > So, um, what the hay? What goes on here? > > I seem to vaguely recall some "security" options being presented > at system install time, and I do believe one of these had to do > with ptrace. So I guess that I must have made the Wrong Choice > with respect to that one. OK. Fine. Now how do I fix that misake > on my part, short of re-installing the whole bloody system? Yes, that seems to be the case here. At installation stage, certain options would have been set in the relevant configuraiton files, but there's noting requiring a re-installation - you can undo those changes with a simple text editor. :-) Check the following files: /boot/loader.conf /etc/sysctl.conf <--- probably this one /etc/rc.conf I'm sure you'll find something related to security restrictions, such as those: security.bsd.unprivileged_read_msgbuf=0 security.bsd.unprivileged_proc_debug=0 security.bsd.see_other_uids=0 As suggested by Yasuhiro Kimura, there are several settings that could have been applied. See the following file to find their names and settings: /usr/libexec/bsdinstall/hardening You can use sysctl interactively, or just edit the files and reboot the system so they take effect. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Tue Aug 11 09:56:14 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2C8B33A8DE5 for ; Tue, 11 Aug 2020 09:56:14 +0000 (UTC) (envelope-from ragnar@iinet.net.au) Received: from hfcrelay.icp-osb-irony-out9.external.iinet.net.au (hfcrelay.icp-osb-irony-out9.external.iinet.net.au [203.59.1.89]) by mx1.freebsd.org (Postfix) with ESMTP id 4BQpBM5Cm5z4HVS for ; Tue, 11 Aug 2020 09:56:10 +0000 (UTC) (envelope-from ragnar@iinet.net.au) X-SMTP-MATCH: 1 X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A2DHAgAJajJf/400yg5gHAEBAQEBAQc?= =?us-ascii?q?BARIBAQQEAQFAB4FDg21fjTeGCoIQmiiBaQsBAQEBAQEBAQE0AQIEAQGERgQ?= =?us-ascii?q?CAoI3JTgTAhABAQEFAQEBAQEGAwGGVYVxAQEBAQIBOhwoCwsYHBJXGRuFaB+?= =?us-ascii?q?xXnSBNIkKgUCBOI0qggCBR4JaPoQIARIBboUqBJsbmwuCbIENmH0PIYEMgXG?= =?us-ascii?q?JWJM9s3SBCnBNHxmDJFAZDVacIjIwNwIGCAEBAwlOAQoBAZBTAQE?= X-IPAS-Result: =?us-ascii?q?A2DHAgAJajJf/400yg5gHAEBAQEBAQcBARIBAQQEAQFAB?= =?us-ascii?q?4FDg21fjTeGCoIQmiiBaQsBAQEBAQEBAQE0AQIEAQGERgQCAoI3JTgTAhABA?= =?us-ascii?q?QEFAQEBAQEGAwGGVYVxAQEBAQIBOhwoCwsYHBJXGRuFaB+xXnSBNIkKgUCBO?= =?us-ascii?q?I0qggCBR4JaPoQIARIBboUqBJsbmwuCbIENmH0PIYEMgXGJWJM9s3SBCnBNH?= =?us-ascii?q?xmDJFAZDVacIjIwNwIGCAEBAwlOAQoBAZBTAQE?= X-IronPort-AV: E=Sophos;i="5.75,460,1589212800"; d="scan'208";a="271852580" Received: from 14-202-52-141.tpgi.com.au (HELO xinu.fritz.box) ([14.202.52.141]) by icp-osb-irony-out9.iinet.net.au with ESMTP; 11 Aug 2020 17:56:05 +0800 Date: Tue, 11 Aug 2020 19:56:03 +1000 From: Ragnar Johanson To: freebsd-questions@freebsd.org Subject: Re: csh use of grep | tr commands Message-ID: <20200811195603.1d0a7283@xinu.fritz.box> In-Reply-To: <20200810164924.4ec11e74.freebsd@edvax.de> References: <5F30962B.5060005@gmail.com> <24368.41568.96908.196223@jerusalem.litteratus.org> <20200810164924.4ec11e74.freebsd@edvax.de> Organization: privat MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BQpBM5Cm5z4HVS X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of ragnar@iinet.net.au designates 203.59.1.89 as permitted sender) smtp.mailfrom=ragnar@iinet.net.au X-Spamd-Result: default: False [-0.69 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.16)[-0.157]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[iinet.net.au]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[iinet.net.au]; RCPT_COUNT_ONE(0.00)[1]; HAS_ORG_HEADER(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:203.59.1.0/24]; NEURAL_HAM_LONG(-0.32)[-0.322]; NEURAL_SPAM_SHORT(0.09)[0.090]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:4739, ipnet:203.59.1.0/24, country:AU]; RCVD_COUNT_TWO(0.00)[2]; FREEMAIL_ENVFROM(0.00)[iinet.net.au]; RCVD_IN_DNSWL_LOW(-0.10)[203.59.1.89:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Aug 2020 09:56:14 -0000 On Mon, 10 Aug 2020 16:49:24 +0200 Polytropon hacked into the keyboard: > On Sun, 9 Aug 2020 21:26:56 -0400, Robert Huff wrote: > > Ernie Luzar writes: > > > How do I remove the " around the ip address? > > > > Would awk perhaps be a better tool? > > Possibly. But it's more elaborate than sed. :-) > > % echo 'ip4="10.111.098.2"' | awk '/^ip4=/ { gsub("ip4=", "", $0); > gsub("\"", "", $0); print $0 }' 10.111.098.2 > There is also a shorter awk solution: % echo 'ip4="10.111.098.2"' | awk -F'"' '/^ip4/ {print $2}' 10.111.098.2 -- Ragnar Johanson Darwin/macOS ragnar[at]iinet[flyspeck]net[flyspeck]au Please no HTML or proprietary data in email! GPGkeyID: 6AC1 3E9A 39E1 8590 D1A2 C92C 93F4 2856 4C79 CB89 . From owner-freebsd-questions@freebsd.org Tue Aug 11 14:52:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2166E3B0125 for ; Tue, 11 Aug 2020 14:52:12 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BQwlv2Wk1z4c1X for ; Tue, 11 Aug 2020 14:52:10 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: Re: csh use of grep | tr commands Date: Tue, 11 Aug 2020 08:52:08 -0600 References: <5F30962B.5060005@gmail.com> <20200810164453.378835aa.freebsd@edvax.de> To: FreeBSD In-Reply-To: <20200810164453.378835aa.freebsd@edvax.de> Message-Id: X-Mailer: Apple Mail (2.3652.0.5.2.1) X-Rspamd-Queue-Id: 4BQwlv2Wk1z4c1X X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Spamd-Result: default: False [-0.17 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.80)[-0.804]; FROM_HAS_DN(0.00)[]; MISSING_MIME_VERSION(2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; R_SPF_ALLOW(-0.20)[+mx]; DMARC_NA(0.00)[kreme.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.94)[-0.942]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.02)[-0.024]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:209, ipnet:65.112.0.0/12, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[65.121.55.42:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Aug 2020 14:52:12 -0000 On 10 Aug 2020, at 08:44, Polytropon wrote: > On Sun, 09 Aug 2020 20:34:51 -0400, Ernie Luzar wrote: >> Double quotes are giving me trouble. >>=20 >> I have a file with a line in it like this >> ip4=3D"10.111.098.2" >> I want to get just the ip address >>=20 >> ip=3D`grep "ip4=3D" directory-path/file-name >>=20 >> $ip ends up having ip4=3D"10.111.098.2" in it >>=20 >> ip=3D`echo -n "${ip}" | tr -d "ip4=3D" >>=20 >> $ip ends up having "10.111.098.2" in it >>=20 >> Putting | tr """ " "` after the echo above gives error. >>=20 >> How do I remove the " around the ip address? >=20 > Without any insult: You're using the wrong tool. >=20 > While the C shell is acceptable as an interactive shell > (and I even prefer it over bash to a certain degree), > it's absolutely terrible, and I may even say unsuited > for scripting. I agree. My first use of a unix system defaulted to csh. As soon as I = started writing scripts I switched away from csh. (bash and now zsh). > The system's default scripting shell is sh. Use that. Or that. > % echo 'those "are" quotes' | sed 's/"//g' Exactly what I would do, though I sometimes I use egrep -o if there is = longer input. --=20 I WILL NOT SELL LAND IN FLORIDA Bart chalkboard Ep. 7F16 From owner-freebsd-questions@freebsd.org Tue Aug 11 18:29:11 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 23F903B44C6 for ; Tue, 11 Aug 2020 18:29:11 +0000 (UTC) (envelope-from gobble.wa@gmail.com) Received: from mail-ej1-x62b.google.com (mail-ej1-x62b.google.com [IPv6:2a00:1450:4864:20::62b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BR1ZG1RKwz3cHk for ; Tue, 11 Aug 2020 18:29:10 +0000 (UTC) (envelope-from gobble.wa@gmail.com) Received: by mail-ej1-x62b.google.com with SMTP id qc22so14162996ejb.4 for ; Tue, 11 Aug 2020 11:29:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=dPY15Cx/rnJhDKVil7bzmWpCn5fBxv2PWm1DRkUyPS8=; b=t7fKmS9Ktl70zK4zt1v3OLpUtCyhaqGawHC40S671TNt/DE5CchazDJjqg3bnXTD3+ ysSRJ5/+IH/+DJsyCHkXzORsNc4ILKmEJd9toJawNW5aWvXkYjOeAsB4x72BwlhP4C65 /4SaLMZ9MvpUTca0OezVU6QyB31nWMCJFE7q+bG5NLVJxxS4Dg7FdH/00kKgjKsCyPZ2 DsQKZ8RmA6aGWVem1G7NPuKSVVLm0IRiruGCp0lDy3QDhgrIc0TnmVDYSibwMw20MJwb 0qa77hFL1ARmOhzpRZQt+o8Q/um4Ky5htanZ1kMx2jKXFow2396pTisDw6oKLB4upLAH dUYg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=dPY15Cx/rnJhDKVil7bzmWpCn5fBxv2PWm1DRkUyPS8=; b=jvc47plcLGt4dQOcVYqxMistX25MA6qxZzd8jkvqRELU/c0X04VbVnS8BaOldEA+FH OBvwTdcviTrlLBnW7cU0hKO58OwOXR8Y0AF2kjmlf+uGtkF2KJYxmUP3HXCiUAn+ark4 5TmV/0prL8E8ABKS1iephroZmULmZbi8A4a82aeDR2jeok5KFcOa46ianuTm0bLeNmat lC6WBCvU7Cp38ZkhIVf8Zs1uJtKZNTbc0AiEfAPz9C9yFtL9Du5v8ohJZBLik11gMbus MuzXA/DOyQyF1vY1p9nuO/H/4x0cJ8dKdzidH9iSwsAYbWd6N+J40wfWZDwYBb330xox f5yQ== X-Gm-Message-State: AOAM531mcn5Hj2jYJdje2rRVtkfiXUDXqjtpHPVSSq8oedtw/pAP3Qzo 9XO+eGFqXNj2Hh21zDwF/DOa6xRrWMmwU3cAiRXxeCyy40K+Dw== X-Google-Smtp-Source: ABdhPJwy0apaS7rpl2/O/FutYvd3mEXhnXWikPUqWXNbo+8l2e1zQo1+5W6oDnmWgrCKFPxZXeExv6QLS7Cde/I8PKY= X-Received: by 2002:a17:906:8506:: with SMTP id i6mr460962ejx.446.1597170548257; Tue, 11 Aug 2020 11:29:08 -0700 (PDT) MIME-Version: 1.0 From: Waitman Gobble Date: Tue, 11 Aug 2020 14:28:57 -0400 Message-ID: Subject: strange results using src/lib/libc/resolv To: FreeBSD Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4BR1ZG1RKwz3cHk X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=t7fKmS9K; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of gobblewa@gmail.com designates 2a00:1450:4864:20::62b as permitted sender) smtp.mailfrom=gobblewa@gmail.com X-Spamd-Result: default: False [-3.18 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.012]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-0.99)[-0.993]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::62b:from]; NEURAL_HAM_SHORT(-0.18)[-0.180]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 11 Aug 2020 18:29:11 -0000 I've noticed an issue with the PHP function dns_get_record(), on some FreeBSD 12.1 servers it *always* returns "False" with no response, but on other FreeBSD 12.1 servers it returns the correct results. A simple example: array(5) { ["host"]=> string(10) "google.com" ["class"]=> string(2) "IN" ["ttl"]=> int(85496) ["type"]=> string(2) "NS" ["target"]=> string(14) "ns4.google.com" } ..... etc On FreeBSD, PHP calls the function res_nsearch() which is defined in /usr/include/resolv.h On the servers without a response, res_nsearch returns -1 which is an error condition, but the error code set in herrno is 0, which is: "Resolver Error 0 (no error)" I created a basic C program which uses res_nsearch and have the same results. https://gist.github.com/arduent/a33756d7e3ddfcf51a0eaca908612a16 # clang -o main main.c -I/usr/include On some servers it returns errors: # ./main ;; res_nquerydomain(google.com, , 1, 255) ;; res_query(google.com, 1, 255) ;; res_nmkquery(QUERY, google.com, IN, ANY) ;; res_nopt() ;; res_send() ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65018 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com, type = ANY, class = IN ; EDNS: version: 0, udp=65535, flags=0000 ;; Querying server (# 1) address = 127.0.0.1 ;; new DG socket ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65018 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com, type = ANY, class = IN ; EDNS: version: 0, udp=4096, flags=0000 ;; rcode = (NOERROR), counts = an:0 ns:0 ar:1 ;; res_nquerydomain(google.com, smq.io, 1, 255) ;; res_query(google.com.smq.io, 1, 255) ;; res_nmkquery(QUERY, google.com.smq.io, IN, ANY) ;; res_nopt() ;; res_send() ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26844 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com.smq.io, type = ANY, class = IN ; EDNS: version: 0, udp=65535, flags=0000 ;; Querying server (# 1) address = 127.0.0.1 ;; new DG socket ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26844 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com.smq.io, type = ANY, class = IN ; EDNS: version: 0, udp=4096, flags=0000 ;; rcode = (NOERROR), counts = an:0 ns:0 ar:1 Error occured during search. But it works on other servers: # ./main ;; res_nquerydomain(google.com, , 1, 255) ;; res_query(google.com, 1, 255) ;; res_nmkquery(QUERY, google.com, IN, ANY) ;; res_nopt() ;; res_send() ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44131 ;; flags: rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com, type = ANY, class = IN ; EDNS: version: 0, udp=65535, flags=0000 ;; Querying server (# 1) address = 127.0.0.1 ;; new DG socket ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44131 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1 ;; google.com, type = ANY, class = IN google.com. 23h36m53s IN NS ns4.google.com. google.com. 23h36m53s IN NS ns3.google.com. google.com. 23h36m53s IN NS ns1.google.com. google.com. 23h36m53s IN NS ns2.google.com. ; EDNS: version: 0, udp=4096, flags=0000 Not sure what's going on. It doesn't seem to matter if 'search domain' is set in resolv.conf, or options edns0 is set in resolv.conf. Update: I did just notice that on the servers where it is failing, it _DOES_ work if the nameserver is set to google 8.8.8.8 or 8.8.4.4, but so far that's it. If it's set to localhost / unbound it fails. Or cloudflares 1.1.1.1 it fails, ISP's nameservers it fails. That's weird. So on some machines res_nsearch() only works with google nameservers, but on other machnines it works with any nameservers. On the servers where it always gets the correct results, it doesn't matter what nameserver is used. Any help with this is appreciated. -- Waitman Gobble From owner-freebsd-questions@freebsd.org Wed Aug 12 06:37:15 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F1B963BFACF for ; Wed, 12 Aug 2020 06:37:15 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from outgoing.tristatelogic.com (segfault.tristatelogic.com [69.62.255.118]) by mx1.freebsd.org (Postfix) with ESMTP id 4BRKkL0y4Fz4X2C for ; Wed, 12 Aug 2020 06:37:13 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: by segfault.tristatelogic.com (Postfix, from userid 1237) id 54ADD4E746; Tue, 11 Aug 2020 23:37:07 -0700 (PDT) From: "Ronald F. Guilmette" To: Yasuhiro KIMURA cc: freebsd-questions@freebsd.org Subject: Re: GDB no workie? Permission problem? In-Reply-To: <20200811.022654.1924978480022516137.yasu@utahime.org> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <69680.1597214226.1@segfault.tristatelogic.com> Date: Tue, 11 Aug 2020 23:37:07 -0700 Message-ID: <69681.1597214227@segfault.tristatelogic.com> X-Rspamd-Queue-Id: 4BRKkL0y4Fz4X2C X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of rfg@tristatelogic.com designates 69.62.255.118 as permitted sender) smtp.mailfrom=rfg@tristatelogic.com X-Spamd-Result: default: False [-1.41 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.03)[-1.032]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; NEURAL_HAM_LONG(-0.99)[-0.986]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[tristatelogic.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.09)[-0.094]; RCPT_COUNT_TWO(0.00)[2]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14051, ipnet:69.62.128.0/17, country:US]; SUBJECT_ENDS_QUESTION(1.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 06:37:16 -0000 In message <20200811.022654.1924978480022516137.yasu@utahime.org>, you wrote: >From: "Ronald F. Guilmette" >Subject: GDB no workie? Permission problem? >Date: Mon, 10 Aug 2020 10:01:03 -0700 > >> I seem to vaguely recall some "security" options being presented >> at system install time, and I do believe one of these had to do >> with ptrace. So I guess that I must have made the Wrong Choice >> with respect to that one. OK. Fine. Now how do I fix that misake >> on my part, short of re-installing the whole bloody system? > >"System Hardening" stage of installation is handled by >/usr/libexec/bsdinstall/hardening and it is shell script. So if you >understand syntax of bourne shell you can undo your system hardening >settings by reading it. Thank you. The code seems to suggets that I just need to edit a file called $BSDINSTALL_TMPBOOT/loader.conf.hardening but I will be damned if I can find any such on my system, anywhere in my root partition. So I'm stumped. To make matters even worse, the output I get from "sysctl -a" doesn't even seem to list -any- sysctl variable called "security.bsd.allow_destructive_dtrace", so I am double stumped. Regards, rfg From owner-freebsd-questions@freebsd.org Wed Aug 12 14:59:38 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4992C3A3318 for ; Wed, 12 Aug 2020 14:59:38 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.135]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BRXt11s4Vz422n for ; Wed, 12 Aug 2020 14:59:36 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([188.102.103.50]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1M2Nm2-1k7XBa45wE-003uZh; Wed, 12 Aug 2020 16:59:33 +0200 Date: Wed, 12 Aug 2020 16:59:31 +0200 From: Polytropon To: "Ronald F. Guilmette" Cc: Yasuhiro KIMURA , freebsd-questions@freebsd.org Subject: Re: GDB no workie? Permission problem? Message-Id: <20200812165931.702fd7ea.freebsd@edvax.de> In-Reply-To: <69681.1597214227@segfault.tristatelogic.com> References: <20200811.022654.1924978480022516137.yasu@utahime.org> <69681.1597214227@segfault.tristatelogic.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:orxc4i5Ml4/wk6A7yVT09exxadNFAFa8YhFhlVLkUmYqzjJZ/kP VN3kVkDmwbxVdigdkISBDw4Bi1/SdJhhgoAvoglqsB0VcJBoJsfzqDLHZrnOFIOjGWoIbXM 3eqoZuKIOJ82bnAXN2GBSoChAt4RDVo8ZEjuSKwNtzloRkq4bVC35ZMwEJGInk/npiUsaB1 O4wWf6XzvOJDYDK7VRr/A== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:5Lp6YvLcwDA=:HUJWafKEeBjTE5oePBg+aF LzsGlkR06u9LuuDpu6oB3i/4lVDkCgIMTLUrMRMBljHRujzqP2ifteCVdnMrbhncwbNXAkiVL 1OywGjCQLOKCS7QrlbpN1mlqC26qZSOBUgFGT+uyp20wB4ilkkEyfUoC/gM/Uykj/sPQV81X7 k2EWsjgv1OsNbE6NHnMmU6gHRo8iakMH33lpy71vEksYh5PXpCSi5QlReDOjqwgcj1u2hG+AM 6CtBQZp2WaW6fMoBI0HSkLpn28dAgyG84RZXW54pg729UZffRUuz+VCjffoiyl5lskKsD04nB qNji++gJTy9Bs07/drJVSpVA8FA6+SUTV/GnbR7IXjodoK+BVspSOUI1J3YkdY/gt0N4SFL2U TftaMJV3L8B5tRBacMWn3Ar6cDL7XMNeyHEUWnRHwZiODkaCswugo4SZfM4rsq8SHwdoTRz6G YLCSRlqZ5ceg6Q93DFZ6kAtrA/bXlMta1B6+fUAv/SSEaaNW79CWkWPdHv3sJBfyHSiZ3wQxQ 6L3w/iFIITtDFTjuRGBU+vZMhDd0PEb2igHI+Nnbf9aUDzbhryLYPdwCTxDZU1lorBFB/4Hmp j+dOfu7KTWV+/Z2Z1k/TcJ3JT+q+cpAk97UppU2w74RfWwGO8ES9i+VbPWfcMNV0tInQVko2y NMqcxRyF6xdGbaEMXKZBNbeMuD7RVecDnq/T4VpVDbjJJoTx77HQIvr4Jro8Sd7Q0fw/vvygM fJ1yoEkCe2ADo+VU+x+0oQloynQtlr3uxhiHNOvmjqIuE3ODa+eCmSd8aAq+Sxr/AQxQgXlu4 dnrrRpG3Bj+iX834ZLNo1CHTwyKXXWBM1uhTID0nNxLzZKB+ca4t1fDt8AuY6V5Enl/Z87y X-Rspamd-Queue-Id: 4BRXt11s4Vz422n X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.135) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.11 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; NEURAL_HAM_SHORT(-0.34)[-0.338]; RECEIVED_SPAMHAUS_PBL(0.00)[188.102.103.50:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; SUBJECT_ENDS_QUESTION(1.00)[]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_MEDIUM(-0.58)[-0.579]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.63)[0.632]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.135:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.135:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 14:59:38 -0000 On Tue, 11 Aug 2020 23:37:07 -0700, Ronald F. Guilmette wrote: > In message <20200811.022654.1924978480022516137.yasu@utahime.org>, you wrote: > > >From: "Ronald F. Guilmette" > >Subject: GDB no workie? Permission problem? > >Date: Mon, 10 Aug 2020 10:01:03 -0700 > > > >> I seem to vaguely recall some "security" options being presented > >> at system install time, and I do believe one of these had to do > >> with ptrace. So I guess that I must have made the Wrong Choice > >> with respect to that one. OK. Fine. Now how do I fix that misake > >> on my part, short of re-installing the whole bloody system? > > > >"System Hardening" stage of installation is handled by > >/usr/libexec/bsdinstall/hardening and it is shell script. So if you > >understand syntax of bourne shell you can undo your system hardening > >settings by reading it. > > Thank you. The code seems to suggets that I just need to edit a > file called $BSDINSTALL_TMPBOOT/loader.conf.hardening but I will be > damned if I can find any such on my system, anywhere in my root > partition. So I'm stumped. You need to edit the _Actual_ loader configuration file, which is /boot/loader.conf; also have a look at the sysctl control file, /etc/sysctl.conf, as mentioned in my previous message - which did only arrive at the list, but not in your mailbox, as your ISP seems to block 1&1, Germany's probably most important ISP. I wrote (on Mon, 10 Aug 2020 20:41:40 +0200): On Mon, 10 Aug 2020 10:01:03 -0700, Ronald F. Guilmette wrote: > Just ran gdb, which I haven't done for awhile, to find a small > bug in one of my own C programs. > > Set two breakpoints successfully and then tried to r(un) the > program to be debugged. (This was all being done under my > own personal non-priviliged account.) > > Immediately got something very unexpected: > > warning: Could not trace the inferior process. > Error: > warning: ptrace: Operation not permitted > During startup program exited with code 127. > > I su'd to root and tried again, and of course now it works. > > So, um, what the hay? What goes on here? > > I seem to vaguely recall some "security" options being presented > at system install time, and I do believe one of these had to do > with ptrace. So I guess that I must have made the Wrong Choice > with respect to that one. OK. Fine. Now how do I fix that misake > on my part, short of re-installing the whole bloody system? Yes, that seems to be the case here. At installation stage, certain options would have been set in the relevant configuraiton files, but there's noting requiring a re-installation - you can undo those changes with a simple text editor. :-) Check the following files: /boot/loader.conf /etc/sysctl.conf <--- probably this one /etc/rc.conf I'm sure you'll find something related to security restrictions, such as those: security.bsd.unprivileged_read_msgbuf=0 security.bsd.unprivileged_proc_debug=0 security.bsd.see_other_uids=0 As suggested by Yasuhiro Kimura, there are several settings that could have been applied. See the following file to find their names and settings: /usr/libexec/bsdinstall/hardening You can use sysctl interactively, or just edit the files and reboot the system so they take effect. * * * end quote * * * > To make matters even worse, the > output I get from "sysctl -a" doesn't even seem to list -any- > sysctl variable called "security.bsd.allow_destructive_dtrace", so > I am double stumped. Because it's not a DTrace problem - it's probably something else. Check % sysctl -a | grep security for all security-related variables; I'm sure you find one or two that deviate from the default setting. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Wed Aug 12 17:03:47 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 73B163A6528 for ; Wed, 12 Aug 2020 17:03:47 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from outgoing.tristatelogic.com (segfault.tristatelogic.com [69.62.255.118]) by mx1.freebsd.org (Postfix) with ESMTP id 4BRbdG2SvYz49bX for ; Wed, 12 Aug 2020 17:03:45 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: by segfault.tristatelogic.com (Postfix, from userid 1237) id 294404E746; Wed, 12 Aug 2020 10:03:44 -0700 (PDT) From: "Ronald F. Guilmette" To: Polytropon cc: Yasuhiro KIMURA , freebsd-questions@freebsd.org Subject: Re: GDB no workie? Permission problem? In-Reply-To: <20200812165931.702fd7ea.freebsd@edvax.de> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <72828.1597251823.1@segfault.tristatelogic.com> Date: Wed, 12 Aug 2020 10:03:44 -0700 Message-ID: <72829.1597251824@segfault.tristatelogic.com> X-Rspamd-Queue-Id: 4BRbdG2SvYz49bX X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of rfg@tristatelogic.com designates 69.62.255.118 as permitted sender) smtp.mailfrom=rfg@tristatelogic.com X-Spamd-Result: default: False [-1.31 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.042]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[tristatelogic.com]; NEURAL_HAM_LONG(-0.95)[-0.950]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.02)[-0.017]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14051, ipnet:69.62.128.0/17, country:US]; SUBJECT_ENDS_QUESTION(1.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 17:03:47 -0000 In message <20200812165931.702fd7ea.freebsd@edvax.de>, you wrote: >On Tue, 11 Aug 2020 23:37:07 -0700, Ronald F. Guilmette wrote: >> Thank you. The code seems to suggets that I just need to edit a >> file called $BSDINSTALL_TMPBOOT/loader.conf.hardening but I will be >> damned if I can find any such on my system, anywhere in my root >> partition. So I'm stumped. > >You need to edit the _Actual_ loader configuration file, >which is /boot/loader.conf; Ahhhhh! OK. Done! Thank you. >also have a look at the sysctl >control file, /etc/sysctl.conf, as mentioned in my previous >message - which did only arrive at the list, but not in your >mailbox, as your ISP seems to block 1&1, Germany's probably >most important ISP. 1&1 may be "important" but it is also a consistant source of spam and does not respond in any manner that I would judge to be "appropriate" to notifications regarding spam from their network. Thus, they have been blocked locally. >> To make matters even worse, the >> output I get from "sysctl -a" doesn't even seem to list -any- >> sysctl variable called "security.bsd.allow_destructive_dtrace", so >> I am double stumped. > >Because it's not a DTrace problem - it's probably something >else. Check > > % sysctl -a | grep security > >for all security-related variables; I'm sure you find one or >two that deviate from the default setting. Well, this is very odd indeed. In my /boot/loader.conf I did indeed find a line that said: security.bsd.allow_destructive_dtrace=0 (which I have now edited) however this command: sysctl -a | grep security.bsd yields only: security.bsd.stack_guard_page: 1 security.bsd.unprivileged_get_quota: 0 security.bsd.hardlink_check_gid: 0 security.bsd.hardlink_check_uid: 0 security.bsd.unprivileged_idprio: 0 security.bsd.unprivileged_proc_debug: 0 security.bsd.conservative_signals: 1 security.bsd.see_jail_proc: 1 security.bsd.see_other_gids: 1 security.bsd.see_other_uids: 1 security.bsd.unprivileged_read_msgbuf: 0 security.bsd.unprivileged_mlock: 1 security.bsd.suser_enabled: 1 security.bsd.map_at_zero: 0 It seems apparent to me that security.bsd.unprivileged_proc_debug is the sysctl variable of interest here, however I am still mystified as to why changinging the value of: security.bsd.allow_destructive_dtrace (via the /boot/loader.conf file) would affect this different named variable, security.bsd.unprivileged_proc_debug. I can only guess that it this must be due to some sort of backward compatability magic that I am not aware of. In any case, I need to reboot now and see if my edit to my /boot/loader.conf file has accomplished the change I desire. Regards, rfg From owner-freebsd-questions@freebsd.org Wed Aug 12 17:53:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B52993A712C for ; Wed, 12 Aug 2020 17:53:12 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x72a.google.com (mail-qk1-x72a.google.com [IPv6:2607:f8b0:4864:20::72a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BRckH5CCnz4Ctm for ; Wed, 12 Aug 2020 17:53:11 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x72a.google.com with SMTP id p25so2863198qkp.2 for ; Wed, 12 Aug 2020 10:53:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:subject :content-transfer-encoding; bh=xU4J3W3qv41guYhxhL7Ave/DFb1BxJzJo0PfmSwULEE=; b=ep7YkZV1EKO/J3z44M9qttccNfaaHdSyFeOLRYPyh+4M/58npJBPicnoct4zTHDTsl rgZEdYT7GK0pnI9p7ggzXL4ADnVir794VHbGnLTetlq+icWDCon2LF5+Bgh6LC5II1Rn 6UV97kwqGvKfJ+bXz81BSPx5SSU3rjvpIEGnoi1/aj2R+W/9j5lXAmwHQyx5GyRySKwb xy2m5kTjlwLxOve9EMeUFVxRbkBPF9wmPx9oliCWJrryN7nMQSyYquOjGXBILVvAhZlA nH9zteaO0wX4rL7gtHBy3skL+VYm7YW4VjaWZiWo2/C681T4fHooCC6tRIAfVisi8rXc kj4g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:content-transfer-encoding; bh=xU4J3W3qv41guYhxhL7Ave/DFb1BxJzJo0PfmSwULEE=; b=UKwV9WaGAvvpTUWyqeElqlMrNjns2uyelJQvumg1Q6EVVC25M2t8kMqS6vfShA+q0R Iv/r70qM0YpCryh78F31F+rJF7EOAgC0xlk3hG8N36WJx6CpCai28pYt1PgCAbRsuHqA q7FL5hmyQC0zdASzg49cwwzjmhU2Cvh/kR8W2qemKM/ekC898N+hbGARyPwBcjUb8gEH xb4U7D5mOBgB/6PnboCxZ/7EN910w3HTubcL7tMLDNYm/D+aO5hZhqL4Dunwoio7GlWV kTDQEeWJ0XSt3IBUZ7PNB2inr+GMbKXlSlqVeHGz0WpyGfs313jD4XS7WSu1NVlHIW35 nbVQ== X-Gm-Message-State: AOAM531iyU9doC7RWRL2zF6iSFYn70wTDdDleBN6c6IDhh2ezX0PxKoq wUuYE9JPYSijQiyaz4Vl1n6CB6dI X-Google-Smtp-Source: ABdhPJzrfLny54XIGstmeh3odMcorRGCUw0k9QGBFpqP7PPpvd9tvULxxkbMox914NinxJMOBq+O6Q== X-Received: by 2002:a05:620a:12fb:: with SMTP id f27mr1110084qkl.232.1597254790431; Wed, 12 Aug 2020 10:53:10 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id z197sm2880350qkb.66.2020.08.12.10.53.09 for (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 12 Aug 2020 10:53:09 -0700 (PDT) Message-ID: <5F342C84.1040705@gmail.com> Date: Wed, 12 Aug 2020 13:53:08 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: "freebsd-questions@freebsd.org" Subject: boot time error msg from ntpd Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BRckH5CCnz4Ctm X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=ep7YkZV1; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::72a as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.21 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.26)[-0.259]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.96)[-0.956]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.00)[-0.997]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::72a:from]; TO_DN_EQ_ADDR_ALL(0.00)[]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 17:53:12 -0000 At boot time I just started getting this error message ntpd823] error resolving pool 0.freebsd.pool.ntp.org: Name does not resolve (8). How do I fix it? From owner-freebsd-questions@freebsd.org Wed Aug 12 20:11:24 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3A44C3A9ACC for ; Wed, 12 Aug 2020 20:11:24 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [217.72.192.74]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BRgnk0vKQz4LLL for ; Wed, 12 Aug 2020 20:11:21 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([188.102.103.50]) by mrelayeu.kundenserver.de (mreue109 [212.227.15.183]) with ESMTPA (Nemesis) id 1MzQc2-1ksQys2g0u-00vT0E; Wed, 12 Aug 2020 22:11:18 +0200 Date: Wed, 12 Aug 2020 22:11:18 +0200 From: Polytropon To: Ernie Luzar Cc: "freebsd-questions@freebsd.org" Subject: Re: boot time error msg from ntpd Message-Id: <20200812221118.d2b352b6.freebsd@edvax.de> In-Reply-To: <5F342C84.1040705@gmail.com> References: <5F342C84.1040705@gmail.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:VT+T0C8rSl2DPK5n7elwL4n3lJbTWRoODUM13vBg+yRcEP64nPd Y7Psw7sQC0LqyOGpV5ejQDYtT2f44TVn6BMtVl7+HNfRVy+Dzse63yJ8mxC7udL71JDhDFc VKtM4MsacLtmy2HheWteLbK9LJ/VO4MSP7zYdJ3AtiDqlnziVfYbXZkOoyaNk9fadz90sSx 8Fn+KVQVcDv9my49SkmuQ== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:NgKK89pylY8=:7j36hzNDthHFyW4ZSFx7XB AxmmyerYcjD2TTVY5beDceykXXDWOqh56AspQRMrfBkmWAnfmuiVD0KTJUQhD6GbiOUdpTRvS v2ioVYlo/y8CUdpvLYMe7aXuqNdWX53p6S0H0dwNR+NtzLPjeHPto0E3Y80ADp/F0vQywSr9Y VE0fowEbMzZadjmewUWjkVfYXt1jQPYc2kUzirYUZ5JBW7iXxyIyKBYCxv7zq7Mg1G4aYQdcm RmfkQSCM5tktg93gzrgjQziRjElGXcLOGshFxCa+Q/pLYhqNGOcUeB7JSyW/t5XLPcUm56DcR mbpFHsD9ZFC24A48ci7QUv+Him9CoV8PlxI0UlfDfOsUWamn6C638OjPBqJctpqDPYDh7qqjT HtbmaH8JW+jcYMwS43b4vA+EjIdE/tUg94OgJ9+k0A3IQ5NobSmKLAVdT1j9Y3SZX0FsIzVfK jZaOMIbXi5+9BNv8BzK/BQ9CEf08jmUXvyWJb68BuAnn+/mriSI5GBfP8AZFfmPfTJGc613Wi DIAQaKjzXoK7A53zaJxAIk4sW9Czgn6ycMQhFjm0p3KJh2vskDj5pmv2iOu5VxySK9+zFeKaP Ng+IGq8tqMrzMpr5JfLelVIb0GbtJU+5u7SxrwVdGMDYAA9GVs8TGuI0N/83V7VnjIOYkwABE KaeJS4Gm9z7o4UoqzsxAqK5+wo6Tm6bN7KYv6OVDJRWmHNzMSIGOafB5HiKYPTnPuKqTAJJMm vFSydTEGVUk+pacsRGpQd6MUNv7jZXgO+XmEuXWkmBjuylH/zcb4fuSIZ2IoOok8VzpKlfHTW /ITIdEoygWPMmm5pllKZ2uR3+R10LzBXZLGEwssbcea12U3+srkXWg9rolL4fLUCirCS6TH X-Rspamd-Queue-Id: 4BRgnk0vKQz4LLL X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 217.72.192.74) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [2.37 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[188.102.103.50:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:217.72.192.0/20, country:DE]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.34)[-0.340]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.22)[0.221]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.09)[0.086]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[217.72.192.74:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[217.72.192.74:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 20:11:24 -0000 On Wed, 12 Aug 2020 13:53:08 -0400, Ernie Luzar wrote: > At boot time I just started getting this error message > > ntpd823] error resolving pool 0.freebsd.pool.ntp.org: Name does not > resolve (8). > > How do I fix it? Probably by fixing your DNS. Does 0.freebsd.pool.ntp.org resolve after the system has finished booting? Did you change something significant on your system (or on your connection) regarding DNS? You could disable ntpd, or statically assign the IP of 0.freebsd.pool.ntp.org using /etc/hosts as a workaround. For comparison (output trimmed): % drill 0.freebsd.pool.ntp.org 0.freebsd.pool.ntp.org. 150 IN A 136.243.110.35 0.freebsd.pool.ntp.org. 150 IN A 193.141.27.1 0.freebsd.pool.ntp.org. 150 IN A 138.201.174.35 0.freebsd.pool.ntp.org. 150 IN A 188.68.53.92 -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Wed Aug 12 20:42:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6981F3AAA5D for ; Wed, 12 Aug 2020 20:42:28 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qv1-xf2e.google.com (mail-qv1-xf2e.google.com [IPv6:2607:f8b0:4864:20::f2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BRhTb4VLfz4N4w for ; Wed, 12 Aug 2020 20:42:27 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qv1-xf2e.google.com with SMTP id w2so1665545qvh.12 for ; Wed, 12 Aug 2020 13:42:27 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=9jchM+684TXyp7TyRNOQe4llsT3ALw6Z0WrJGfu1qZQ=; b=rsVO+9e2cs906ZtWaHCFFAnWvUT90DrYbexuOPcpuozw0VL4uGK+3rsyPPUbMRlDHF uMa3DTpqU6rb2+aG1SOzTmqK9lSAYXEPmUkxJG7aztB3tdGce4IFU5Sj7jODv/SlPpSb LenRXXSUdezQbRI3whl6tBFtqiet6P/qnTYY+X3L4+ui1mX3p0L53Vf+o6GwVlgjqYmV tReIpX+bx/eq6ey4ocYQtLSNt8ftTeTqnvu5PAzMrlcI8UTzuad/zv60LnZolnjuiK30 DLSX/dXbnLewRKQO0N4H91VWQSNRgaB6RveOYYgzrQi+A31CdnJQ1ccB5HvhMSV3trFv C7TQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=9jchM+684TXyp7TyRNOQe4llsT3ALw6Z0WrJGfu1qZQ=; b=NrllvbJR35g6EtxQUpbVGfknhNlgLoH5isVDBkfb6djmeJzSuGquaFkM9T8G4/2dhS naoS828QlwHBtGq9uwvsm4HrAXQOoGbXQFb1C+BTfys3Vkdo8tclNB3ePpLvLTTgQFK9 kqVAcuIp12/+kZzVB1OyU7PyWy0KwD8OkZSejUlOwNwLumgMkDu45rEhzqXvXqnwGdq7 MKPdVyCjVEtH/3Plu3G6fgn+0p1+QuemrrkFtvgYleVdWSiNnK0Naaw6QKdVpGTim6Vb fnn4KdIuSLctuBz3udcgv4byvv3WtBml5+aHvEs46mq3FZF0k1IyVoz1feWbICZWHxxO pspw== X-Gm-Message-State: AOAM533u4H0b9nne/7wnm1lcxZCqbiq1vr4dcPYbWOygxGIdo4hj8EqJ 0pnE9CpdIIsjW6bIC66tvFZHtm3v X-Google-Smtp-Source: ABdhPJxBqrbip4T5gRiiMY1WP6EgqO/6mVkw25hg5LvLyILWA5LySaDpZQUnaFSVnEcOAwE/pflkKg== X-Received: by 2002:ad4:5189:: with SMTP id b9mr1415574qvp.242.1597264946612; Wed, 12 Aug 2020 13:42:26 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id e23sm3583212qto.15.2020.08.12.13.42.25 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 12 Aug 2020 13:42:26 -0700 (PDT) Message-ID: <5F345430.3000206@gmail.com> Date: Wed, 12 Aug 2020 16:42:24 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: Polytropon CC: "freebsd-questions@freebsd.org" Subject: Re: boot time error msg from ntpd References: <5F342C84.1040705@gmail.com> <20200812221118.d2b352b6.freebsd@edvax.de> In-Reply-To: <20200812221118.d2b352b6.freebsd@edvax.de> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BRhTb4VLfz4N4w X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=rsVO+9e2; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::f2e as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-2.93 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.03)[-1.027]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.10)[0.101]; NEURAL_HAM_LONG(-1.01)[-1.008]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::f2e:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 20:42:28 -0000 Polytropon wrote: > On Wed, 12 Aug 2020 13:53:08 -0400, Ernie Luzar wrote: >> At boot time I just started getting this error message >> >> ntpd823] error resolving pool 0.freebsd.pool.ntp.org: Name does not >> resolve (8). >> >> How do I fix it? > > Probably by fixing your DNS. Does 0.freebsd.pool.ntp.org > resolve after the system has finished booting? Did you > change something significant on your system (or on your > connection) regarding DNS? > > You could disable ntpd, or statically assign the IP of > 0.freebsd.pool.ntp.org using /etc/hosts as a workaround. > > For comparison (output trimmed): > > % drill 0.freebsd.pool.ntp.org > > 0.freebsd.pool.ntp.org. 150 IN A 136.243.110.35 > 0.freebsd.pool.ntp.org. 150 IN A 193.141.27.1 > 0.freebsd.pool.ntp.org. 150 IN A 138.201.174.35 > 0.freebsd.pool.ntp.org. 150 IN A 188.68.53.92 > > > I do not have a dns server on my home network. When I comment out the ntpd_enable="YES" in rc.conf the msg gos away. When I ping it I get this ip address 74.6.168.73 whois 74.6.168.73 says it is allocated to Oath holdings inc in new york. drill 0.freebsd.pool.ntp.org shows me the same thing you posted. isn't both drill and ping using my isp dns? Something sure is messed up with that domain name. From owner-freebsd-questions@freebsd.org Wed Aug 12 21:11:50 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E08C13AAF23 for ; Wed, 12 Aug 2020 21:11:50 +0000 (UTC) (envelope-from hmurray@megapathdsl.net) Received: from ip-64-139-1-69.sjc.megapath.net (ip-64-139-1-69.sjc.megapath.net [64.139.1.69]) by mx1.freebsd.org (Postfix) with ESMTP id 4BRj7S3Sz3z4PDF for ; Wed, 12 Aug 2020 21:11:48 +0000 (UTC) (envelope-from hmurray@megapathdsl.net) Received: from shuksan (localhost [127.0.0.1]) by ip-64-139-1-69.sjc.megapath.net (Postfix) with ESMTP id D44D3406061; Wed, 12 Aug 2020 14:11:13 -0700 (PDT) X-Mailer: exmh version 2.7.2 01/07/2005 with nmh-1.3 To: Ernie Luzar cc: "freebsd-questions@freebsd.org" , hmurray@megapathdsl.net From: Hal Murray Subject: Re: boot time error msg from ntpd In-Reply-To: Message from Ernie Luzar of "Wed, 12 Aug 2020 16:42:24 EDT." <5F345430.3000206@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 12 Aug 2020 14:11:13 -0700 Message-Id: <20200812211113.D44D3406061@ip-64-139-1-69.sjc.megapath.net> X-Rspamd-Queue-Id: 4BRj7S3Sz3z4PDF X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of hmurray@megapathdsl.net has no SPF policy when checking 64.139.1.69) smtp.mailfrom=hmurray@megapathdsl.net X-Spamd-Result: default: False [0.98 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.64)[-0.643]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; MV_CASE(0.50)[]; NEURAL_HAM_LONG(-0.14)[-0.142]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[megapathdsl.net]; AUTH_NA(1.00)[]; TO_DN_SOME(0.00)[]; NEURAL_SPAM_SHORT(0.27)[0.269]; TO_MATCH_ENVRCPT_SOME(0.00)[]; R_SPF_NA(0.00)[no SPF record]; FREEMAIL_TO(0.00)[gmail.com]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:4565, ipnet:64.139.0.0/18, country:US]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 21:11:50 -0000 > When I comment out the ntpd_enable="YES" in rc.conf the msg gos away. That also turns off ntpd so your system clock will be drifting. > Something sure is messed up with that domain name. Why do you say that? It's the NTP pool. Looks normal to me. https://www.pool.ntp.org/en/ The initial error message is telling you that DNS didn't work. I don't know why. Perhaps ntpd got started before your network connection was working? It should try again later. What does ntpq -p show? -- These are my opinions. I hate spam. From owner-freebsd-questions@freebsd.org Wed Aug 12 21:24:14 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DF9283AAEFA for ; Wed, 12 Aug 2020 21:24:14 +0000 (UTC) (envelope-from hmurray@megapathdsl.net) Received: from ip-64-139-1-69.sjc.megapath.net (ip-64-139-1-69.sjc.megapath.net [64.139.1.69]) by mx1.freebsd.org (Postfix) with ESMTP id 4BRjPn1YNyz4Pht for ; Wed, 12 Aug 2020 21:24:13 +0000 (UTC) (envelope-from hmurray@megapathdsl.net) Received: from shuksan (localhost [127.0.0.1]) by ip-64-139-1-69.sjc.megapath.net (Postfix) with ESMTP id 839CA40605C; Wed, 12 Aug 2020 13:28:40 -0700 (PDT) X-Mailer: exmh version 2.7.2 01/07/2005 with nmh-1.3 To: Polytropon cc: "freebsd-questions@freebsd.org" , hmurray@megapathdsl.net From: Hal Murray Subject: Re: boot time error msg from ntpd In-Reply-To: Message from Polytropon of "Wed, 12 Aug 2020 22:11:18 +0200." <20200812221118.d2b352b6.freebsd@edvax.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Wed, 12 Aug 2020 13:28:40 -0700 Message-Id: <20200812202840.839CA40605C@ip-64-139-1-69.sjc.megapath.net> X-Rspamd-Queue-Id: 4BRjPn1YNyz4Pht X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of hmurray@megapathdsl.net has no SPF policy when checking 64.139.1.69) smtp.mailfrom=hmurray@megapathdsl.net X-Spamd-Result: default: False [0.44 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.79)[-0.790]; RCPT_COUNT_THREE(0.00)[3]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; FROM_HAS_DN(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[megapathdsl.net]; AUTH_NA(1.00)[]; NEURAL_SPAM_SHORT(0.20)[0.200]; NEURAL_HAM_LONG(-0.47)[-0.466]; TO_MATCH_ENVRCPT_SOME(0.00)[]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:4565, ipnet:64.139.0.0/18, country:US]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 21:24:14 -0000 freebsd@edvax.de said: > You could disable ntpd, or statically assign the IP of 0.freebsd.pool.ntp.org > using /etc/hosts as a workaround. /etc/hosts won't work in this case. It's the pool - short TTLs rotating frequently. -- These are my opinions. I hate spam. From owner-freebsd-questions@freebsd.org Wed Aug 12 22:13:42 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4D7A43ABF4C for ; Wed, 12 Aug 2020 22:13:42 +0000 (UTC) (envelope-from rwmaillists@googlemail.com) Received: from mail-wm1-x331.google.com (mail-wm1-x331.google.com [IPv6:2a00:1450:4864:20::331]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BRkVr61nZz4SWr for ; Wed, 12 Aug 2020 22:13:40 +0000 (UTC) (envelope-from rwmaillists@googlemail.com) Received: by mail-wm1-x331.google.com with SMTP id 184so3347572wmb.0 for ; Wed, 12 Aug 2020 15:13:40 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:message-id:in-reply-to :references:mime-version:content-transfer-encoding; bh=mEc+sJ2TcTBFTSzySm51exwC4t8Zt1EV54ZMqnEeVNk=; b=b5UfZxUEXA5vPhZu/BOxcGYHECNOsGAeVDO77dyK51KvEbVRKd6bv8PfsYNvWdyYh6 CPqvftmulxnOt854Su6uy8aCDuruO62w7NwSxC6E+mjDBZRF0+hlmPV62kqvxRQ4xCVW tskkeulXefeUEf9ZymNFts+Z2Mt3aTMVxTPsrdr5j8mGZIWhZB8ksx0vEU17tB2uUvmu 5api6JvilhOmd947TgD4yXodVskdVMczB6DlaiZ4GBFhm5lqkW63UdxAYvIs02IZe8CM jSMZGdyuEgJ4y3X+ydWeUw/R9myhRJmexHWczrAnbs2IdYgCu0u4E5gYD8qHvDXi2YNZ ROCw== X-Gm-Message-State: AOAM532yZutT/tZCMCqaAVAIYng3m7IqGG8gcyGGUJyrWHcJMZeA6GL9 nv7y7V8fox/Fg1+XUAqQ7JXuItrNm1s= X-Google-Smtp-Source: ABdhPJzzzzI8eQiPZVdHO9WyB6/8FPFyRQ3YMI54XTbK5dHaIVzTANIx6sUWnM36C3zNpNDa4czlrQ== X-Received: by 2002:a05:600c:252:: with SMTP id 18mr1535092wmj.56.1597270419110; Wed, 12 Aug 2020 15:13:39 -0700 (PDT) Received: from gumby.homeunix.com ([2.223.134.111]) by smtp.gmail.com with ESMTPSA id d14sm6764490wre.44.2020.08.12.15.13.37 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 12 Aug 2020 15:13:38 -0700 (PDT) Date: Wed, 12 Aug 2020 23:13:36 +0100 From: RW To: freebsd-questions@freebsd.org Subject: Re: boot time error msg from ntpd Message-ID: <20200812231336.371cd980@gumby.homeunix.com> In-Reply-To: <20200812211113.D44D3406061@ip-64-139-1-69.sjc.megapath.net> References: <5F345430.3000206@gmail.com> <20200812211113.D44D3406061@ip-64-139-1-69.sjc.megapath.net> X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; amd64-portbld-freebsd12.1) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BRkVr61nZz4SWr X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.33 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[googlemail.com:s=20161025]; RECEIVED_SPAMHAUS_PBL(0.00)[2.223.134.111:received]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[googlemail.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.99)[-0.991]; RCVD_COUNT_THREE(0.00)[3]; NEURAL_HAM_MEDIUM(-0.95)[-0.946]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36]; DKIM_TRACE(0.00)[googlemail.com:+]; DMARC_POLICY_ALLOW(-0.50)[googlemail.com,quarantine]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::331:from]; NEURAL_SPAM_SHORT(0.61)[0.611]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[googlemail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[googlemail.com:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 12 Aug 2020 22:13:42 -0000 On Wed, 12 Aug 2020 14:11:13 -0700 Hal Murray wrote: > The initial error message is telling you that DNS didn't work. I > don't know why. Perhaps ntpd got started before your network > connection was working? Try adding the following to /etc/rc.conf netwait_enable=YES netwait_ip="8.8.8.8 208.67.220.220 1.1.1.1" From owner-freebsd-questions@freebsd.org Thu Aug 13 10:11:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 675B93BCEAF for ; Thu, 13 Aug 2020 10:11:12 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: from outgoing.tristatelogic.com (segfault.tristatelogic.com [69.62.255.118]) by mx1.freebsd.org (Postfix) with ESMTP id 4BS2Ql1fH3z46bL for ; Thu, 13 Aug 2020 10:11:11 +0000 (UTC) (envelope-from rfg@tristatelogic.com) Received: by segfault.tristatelogic.com (Postfix, from userid 1237) id 761754E747; Thu, 13 Aug 2020 03:11:03 -0700 (PDT) From: "Ronald F. Guilmette" To: freebsd-questions@freebsd.org Subject: How to set a connect() timeout (?) MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-ID: <79515.1597313462.1@segfault.tristatelogic.com> Content-Transfer-Encoding: quoted-printable Date: Thu, 13 Aug 2020 03:11:03 -0700 Message-ID: <79516.1597313463@segfault.tristatelogic.com> X-Rspamd-Queue-Id: 4BS2Ql1fH3z46bL X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of rfg@tristatelogic.com designates 69.62.255.118 as permitted sender) smtp.mailfrom=rfg@tristatelogic.com X-Spamd-Result: default: False [-1.71 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.51)[-0.512]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[tristatelogic.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.49)[-0.495]; NEURAL_HAM_SHORT(-0.40)[-0.403]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14051, ipnet:69.62.128.0/17, country:US]; SUBJECT_HAS_QUESTION(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 10:11:12 -0000 This is driving me bonkers and I feel like I'm having deja vu all over aga= in. (In other words I think I may have asked about this before in the very dis= tant past.) Setting a programmed time limit for the connect() system call seems to be = a common thing that many people, not just myself, often want to do. It is n= ot at all clear if there is or isn't a simple way to do that, e.g. one that doesn't involve calling select() or poll() or something like that. On FreeBSD, there is a system-wide sysctl variable that sets the system-wi= de default connect timeout. It's called net.inet.tcp.keepinit. But I really do want= to be able to programatically set the connect timeout for individual (outbound) = sockets. setsockopt() provides the SO_SNDTIMEO and SO_RCVTIMEO options which allow = setting of timeouts on individual sockets for writing and reading respectively, bu= t it is not immediately apparent, e.g. from the relevant man page, that either of = these setsockopt() options will have any effect on the connect() timeout period. In online sources there is some suggestion that one or the other of these = two setsockopt() options can be used, at least on Linux, to programatically co= ntrol the per-socket connect timeout period, but I have not tried that on my own= Linux system so I may be reading too much into what I have been reading. I am forced to wonder why, on FreeBSD there is no such thing as an SO_CONT= IMEO option that can be used with setsockopt() to easily control the connect() = timeout on a per-socket basis. Can anyone explain to me why there isn't such a thing? Seems like rather = a glaring oversight to me, and a no-brainer (that such a thing really should exist). From owner-freebsd-questions@freebsd.org Thu Aug 13 16:58:56 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 9D4F637EA49 for ; Thu, 13 Aug 2020 16:58:56 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from oceanview.tundraware.com (oceanview.tundraware.com [45.55.60.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailman.tundraware.com", Issuer "mailman.tundraware.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSCTB5MfPz4X9P for ; Thu, 13 Aug 2020 16:58:54 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [192.168.0.2] (ozzie.tundraware.com [75.145.138.73]) (authenticated bits=0) by oceanview.tundraware.com (8.16.1/8.15.2) with ESMTPSA id 07DGvUox073260 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Thu, 13 Aug 2020 11:57:30 -0500 (CDT) (envelope-from tundra@tundraware.com) Subject: Re: How to set a connect() timeout (?) To: freebsd-questions@freebsd.org References: <79516.1597313463@segfault.tristatelogic.com> From: Tim Daneliuk Autocrypt: addr=tundra@tundraware.com; prefer-encrypt=mutual; keydata= xsFNBFlVgYoBEADIYD9W4mbKz5cEleX923hagDWkxyJl4kRiMJnz+dNAH71MItSdErMb0cFt CPxVncb4dR4R2ec0c0MjPcgVINNtbY1DMWsF7t31TKD8NG9ZjLqF6fZDFjgkRejqHytgjmCI UejrMSCf0UJsLtg+I3N1ZVVxd7ALj2bCvC/uc5S7j+YbNnhQvSoBbdFj/xOTjyOGGpk7WfB7 e42PGKq1NSgnI7tcY6HSaSH+LHeoc0yUpBb5A1ge+RhR1N9JTniEFe0qvOBi+HgUltEoxsk4 xb6IhpkDOTsxHvEg5h0ukfl8kG9cu+LrEBqwPaC8lPw3UmoTEAU+lXHanPE12JCF/54EtVCc rb4W0vqgGmLJzn5dRU/fWkar0FKPq4eoV0XMbGZKIC6pWQnMEsxEMpNvh7oefK6Kyn+LO+59 +sNYHbv1RImDJccmfHTOA6/jHdwOcnYy37U8UF7e+mGrwNs8GsMQx2AaQbR6VErakH3GBgft bMFOGQxiaRBkbzba7BZCQ060yhiC3/Mb/xHoVi7PBEmKig1SErTMA7Fh3CYPYIRDphNs6OSr tf9O4hbzUAsjbU3rxOfiWQjP3fSOM0KUBj4wpIWZlMrjAGnMIz2wHb211wsBiLqSaGiiO1LR 7RrcvbIFZvHQHiWe2tdRyuH3N/h7A316yoLfx+yy1gyP5weWsQARAQABzSRUaW0gRGFuZWxp dWsgPHR1bmRyYUB0dW5kcmF3YXJlLmNvbT7CwXcEEwEIACEFAllVgYoCGyMFCwkIBwIGFQgJ CgsCBBYCAwECHgECF4AACgkQdoOXo5EJFKntcA/9F9ags9Ik5C49N39iRq+yqBdn/Lr75rqv +Yg7JkjeVlwHpnQt1S6orTC7EaJc+AqY3szCEmhfuT0+E96Bw2k+G/XRnaedZ9SHSdImlmq0 RmOFpWLr67ScvlA9YG1tyR+QYraEFqK5EB6qhOWRJoz1BYtAAntK9b9gUTXt/277sT7lAWaj oPi4CDd4DofHc4E9VRsniMQNMLCWqc/ygAK07cWbK2Rh90tS2C4nK6OHFkNkK94zDilfxod1 NBFTUPPYfEU2CSa3eLlpfhYY3/2X7zNvmmCt+chHUnAhQLhldQ3WlqmTKP+ZK9LX002/bY1O M8Zk76WyA/A3EfsIUbnXBQvFyjwX6W4QEytlZWtp/yRIe64JOa3dZ8rkhragb2N4VgVLBVe3 jtZgfQ72pHrfNk/T0uT+hjFqInvIYiXkhxB2GiD7Ga28VuXojTmeoaW3GKcvoVxONSju7WzD XgyxWRmNpd5uifJcC3YU3tNNAosnQ0/5FW4wkducSEVwwqnAiSMQEMDDa/e6oP6GyOzes5SV LTNCRYdHWVKbxjetYU4SKm5RdLx9XuJo0qL9vO97mCNwdNkTM7gO2ycQ49qUiGbCZJOh2gpP ZRFrpJDxbloosAfOEB6IYjhb38u6jvbScJKK3bWA+a8TK4SrQpdRd1cAnW9sA8jCTV8ejZq0 CHnOwU0EWVWBigEQAJYuihAOOOe/kAn045Ayn+3is3S+6eV4IAgL6lJhoChkgUJJuFoRX9BY rd35z29+q2/UCoProzd4Mk66wXeWv6n4s5R79OUzjgMLCTVlVaMy4gjPL9NRDwMt7KYRF56g mnoKZwfPDi/oJ5toPPboW94FrMwonqbdqYM2Pyi/HPMe4e396WQ4TaA1CdhyzKHoFSpkGcjX zIQ5yQ5aaGS7wonRu/pg15dbu+8QOgxRNFa0bO+ntz/30u+VmxFqFVbExjuy3Or8fSBhJgx4 cfyrrunKLclpZ/52VeK3l53yWYpR8RaTZfzpu8Ih+ijAY4XLO5F8P1T6sEviMaTY2F0sbFRx ZJXsgFpiKeWPHUn7/LX7qcoFJYoFqG6b3n5km+qy39x6lMgJDuxKpeN6lYj//LB6xVzn0JI+ 4ZHPrEkFqxu8VkL7deCPTI67ZJik18jXjTH9sha1YBvgvxIPFMA7ZwXX2AwNu7PzdcCpWarS usOAHbjQBUsQ+ZPpI1oeFnsCPZ+8/mMcTjVRZyJxOPs3KnXZv2cXNuaa7lwkWS366gHzQI7O l6WdC8TyNjiOzR654cL8BgYQ/xNSW1vTXqPWSRU8/b/5IueY2tQJh0CKIvfoP0rk8976wa1R 8SRi08mwHX7+F5oSeXLRNHicQGpS1f0DywdRcQ0MFHyq/CV4dTltABEBAAHCwV8EGAEIAAkF AllVgYoCGwwACgkQdoOXo5EJFKkDNw//c8nailIVOV72l7Lze+2AuK9MYUCFb1i4qI1WTnG0 OHQlCAltPhdwZPAozJw/eNqIcuWQh8rZspve9ipj589wLSsVyaFRsuYXTiYZ9RlRsnJYa36h 2JML3ZGrRsSxaUEAggbiOKbwmw27JuOIPmC3Gln4tJuZ+nw6cfCgMI45bIzinVanxHwPLeLp BZKpaEYzAwtBykUfAXn3jDwrI95UlMJvhHDFuRgvb6uSyJIqmp5aR/BjnlSdEwICyWpRAVSt yqZeBMeHbCr1B97PIRzk/q0eHm9T+AoiZWwz1iVGGgkYdAaCfs2PBlNHmRm93cfgoEcaGvNb RbTXOe28niMJeYMQsnjOTy5AQIrhVKeP5E+qVs/oPK/inmLiTbjZcnrO2wR+uxpPGgmR6M/3 p8qyRdaOvT87HZXO+Wr+r9A4UnwhCPsfELwPlEo+TJQ/oE71Mlkx/ddQCWELcHjXrQF9YbzA Ml7g0zTkgHysh4DNkV5iYteOcmCwsWdOwn0H0yZfz6weyr8nEdPngyOjFNKMIpcTbeg8866c GxXAJj46dub4VdVwfvMRHfmmRJkjdId7YHWMgz2Kf7S7KPCROLis7WjlOdSS0q2m/7qy9WL/ ZW50YLS8ZZLMrnari5JxCyJX+8n6ZASo2AA93iTbKmYegK2LDwW1QLU1iAF3GyGOnSE= Message-ID: <97067a78-9b52-5fa9-a33b-a9671a09b0b9@tundraware.com> Date: Thu, 13 Aug 2020 11:57:25 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: <79516.1597313463@segfault.tristatelogic.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (oceanview.tundraware.com [45.55.60.57]); Thu, 13 Aug 2020 11:57:30 -0500 (CDT) X-TundraWare-MailScanner-Information: Please contact the ISP for more information X-TundraWare-MailScanner-ID: 07DGvUox073260 X-TundraWare-MailScanner: Found to be clean X-TundraWare-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, timed out) X-TundraWare-MailScanner-From: tundra@tundraware.com X-Spam-Status: No X-Rspamd-Queue-Id: 4BSCTB5MfPz4X9P X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of tundra@tundraware.com designates 45.55.60.57 as permitted sender) smtp.mailfrom=tundra@tundraware.com X-Spamd-Result: default: False [-2.06 / 15.00]; RCVD_TLS_ALL(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.80)[-0.802]; ARC_NA(0.00)[]; NEURAL_HAM_SHORT(-0.16)[-0.160]; DMARC_NA(0.00)[tundraware.com]; NEURAL_HAM_MEDIUM(-0.80)[-0.799]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14061, ipnet:45.55.32.0/19, country:US]; RCVD_COUNT_TWO(0.00)[2]; SUBJECT_HAS_QUESTION(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 16:58:56 -0000 On 8/13/20 5:11 AM, Ronald F. Guilmette wrote: > This is driving me bonkers and I feel like I'm having deja vu all over again. > (In other words I think I may have asked about this before in the very distant > past.) > > Setting a programmed time limit for the connect() system call seems to be a > common thing that many people, not just myself, often want to do. It is not > at all clear if there is or isn't a simple way to do that, e.g. one that > doesn't involve calling select() or poll() or something like that. > > On FreeBSD, there is a system-wide sysctl variable that sets the system-wide default > connect timeout. It's called net.inet.tcp.keepinit. But I really do want to be > able to programatically set the connect timeout for individual (outbound) sockets. > > setsockopt() provides the SO_SNDTIMEO and SO_RCVTIMEO options which allow setting > of timeouts on individual sockets for writing and reading respectively, but it is > not immediately apparent, e.g. from the relevant man page, that either of these > setsockopt() options will have any effect on the connect() timeout period. > > In online sources there is some suggestion that one or the other of these two > setsockopt() options can be used, at least on Linux, to programatically control > the per-socket connect timeout period, but I have not tried that on my own Linux > system so I may be reading too much into what I have been reading. > > I am forced to wonder why, on FreeBSD there is no such thing as an SO_CONTIMEO > option that can be used with setsockopt() to easily control the connect() timeout > on a per-socket basis. > > Can anyone explain to me why there isn't such a thing? Seems like rather a glaring > oversight to me, and a no-brainer (that such a thing really should exist). I may have this wrong so don't take this a gospel, but as I don't believe timeouts as you describe them were ever a 1st class thing in the BSD sockets definition. It is certainly the case that these sort of semantics are typically well implemented a layer up from the raw socket. For example, timeout management is handled in the Python socket library, Tornado, and gRPC, all to pretty good effect. Again, much of this is lost in the bitrot of brain, but this is what I recall anyway. -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/ From owner-freebsd-questions@freebsd.org Thu Aug 13 18:56:58 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4B1FD3A8FD3 for ; Thu, 13 Aug 2020 18:56:58 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x135.google.com (mail-il1-x135.google.com [IPv6:2607:f8b0:4864:20::135]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSG5P2npjz4fV4 for ; Thu, 13 Aug 2020 18:56:57 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x135.google.com with SMTP id p18so2623619ilm.7 for ; Thu, 13 Aug 2020 11:56:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=qPmEQp4nB9XajhoOXEPZMD83txEcWhh2PbG13B2uaFk=; b=ozUcLhdkQ7xOI6zJjLBpZAKyFvcP0rHDuuxfc4edli0x+0fNPA/qMG7hu653QiD2I2 0dEZBCD4Y4kGpTpivOxsSSfjNRhXkZzwg6oh3jMLmuQXkSr2SYkWzuBlPFmabM5Hxqf0 K2Rkkv793DZc6l76fP86Pge6JNPCkiBg16a2Qt2VqRuDIvYUyrvs/x1kjKsVjRHAuh32 oN15CaD2VD0NoVr6zzdSzp9DRxNbHiUGF23LKtKNYeJC2voqH30LdmGc5UIpCjhpQr2Y 1Xr6Xqyz541fgAPN3vW26WMsfCUMURLMXzmTq4MUgj8jWEercfzGgZkZssx11dgtls8D FMmw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=qPmEQp4nB9XajhoOXEPZMD83txEcWhh2PbG13B2uaFk=; b=tYDq0jyzD2WzQhX3GRfMcZgYQdy90/5LiHrPEhxlmaVVFj22vjLlD96+JU9vs3hZ/R C8jsxoQSpePuqn/5Rn7lmA78irjbGCQunanEaKJRXKw/kCaOX+gcGHZMAqjWAf4lW2YE z79qRRB3Or553N5WXLofRMCim0SXhJqsfsGDhfvkl8JG1PZeGKAtpO2yOupbvaaZnbdY oOgfX1JCiebAfv3FfgCPA51vpks0OBaTUphLta/4+lL94LkigcZnhzEt2smNI7Uc8rag XHqdGUf8k0UeWe3/oz8nd1EJVGWf4z0EXhiCCPPXBiowEZ8XzoFMeNjVRTOdVHqHI4U8 glGQ== X-Gm-Message-State: AOAM531LEkfkNVcB0DvTm3e6ErO4VlDHbFtVxnUet3Ja8s0Meutx+F4d IkNmhlILeeKe+zGgcfgPhrkr5BE97Say/6c8c7pDxsvYXlQ= X-Google-Smtp-Source: ABdhPJyqfyO+G8bNtOohKyiUDj4YfumVqMJepTQduLk8Er1/sGY59AUZEk2u2x4rfadIUPUjQX/+0qsDnMaxMxIVIow= X-Received: by 2002:a92:d20c:: with SMTP id y12mr6383466ily.81.1597345014507; Thu, 13 Aug 2020 11:56:54 -0700 (PDT) MIME-Version: 1.0 From: Aryeh Friedman Date: Thu, 13 Aug 2020 14:56:43 -0400 Message-ID: Subject: OT: Dealing with a hosting company with it's head up it's rear end To: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSG5P2npjz4fV4 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=ozUcLhdk; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::135 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.14 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-0.96)[-0.963]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.00)[-1.001]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::135:from]; NEURAL_HAM_SHORT(-0.18)[-0.180]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 18:56:58 -0000 The hosting company for one of our clients sent the following reply to us/them when we asked them to setup end user accounts on a dedicated Windows Server, FreeBSD box and CentOS box (all VM's on the same physical machine with no other VM's on the physical machine) and being told we needed scriptable access (not web based non-scriptable) to the windows desktop and shell accounts (including the ability to sudo) and they agreed to provide it: "[Insert client name here], we do not allow RDP or SSH into our datacenter. They are the primary vehicles for ransomware and cryptolocker breaches. We utilize a secure access portal with multi-factor authentication to ensure you don't get breached." I kind of understand RDP (but we have had bad luck with VNC on the same hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their idea of a "two factor" authentication is each connection will only be allowed via a web portal and must use a one-time password sent the users smartphone. Not only does this make automated deploy impossible it is a complete show stopper since our service is IoT and uses its own custom protocol. So how do we/the client tell the hosting company they are full of sh*t (the client has a 3 year contract with a pay in full to break clause with them which would be over $100k to break) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 18:59:08 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D10583A9364 for ; Thu, 13 Aug 2020 18:59:08 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2e.google.com (mail-io1-xd2e.google.com [IPv6:2607:f8b0:4864:20::d2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSG7w0P3Bz4frw for ; Thu, 13 Aug 2020 18:59:07 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2e.google.com with SMTP id q75so8490888iod.1 for ; Thu, 13 Aug 2020 11:59:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=1bqUbk8/PHSQ8+V3RmKL63ZZLRuAR6QARzRehIMAQsc=; b=gNo3gIwmdqL8ogUdhm1VHCvh+Aas3KCp2uYTDB8Z0E6YfSRwSTEXVWTJlGBX9LPLIK 6BOWCcgI82Mab/R86nYeUJcXNsVf1dFG0uvYKxaK0zKKbCWryyv5ZkdfM75x3M7N48ul YfKBU2xbdYg36fHnbsMzNzEDblpHuk2LuDL+kAQmfqfzXmyBdcXEi0ELiiMV6tyqLYmE KSKUIRUxTUdsJns8VH1vvC1FYNnA104KnYdRql/n7szJuPawW+mgggdURWZ1zptaaiwX i0OijZok50vsHANofMahPFhtK4JpKPf6WE1D4iAqc/lpogHV97lPsMcWyOXvYuM6/+kY Z4Yg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=1bqUbk8/PHSQ8+V3RmKL63ZZLRuAR6QARzRehIMAQsc=; b=Frwr0YSizKkSBm+2MHnIDZzQif6ELxj+So+hvR1KoxXByhRpLS4Yw2xVTrlV3J5Ckt tRWWsc1MC9oISngC5g2t2PbbMBGXCJab1nLWx93HVHZtzahb4Ra2DJcPmKYiwe0RHOvC MRWuRhhEexEqFYm36grXTc4ItuSz9io+yPzxEqCyog26I7iI66SPHjFbxXlLJsZVPRwQ hfEOon2L92ZkobSOZgahB1jw185fkJDCa9TN8FjH8PmY5r2Zz2d8jwxvPyqSEyMykl4D JQis4+7uTw08JY2LYCOk/7hopZIZOYydsjbPrzujqz4ITK0+Xg1L7QtPDVbMX2Ai1e5+ RGRg== X-Gm-Message-State: AOAM532PA4rkC1MJk4DFCNsvc4s/L7qUKZLXBPoSGI/sojLiaC0e9CnB eu2QRsjRMHOK1osrG8zZGkBsUY33iNZJ23pTTpuGYavE X-Google-Smtp-Source: ABdhPJw04wHEARuocUwFslzEf2/EucM5YireycIHYRb4d85qFcRVGnlAZsZrMYNp3CKxTxGv513dzgLSW7hCzwlPT9I= X-Received: by 2002:a05:6638:1313:: with SMTP id r19mr6549507jad.60.1597345145664; Thu, 13 Aug 2020 11:59:05 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Aryeh Friedman Date: Thu, 13 Aug 2020 14:58:54 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSG7w0P3Bz4frw X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=gNo3gIwm; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2e as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.08 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.97)[-0.967]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2e:from]; NEURAL_HAM_SHORT(-0.11)[-0.109]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 18:59:08 -0000 Forgot to ask how common is such idiocy? And is it becoming more common? On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman wrote: > The hosting company for one of our clients sent the following reply to > us/them when we asked them to setup end user accounts on a dedicated > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > machine with no other VM's on the physical machine) and being told we > needed scriptable access (not web based non-scriptable) to the windows > desktop and shell accounts (including the ability to sudo) and they agreed > to provide it: > > "[Insert client name here], we do not allow RDP or SSH into our > datacenter. They are the primary vehicles for ransomware and cryptolocker > breaches. We utilize a secure access portal with multi-factor > authentication to ensure you don't get breached." > > I kind of understand RDP (but we have had bad luck with VNC on the same > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > idea of a "two factor" authentication is each connection will only be > allowed via a web portal and must use a one-time password sent the users > smartphone. Not only does this make automated deploy impossible it is a > complete show stopper since our service is IoT and uses its own custom > protocol. > > So how do we/the client tell the hosting company they are full of sh*t > (the client has a 3 year contract with a pay in full to break clause with > them which would be over $100k to break) > > -- > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 19:04:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8E5F03A973E for ; Thu, 13 Aug 2020 19:04:45 +0000 (UTC) (envelope-from xxjack12xx@gmail.com) Received: from mail-qt1-x835.google.com (mail-qt1-x835.google.com [IPv6:2607:f8b0:4864:20::835]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGGM6Ghwz3RcY for ; Thu, 13 Aug 2020 19:04:43 +0000 (UTC) (envelope-from xxjack12xx@gmail.com) Received: by mail-qt1-x835.google.com with SMTP id s16so5189154qtn.7 for ; Thu, 13 Aug 2020 12:04:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=rBwdLxpj6XnVEfQnHsdpg/bddp5HokmqxdvH5rumiUE=; b=plZ5g4tJHA76W9nPL4dxURHAkTexxInF296atqRYRnY4JiGPDV5/b1rjWT3cgF5+Qu AbKSB7s7TmcfX2XH+J4XoMQ1cUCLoaFkn5ufqaPFWeNZ+asErHXqip83a6JfACSTd5mj 4apRM+V5OPWekO6ua9xZCyRqiXntfRZRtDfnz8v+dNCCOt9Aubomls+KlSTgoNbOuK4y dxm9qk7sFP2N5D5G4h0G133NFp222LFJGfO6oJllBny4cFcOTXj1PxhwJ0WwQuLg0u1N t+oDTHv80Yi7+pc72q6ntPdSzS01jsjZZOOKVRSxStP1zt+/WbyoQ37ZpIPpIvh5pvHs dJ2A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=rBwdLxpj6XnVEfQnHsdpg/bddp5HokmqxdvH5rumiUE=; b=E2fz61/htCVLORTHPxfKGX3DRhfoAq7Uc/7Y5iBr716qfI/tCCCsNkgps5vHw/P/FN cvY9jELOuXKyupZ6P+J0GmEz+x+nbfmbzLoHWMhvQj02SHOdHy+8mZj4LfvWrzDtk/Ys PMROwEecONEvZ4Z9LF7AY4lWsMXrx4U8flabYTtzTUyovF7boI4AjcDAcpEXGa26l28D VX+SfpUHXzmEbCcg6OzejNlY5Eqy1d+9y7fnBeWBQ1aWaVZgzignsYGBnBCUbk+kr0ZL lMFnlihfTuspKr53dlghwOKr3R4LCyAhen1HMGClXIQ5nKUzETUn3a1g42UffCJ2ywbu QkvQ== X-Gm-Message-State: AOAM532tgfaWuiYSpdgHB4kSTE41rLgcW4cJ9IRySzpwerbbl0UA9Bcg +2fXCO75VRqNymcwVxUG+S3Y919rIzwNV52Fx5E= X-Google-Smtp-Source: ABdhPJwooLXaAbjMVNIdEFF8TeQpKknOsoQxUCpK3zY8EBSRuws9YRaRaiOMJZ9ddipae0EqdEzC2hNHSQdrMzvjvh4= X-Received: by 2002:ac8:6e9b:: with SMTP id c27mr6822334qtv.189.1597345482582; Thu, 13 Aug 2020 12:04:42 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: "Jack L." Date: Thu, 13 Aug 2020 12:04:06 -0700 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Aryeh Friedman Cc: FreeBSD Mailing List Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4BSGGM6Ghwz3RcY X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=plZ5g4tJ; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of xxjack12xx@gmail.com designates 2607:f8b0:4864:20::835 as permitted sender) smtp.mailfrom=xxjack12xx@gmail.com X-Spamd-Result: default: False [-3.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.99)[-0.986]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.00)[-1.001]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::835:from]; NEURAL_HAM_SHORT(-0.45)[-0.453]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:04:45 -0000 Just change the ssh/rdp ports? On Thu, Aug 13, 2020 at 11:59 AM Aryeh Friedman wrote: > > Forgot to ask how common is such idiocy? And is it becoming more common? > > On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman > wrote: > > > The hosting company for one of our clients sent the following reply to > > us/them when we asked them to setup end user accounts on a dedicated > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > > machine with no other VM's on the physical machine) and being told we > > needed scriptable access (not web based non-scriptable) to the windows > > desktop and shell accounts (including the ability to sudo) and they agreed > > to provide it: > > > > "[Insert client name here], we do not allow RDP or SSH into our > > datacenter. They are the primary vehicles for ransomware and cryptolocker > > breaches. We utilize a secure access portal with multi-factor > > authentication to ensure you don't get breached." > > > > I kind of understand RDP (but we have had bad luck with VNC on the same > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > > idea of a "two factor" authentication is each connection will only be > > allowed via a web portal and must use a one-time password sent the users > > smartphone. Not only does this make automated deploy impossible it is a > > complete show stopper since our service is IoT and uses its own custom > > protocol. > > > > So how do we/the client tell the hosting company they are full of sh*t > > (the client has a 3 year contract with a pay in full to break clause with > > them which would be over $100k to break) > > > > -- > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > > > > -- > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" From owner-freebsd-questions@freebsd.org Thu Aug 13 19:07:10 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DA2A93A9A2F for ; Thu, 13 Aug 2020 19:07:10 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGK959Rpz3Rxv for ; Thu, 13 Aug 2020 19:07:09 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2b.google.com with SMTP id a5so8347813ioa.13 for ; Thu, 13 Aug 2020 12:07:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Y4Hna0Hw1PsRoKfDv9pNQ0yVVzNeinJ2PMGfAXnp7DE=; b=X1xaqgCSzVp6iuuf93k7uMzVFrxzkM7lwHWePtYK9yS7idam7KGxvEuaqK9B8neiZ6 seoTfkeQwK3npbwlWnbb5UziSeKhcgrHYV1QMFUxYysNh1aNmoLnJcyZyz6oY/8F6Xo7 MGzpNC5rjTf42iiZj/uM2Z2uEpcDVpaFeS5GNRvhqosTmtjPFrP5Yxfdf/u0Ii2ymrY+ f8yNwmiGfSol+sLkOOLF7t2u+hYqyw1VTK2Ysh8Uv7boXbF9gpCZr4qv/cblS8xBBAB1 rX/cPWUx075pJejIQqpv/z07ff3F2bAKdJezuOi1rcR/0acbXC/oISGKd2PG4tLAK4cN SeZg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Y4Hna0Hw1PsRoKfDv9pNQ0yVVzNeinJ2PMGfAXnp7DE=; b=TPmIbtuFFVqPjfROpLAhsrv5E//FMTTFS0MbptezVZeJsMc0WYDH+32dEDOCJuVemi 41t58VKVH/XTu4rUTf35nKfyrABNm4jtbM843ROtETSQpQvqsXKV10ZGWvDubLa123mm R4njMyI4iV4tG8cjJlj+gNFFVk4pZVCf7hXGNTUCohJCvNka1behmRpMZQ8ytiemst3P oXJ0l0CJrXkRURdEDkFi0ejkQZWd4yiM5VlT5K5iNZp5za0VaJIEOe7IOZpET124CmmM LqufVBGHyrQj5GcCUZFSa99LKXQt32CM8l5ikahrtZlql0UEHS/OKxCqNwdn8c5c1P+V JdXw== X-Gm-Message-State: AOAM5306K2kQGgGmJRdDF8cZGWFpkVVZFvEO7L80HkGfc2gaNRE91Zuf n9AAf3E1BfNWb+Es0evxKwKg5ZXf7fP+VpWOr2M= X-Google-Smtp-Source: ABdhPJxnilL9tR8d9GujZ3bC/nKOxZ6Fwj4mOksmv9Oq1AgWeCpBiZW9rvY3W5e6DBrfIS+2t/Q4LPSegP+Zlx0dnxU= X-Received: by 2002:a6b:900b:: with SMTP id s11mr6082288iod.83.1597345628563; Thu, 13 Aug 2020 12:07:08 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Aryeh Friedman Date: Thu, 13 Aug 2020 15:06:57 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: "Jack L." Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSGK959Rpz3Rxv X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=X1xaqgCS; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2b as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.49 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.99)[-0.991]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.00)[-0.998]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2b:from]; NEURAL_HAM_SHORT(-0.50)[-0.504]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:07:10 -0000 On Thu, Aug 13, 2020 at 3:04 PM Jack L. wrote: > Just change the ssh/rdp ports? > > All ports except 80 and 25 are firewalled > On Thu, Aug 13, 2020 at 11:59 AM Aryeh Friedman > wrote: > > > > Forgot to ask how common is such idiocy? And is it becoming more common? > > > > On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman > > > wrote: > > > > > The hosting company for one of our clients sent the following reply to > > > us/them when we asked them to setup end user accounts on a dedicated > > > Windows Server, FreeBSD box and CentOS box (all VM's on the same > physical > > > machine with no other VM's on the physical machine) and being told we > > > needed scriptable access (not web based non-scriptable) to the windows > > > desktop and shell accounts (including the ability to sudo) and they > agreed > > > to provide it: > > > > > > "[Insert client name here], we do not allow RDP or SSH into our > > > datacenter. They are the primary vehicles for ransomware and > cryptolocker > > > breaches. We utilize a secure access portal with multi-factor > > > authentication to ensure you don't get breached." > > > > > > I kind of understand RDP (but we have had bad luck with VNC on the same > > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! > Their > > > idea of a "two factor" authentication is each connection will only be > > > allowed via a web portal and must use a one-time password sent the > users > > > smartphone. Not only does this make automated deploy impossible it is > a > > > complete show stopper since our service is IoT and uses its own custom > > > protocol. > > > > > > So how do we/the client tell the hosting company they are full of sh*t > > > (the client has a 3 year contract with a pay in full to break clause > with > > > them which would be over $100k to break) > > > > > > -- > > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > > > > > > > > -- > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" > -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 19:08:24 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1346C3A9B61 for ; Thu, 13 Aug 2020 19:08:24 +0000 (UTC) (envelope-from dr.klepp@gmx.at) Received: from vie01a-dmta-at50-2.mx.upcmail.net (vie01a-dmta-at50-2.mx.upcmail.net [62.179.121.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGLb17hMz3S1q for ; Thu, 13 Aug 2020 19:08:22 +0000 (UTC) (envelope-from dr.klepp@gmx.at) Received: from [172.31.216.41] (helo=vie01a-pemc-psmtp-at50) by vie01a-dmta-at50.mx.upcmail.net with esmtp (Exim 4.92) (envelope-from ) id 1k6IaJ-0002N4-3g for freebsd-questions@freebsd.org; Thu, 13 Aug 2020 21:08:19 +0200 Received: from x61.lan ([85.126.97.210]) by vie01a-pemc-psmtp-at50 with SMTP @ mailcloud.upcmail.net id F78J230264YLlkt0B78JqH; Thu, 13 Aug 2020 21:08:19 +0200 X-SourceIP: 85.126.97.210 X-CNFS-Analysis: v=2.2 cv=O6RJhF1W c=1 sm=2 tr=0 cx=a_idp_f a=/Ac8Q0O/YFE5LOLfUiYZVw==:117 a=/Ac8Q0O/YFE5LOLfUiYZVw==:17 a=8nJEP1OIZ-IA:10 a=pGLkceISAAAA:8 a=MzQ3lrGnAAAA:8 a=rFsZZ5cwtXMhQdxiY8QA:9 a=wPNLvfGTeEIA:10 a=_Z4L-_9ngrfQnKB3E3tf:22 From: "Dr. Nikolaus Klepp" To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Date: Thu, 13 Aug 2020 21:08:18 +0200 User-Agent: KMail/1.9.10 References: In-Reply-To: X-KMail-QuotePrefix: > MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <202008132108.18598.dr.klepp@gmx.at> X-Rspamd-Queue-Id: 4BSGLb17hMz3S1q X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=fail (mx1.freebsd.org: domain of dr.klepp@gmx.at does not designate 62.179.121.137 as permitted sender) smtp.mailfrom=dr.klepp@gmx.at X-Spamd-Result: default: False [4.26 / 15.00]; ARC_NA(0.00)[]; R_SPF_FAIL(1.00)[-all]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmx.at]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[gmx.at]; NEURAL_SPAM_MEDIUM(0.86)[0.862]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_THREE(0.00)[3]; NEURAL_HAM_SHORT(-0.27)[-0.265]; NEURAL_SPAM_LONG(0.86)[0.861]; MID_CONTAINS_FROM(1.00)[]; FROM_NAME_HAS_TITLE(1.00)[dr]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:6830, ipnet:62.179.0.0/17, country:AT]; RCVD_TLS_LAST(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmx.at]; RCVD_IN_DNSWL_LOW(-0.10)[62.179.121.137:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:08:24 -0000 Anno domini 2020 Thu, 13 Aug 14:58:54 -0400 Aryeh Friedman scripsit: > Forgot to ask how common is such idiocy? And is it becoming more common? Speaking of Austria: Not common for hosting providers, but the bigger they get the less knowledge they have. But for software companies that sell anything based on MSSQL it's quite standard behavior. Usually the talk get's interesting when you demand a guarantee with penalty (contractor has to pay for lost service et.) if something goes wrong with their proposed superduper solution. Nik > > On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman > wrote: > > > The hosting company for one of our clients sent the following reply to > > us/them when we asked them to setup end user accounts on a dedicated > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > > machine with no other VM's on the physical machine) and being told we > > needed scriptable access (not web based non-scriptable) to the windows > > desktop and shell accounts (including the ability to sudo) and they agreed > > to provide it: > > > > "[Insert client name here], we do not allow RDP or SSH into our > > datacenter. They are the primary vehicles for ransomware and cryptolocker > > breaches. We utilize a secure access portal with multi-factor > > authentication to ensure you don't get breached." > > > > I kind of understand RDP (but we have had bad luck with VNC on the same > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > > idea of a "two factor" authentication is each connection will only be > > allowed via a web portal and must use a one-time password sent the users > > smartphone. Not only does this make automated deploy impossible it is a > > complete show stopper since our service is IoT and uses its own custom > > protocol. > > > > So how do we/the client tell the hosting company they are full of sh*t > > (the client has a 3 year contract with a pay in full to break clause with > > them which would be over $100k to break) > > > > -- > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > > > -- Please do not email me anything that you are not comfortable also sharing with the NSA, CIA ... From owner-freebsd-questions@freebsd.org Thu Aug 13 19:10:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6136F3A9D40 for ; Thu, 13 Aug 2020 19:10:28 +0000 (UTC) (envelope-from 4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGNz2p58z3SFg for ; Thu, 13 Aug 2020 19:10:26 +0000 (UTC) (envelope-from 4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597345827; x=1599937827; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:to:from:date:x-thread-info; bh=B7twgWH0MipAzJOgmJS26SK2NMNyD/rce0zqgy/iYxs=; b=M9JRbDxJoXW8YgCdB5gfVoxjB3J6z0LK0UqNCeyqk44WGh8sIXJ1T4NhYShqgNar6dGVh0oQPKhTuQWETLx8UIWV4frpJ1orBu1dTxvVRu5AbJgT4uwwuA0wK+0mn02uVsXuMjkZvBzYK53JNwE9yGHc9OKeiefLyjXsroLyijM= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg1OTlhZTkuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r3.us-east-1.aws.in.socketlabs.com (r3.us-east-1.aws.in.socketlabs.com [142.0.191.3]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 15:10:16 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r3.us-east-1.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 15:10:16 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6IcA-0005Ag-DZ for freebsd-questions@freebsd.org; Thu, 13 Aug 2020 20:10:14 +0100 Date: Thu, 13 Aug 2020 20:10:14 +0100 From: Steve O'Hara-Smith To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> In-Reply-To: References: X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSGNz2p58z3SFg X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=M9JRbDxJ; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com X-Spamd-Result: default: False [-2.25 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.03)[-1.027]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[sohara.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.023]; RCVD_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.50)[-0.496]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; MID_RHS_MATCH_FROM(0.00)[]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org, 4250.82.1d4c20008599ae9.8c7b4dd65f27fe71030074be1048c694@email-od.com] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:10:28 -0000 On Thu, 13 Aug 2020 14:56:43 -0400 Aryeh Friedman wrote: > The hosting company for one of our clients sent the following reply to > us/them when we asked them to setup end user accounts on a dedicated > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > machine with no other VM's on the physical machine) and being told we > needed scriptable access (not web based non-scriptable) to the windows > desktop and shell accounts (including the ability to sudo) and they agreed > to provide it: Do you have it in writing that they agreed to provide the access you require. If so you have a club your lawyer can beat their lawyer over the head with otherwise you're probably screwed. -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Thu Aug 13 19:10:38 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D1E743A9DB7 for ; Thu, 13 Aug 2020 19:10:38 +0000 (UTC) (envelope-from dave@jetcafe.org) Received: from fedex2.jetcafe.org (fedex2.jetcafe.org [205.147.26.23]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "fedex2.jetcafe.org", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGP93YxYz3S5M for ; Thu, 13 Aug 2020 19:10:37 +0000 (UTC) (envelope-from dave@jetcafe.org) X-Envelope-To: Received: from bigus.dream-tech.com (bigus.jetcafe.org [205.147.26.7]) by fedex2.jetcafe.org (8.15.2/8.15.2) with ESMTPS id 07DJATwQ069738 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Thu, 13 Aug 2020 12:10:29 -0700 (PDT) (envelope-from dave@jetcafe.org) Date: Thu, 13 Aug 2020 12:10:29 -0700 From: Dave Hayes To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-ID: <20200813121029.28279823@bigus.dream-tech.com> In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Spam-Score: -1 ( out of 5.1) ALL_TRUSTED,SHORTCIRCUIT X-Spam-Checker-Version: SpamAssassin version 3.4.4-jetcafeglobal X-Scanned-By: MIMEDefang 2.83 X-Rspamd-Queue-Id: 4BSGP93YxYz3S5M X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of dave@jetcafe.org designates 205.147.26.23 as permitted sender) smtp.mailfrom=dave@jetcafe.org X-Spamd-Result: default: False [-1.92 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.76)[-0.764]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.85)[-0.847]; DMARC_NA(0.00)[jetcafe.org]; NEURAL_HAM_SHORT(-0.01)[-0.009]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:7397, ipnet:205.147.0.0/18, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:10:38 -0000 On Thu, 13 Aug 2020 14:56:43 -0400 Aryeh Friedman wrote: > The hosting company for one of our clients sent the following reply to > us/them when we asked them to setup end user accounts on a dedicated > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > machine with no other VM's on the physical machine) and being told we > needed scriptable access (not web based non-scriptable) to the windows > desktop and shell accounts (including the ability to sudo) and they agreed > to provide it: ... > Their > idea of a "two factor" authentication is each connection will only be > allowed via a web portal and must use a one-time password sent the users > smartphone. Not only does this make automated deploy impossible it is a > complete show stopper since our service is IoT and uses its own custom > protocol. Have you tried running SSH on a ephemeral port? > So how do we/the client tell the hosting company they are full of sh*t (the > client has a 3 year contract with a pay in full to break clause with them > which would be over $100k to break) Well you can tell them anything you want by various means, we all have mouths and email. I find telling people what is obviously true (for any human being who eats) highly ineffective in convincing people to cooperate. However, it seems to me if you told them you need scriptable access and that was actually in your contract, they are in breach of contract and you can use that to break the contract. I am not a lawyer and you will quite likely need one to pull that off. Just my $0.02 USD. -- Dave Hayes - Consultant - Altadena CA, USA - dave@jetcafe.org >>>> *The opinions expressed above are entirely my own* <<<< Before criticizing people, walk a mile in their shoes. Then when you do criticize them, you will be a mile away and have their shoes. From owner-freebsd-questions@freebsd.org Thu Aug 13 19:13:26 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 727823AA0AC for ; Thu, 13 Aug 2020 19:13:26 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: from mail-qk1-x732.google.com (mail-qk1-x732.google.com [IPv6:2607:f8b0:4864:20::732]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGSP2vwqz3SkX for ; Thu, 13 Aug 2020 19:13:25 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: by mail-qk1-x732.google.com with SMTP id 62so6182065qkj.7 for ; Thu, 13 Aug 2020 12:13:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tenebras-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=uLPki0/uJQ3ZX3TxOovhCCzqjZXM8pxBeFilzxb7uWQ=; b=YMSklDovQxuSy3Mflug4g8B/1pnnBhgs6CNwFKMhhF7U3XD70f3fBRwWiRrr8lpieH L3gGSrvQavYoAYdKbnnCKAKSmbpGj3lzoNkGYzdVApSQ9CzJ3WGAV1KLLUcqxB3+ovYA cJrJEHcG0kqlC6aLdyfTnF4r3ZDh4Y1+mCOPYI0hbO01w9evKIITrPbMv6qGiaThFiBJ L5T1diH0oE2vBg5o/GSPwqh8e5w1LI8LfGhDIZ7u/eItL5ZPOssVC5aCz54yxb5mjXJF eHCkRoWXxej1ohr8k3AEmUBN1ucuIj5Gmm1lnhheMdLK5c7yD9zAejuDzz+pCJ1TKq5d jmYA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=uLPki0/uJQ3ZX3TxOovhCCzqjZXM8pxBeFilzxb7uWQ=; b=CyXpGWg5mB//TtMdgy+9WX96Oo5ivg6vkeGGbmhIRc2EBtY8R++AknmbosjPMxlvHb 7Xcrj1lzTMfz4naotdRiN6hXjJPDRJ62ZODQQjS0Z5+Sf0u1WH5RpOa4JCoA9x+IBS9e kuUu85dSHDVC71WVVvRt16xGnjLPey2+MLJQBr8EJWr8YzG2gI2N18s40ijidefzn6sq kFxMC6DnCha2y0nO1ZaNzg/0EyQ1KyZ4Re1Nq9V2b7ELA2nUp2VDBI74pV/QcQmUjdbo 6B3l0jVGsJ0Ru7mxBLkSZUhd8QrspVk5os/BtVbsZCslwXHB03WT6buVECMIObVA2vTe dgow== X-Gm-Message-State: AOAM5320tRbZg+o/O7lp3wT9NSZE2a8JkwQUY3g9TLpNPUoUGKKYfvAi KVN4OcEQqm5T4UF3FYxAKd3kk4NjqFfNQnXHjsdsBg== X-Google-Smtp-Source: ABdhPJxIqXNykQJwn4s7IB3Fmg93c/WTWh/p0zJf2dCKpDkXXubTMURS8YR7yzKSCLrsUaptlcCHq5bMz5brz6oVUrc= X-Received: by 2002:a37:9e48:: with SMTP id h69mr6184440qke.249.1597346004150; Thu, 13 Aug 2020 12:13:24 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Michael Sierchio Date: Thu, 13 Aug 2020 12:12:48 -0700 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: "Jack L." Cc: Aryeh Friedman , FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSGSP2vwqz3SkX X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=tenebras-com.20150623.gappssmtp.com header.s=20150623 header.b=YMSklDov; dmarc=none; spf=none (mx1.freebsd.org: domain of kudzu@tenebras.com has no SPF policy when checking 2607:f8b0:4864:20::732) smtp.mailfrom=kudzu@tenebras.com X-Spamd-Result: default: False [-2.56 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.93)[-0.927]; R_DKIM_ALLOW(-0.20)[tenebras-com.20150623.gappssmtp.com:s=20150623]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.95)[-0.946]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[tenebras.com]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[tenebras-com.20150623.gappssmtp.com:+]; NEURAL_HAM_SHORT(-0.38)[-0.382]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::732:from]; R_SPF_NA(0.00)[no SPF record]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_TLS_ALL(0.00)[]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org] Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:13:26 -0000 Unless they are completely clueless, that's easily detected. Although there is evidence suggestive of them being clueless... It is possible to enforce MFA with SSH in a number of ways. E.g., pam_google_authenticator yubikeys with captive ssh private key + touch-to-sign required etc. On Thu, Aug 13, 2020 at 12:05 PM Jack L. wrote: > > Just change the ssh/rdp ports? > > On Thu, Aug 13, 2020 at 11:59 AM Aryeh Friedman > wrote: > > > > Forgot to ask how common is such idiocy? And is it becoming more common? > > > > On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman > > wrote: > > > > > The hosting company for one of our clients sent the following reply t= o > > > us/them when we asked them to setup end user accounts on a dedicated > > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > > > machine with no other VM's on the physical machine) and being told we > > > needed scriptable access (not web based non-scriptable) to the window= s > > > desktop and shell accounts (including the ability to sudo) and they agreed > > > to provide it: > > > > > > "[Insert client name here], we do not allow RDP or SSH into our > > > datacenter. They are the primary vehicles for ransomware and cryptolocker > > > breaches. We utilize a secure access portal with multi-factor > > > authentication to ensure you don't get breached." > > > > > > I kind of understand RDP (but we have had bad luck with VNC on the same > > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > > > idea of a "two factor" authentication is each connection will only be > > > allowed via a web portal and must use a one-time password sent the users > > > smartphone. Not only does this make automated deploy impossible it is a > > > complete show stopper since our service is IoT and uses its own custo= m > > > protocol. > > > > > > So how do we/the client tell the hosting company they are full of sh*= t > > > (the client has a 3 year contract with a pay in full to break clause with > > > them which would be over $100k to break) > > > > > > -- > > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > > > > > > > > -- > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to " freebsd-questions-unsubscribe@freebsd.org" > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " freebsd-questions-unsubscribe@freebsd.org" -- "Well," Brahm=C4=81 said, "even after ten thousand explanations, a fool is = no wiser, but an intelligent person requires only two thousand five hundred." - The Mah=C4=81bh=C4=81rata From owner-freebsd-questions@freebsd.org Thu Aug 13 19:20:07 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F0D773AA2B8 for ; Thu, 13 Aug 2020 19:20:07 +0000 (UTC) (envelope-from xxjack12xx@gmail.com) Received: from mail-qk1-x72b.google.com (mail-qk1-x72b.google.com [IPv6:2607:f8b0:4864:20::72b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGc70xySz3SyR for ; Thu, 13 Aug 2020 19:20:06 +0000 (UTC) (envelope-from xxjack12xx@gmail.com) Received: by mail-qk1-x72b.google.com with SMTP id p25so6232099qkp.2 for ; Thu, 13 Aug 2020 12:20:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Ngo4+9SGxV30A9/x1WIc1Ktw9218XUi1KqsFmCzIijo=; b=Ny3tXbG3QAhQp57K3CvZpieOFHeSiShxb3p7nF6yCTGbCSuD/2JaYfbM7HpKV+6DEW Y99t/pgJPIbxP5EYuX+7FnoWuf0lAN4hUQgLcLDrRM76rqz++2XER8sfuqBghlwnBDhL hli38J2UeCovh5uLvHb+yPvoRmZploMV1YotNEeFGV0f/OmWVrMYn2IBGMPBLSAdN8Xk OuuITxXa9GvHmPo7X/Lq3tQdkrXEzD9rUYVntaxCNv+avudHU/iJBwgeCF2zJafVyHNU /KsXmWENs0S967/v2yWyFGR3JodMhncvGlEV4YKwdUUAHWE2R4H9025/+y3MCTWUdwX7 CkeA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Ngo4+9SGxV30A9/x1WIc1Ktw9218XUi1KqsFmCzIijo=; b=cqyRKzvgNBJQZe7AGWrl4tQx5O8B1AMcspmmtrcVz3AtmNUlk8CElEcuqPqSGSqACg ZI4a0gIw5t29xFArx/DJfGeCOPkARdX6UjrzCuvGFteyeWgRtCb2XZ2ruwS/ofg8hPGV rNM3PfO9JyMpUB9/Fn+IXv/qhwiJqEvzuOdZUps15WO952pd1/c7UwIw2vRcImpgXike emaBJfsg7vqPCpWGZsE49ilRY8Nv1CsI+vttv7CWv0x/N/BXN51dhzLvv8YBK3DXZVY8 yuKGEzx6TDCweLEiKjSFtVpKpRSK11mQU0sLC9GFyswZ2UawJ0Lcjbgerjq+XrSHsj/2 suxg== X-Gm-Message-State: AOAM530yJfq5YuXmoEtdo2NnWqjoAGmQsb02FrAGhhRjhT8OuEK0iuBB xQZpy0Mnxr0+O6wynNuuQ23pMkZYCUmbC/PqUlHNfw== X-Google-Smtp-Source: ABdhPJwZ29mqXG1pyXToHcOcPZTvosvIjCJ7WhRHtqbbEhCp6i9DOkyJIqodWSloof3a8Q/s6iRr3rcXj3/i2haxGVU= X-Received: by 2002:a37:63d3:: with SMTP id x202mr5682384qkb.1.1597346405902; Thu, 13 Aug 2020 12:20:05 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: "Jack L." Date: Thu, 13 Aug 2020 12:19:29 -0700 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Aryeh Friedman Cc: FreeBSD Mailing List Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4BSGc70xySz3SyR X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Ny3tXbG3; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of xxjack12xx@gmail.com designates 2607:f8b0:4864:20::72b as permitted sender) smtp.mailfrom=xxjack12xx@gmail.com X-Spamd-Result: default: False [-3.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.99)[-0.987]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.00)[-1.001]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::72b:from]; NEURAL_HAM_SHORT(-0.45)[-0.449]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:20:08 -0000 Time to run a web shell and show them how vulnerable port 80 is. On Thu, Aug 13, 2020 at 12:07 PM Aryeh Friedman wrote: > > > > On Thu, Aug 13, 2020 at 3:04 PM Jack L. wrote: >> >> Just change the ssh/rdp ports? >> > > All ports except 80 and 25 are firewalled > > >> >> On Thu, Aug 13, 2020 at 11:59 AM Aryeh Friedman >> wrote: >> > >> > Forgot to ask how common is such idiocy? And is it becoming more common? >> > >> > On Thu, Aug 13, 2020 at 2:56 PM Aryeh Friedman >> > wrote: >> > >> > > The hosting company for one of our clients sent the following reply to >> > > us/them when we asked them to setup end user accounts on a dedicated >> > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical >> > > machine with no other VM's on the physical machine) and being told we >> > > needed scriptable access (not web based non-scriptable) to the windows >> > > desktop and shell accounts (including the ability to sudo) and they agreed >> > > to provide it: >> > > >> > > "[Insert client name here], we do not allow RDP or SSH into our >> > > datacenter. They are the primary vehicles for ransomware and cryptolocker >> > > breaches. We utilize a secure access portal with multi-factor >> > > authentication to ensure you don't get breached." >> > > >> > > I kind of understand RDP (but we have had bad luck with VNC on the same >> > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their >> > > idea of a "two factor" authentication is each connection will only be >> > > allowed via a web portal and must use a one-time password sent the users >> > > smartphone. Not only does this make automated deploy impossible it is a >> > > complete show stopper since our service is IoT and uses its own custom >> > > protocol. >> > > >> > > So how do we/the client tell the hosting company they are full of sh*t >> > > (the client has a 3 year contract with a pay in full to break clause with >> > > them which would be over $100k to break) >> > > >> > > -- >> > > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org >> > > >> > >> > >> > -- >> > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org >> > _______________________________________________ >> > freebsd-questions@freebsd.org mailing list >> > https://lists.freebsd.org/mailman/listinfo/freebsd-questions >> > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > > > > -- > Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 19:25:31 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A5B353AA890 for ; Thu, 13 Aug 2020 19:25:31 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.131]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGkL2krHz3TGJ for ; Thu, 13 Aug 2020 19:25:29 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue011 [212.227.15.167]) with ESMTPA (Nemesis) id 1M3loZ-1k6ZhU3G3X-000uLw; Thu, 13 Aug 2020 21:25:27 +0200 Date: Thu, 13 Aug 2020 21:25:27 +0200 From: Polytropon To: Aryeh Friedman Cc: FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200813212527.1806a142.freebsd@edvax.de> In-Reply-To: References: Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:Jxx1OHkTjyo2XC46/5SkO5dLuxSdDGkx9TarmOm8QyfprXlm52k J6qhdDRdY9BymFzfQRvgbnNx3dR0v+EvLgTAdToJ93wcWqgPtErIpTUaX57UiydFv3+58aW CrwvomNz4fjfjQ/hYbehmWXPfUg0LuW2JqsZdNNdW01FkhBNkXxVw38FwqWGHa8p+lonPkD UPVnuOV86j56UuRoJx8OA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:E3MKpUC0VmQ=:BdeGpfOs74UQbeU7yPFviY eKOITT9d6kSYwRJn2OyCgUSaugC+E4Se4w+cq1XjNO1TPKzub148Ll7pjLI0tFIbUC6HSIg28 j8pMRs8du0fHP+U0lPWHlNOj/yn/R3pEx6R+sIkCUbQiWMIEL7yjaoxcACIhgNB79vpIyjokz 1KezlFa3YA6O1DFcSHAKGlc5vXgtCu6MSoDIggjXwOq4jMEb+yeFRqAkjfRInEEeB/MBr8TOU 8pKqoWYtllbQe7+IO8n4tVmhB4zJZcfgWET0cSOmds43vAjmNgMknhUBkVVXeJFBnTxVT1GSU AoJmWLL/uqWchnnoL5IQJBalevQdvP0b7vUPXA7tyyZdENFOOgMJqMUvVwNNUQoi8U1bdPcDD UxA8vfQjZHajrsKhqztYZxG4scAUPm0xNqnw0MPJUuc7rGlce5vfIeFl+MMPCj7yzs3cqdYph 20dHQWUEZ+InOV/llBRi9V9nQy2AdBH4i3y89OW1jmh8ihmE8LpyAIIgzyt2tQcDvEEAfLkXu e4AXUKdJRYfGxJKZN3G3mMKozW0Sl5nbkdaeCJZNwZMa0Vu2DShiQqwuMiGec7vSMohMn0+zn ppLSujJI7sBHKMGQVZEdjkShjzpjiksvGE3mkoAeE2Q+svFRQikG4JWbzVpswmre7+z2EwmZQ trm54rQHPmuKS7+GaUOJ/RXVL2AJBETtyR/pFcZ5afhAkoRuEY7rxXLub/5D96TcptTHpWbdj VXNRVibcmwEcCszdW3sp8ZfRYEe3rpTjAONWuLki8dpZEN+sFWdDfhAMmmth6lTbRHx7T+7qf Wwto3Jt2PVsEKfEP+HWcKudz2LvcCtqLL41S87bC17aTlHIY0MJAIWJdhl4INeZiX36j/X+ X-Rspamd-Queue-Id: 4BSGkL2krHz3TGJ X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.131) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [2.68 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.88)[-0.878]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.60)[0.600]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.56)[0.559]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.131:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.131:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:25:31 -0000 On Thu, 13 Aug 2020 14:56:43 -0400, Aryeh Friedman wrote: > "[Insert client name here], we do not allow RDP or SSH into our datacenter. > They are the primary vehicles for ransomware and cryptolocker breaches. We > utilize a secure access portal with multi-factor authentication to ensure > you don't get breached." Verify, examine, and refute. Primary vehicles for ransomware and cryptolockers are e-mail (here: especially HTML e-mails and those containing attachments in MICROS~1 "Office" formats), as well as e-mails encouraging the user to visit "looks legitimate"-types of sites where common tools like HTML, CSS, and JS are being used to install ransomware and cryptolockers. In reality, RDP and especially (!) SSH are a minority when it comes to distribution of ransomware and cryptolocker software. Why? Because technical reasons and social considerations apply, as well as "who is our target audience". Their "secure access portal" is probably something web-based. What is that? Something consisting of HTML, CSS, and JS, plus probably some kind of "security by obscurity" backend that has never seen any kind of security audit. Their advice sounds good, but seems to be the opposite of what happens in the real world. > I kind of understand RDP (but we have had bad luck with VNC on the same > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > idea of a "two factor" authentication is each connection will only be > allowed via a web portal and must use a one-time password sent the users > smartphone. For more than 10 years now, we know (!) that this method is not secure. How does it arrive on the smartphone? By SMS? By e-mail (2nd address)? Or do they have a dedicated app? Oh yes, I know, smartphones are sooooo secure... > Not only does this make automated deploy impossible it is a > complete show stopper since our service is IoT and uses its own custom > protocol. They probably won't be able to even _understand_ what you're saying. > So how do we/the client tell the hosting company they are full of sh*t (the > client has a 3 year contract with a pay in full to break clause with them > which would be over $100k to break) That is a good question. Those contracts are often designed with "if we do something wrong, it's your fault" in mind... My suggestion would be: Try to find a "technical person" who you can talk to, layout your arguments, and explain what is going to happen. Yes, this sounds like elementary school, but sometimes it helps. However, the "technical person" should have power (!) in that hosting company to make things happen. On Thu, 13 Aug 2020 14:58:54 -0400, Aryeh Friedman wrote: > Forgot to ask how common is such idiocy? And is it becoming more common? Sadly I have experienced this already a few times, where secure methods were considered "insecure" and replaced with "secure" and "convenient" methods that would be more expensive, more prone to security breaches, inconvenient, or just unusable (read: it doesn't work at all). Luckily in Germany, you still sometimes find people who are professionally educated _and_ allowed to make correct decisions, and if you can get to talk to them, there often is a solution. In my experience, this has become more and more problematic due to a rise of bureaucracy and severe cases of NIH ("not invented here", i. e., they don't know about it, so it doesn't exist). There always are layers of management that consist of "we know better than you" who will disregard every help you (!) are offering to get the problem solved, leading so strange cases where if you point out their security flaws and how to properly deal with them, you get accused of hacking ("You have a serious SQLi problem in your login page." - "He hacked us! Call the police!"). In an ideal competetitive economy with a free market, you should be able to find a provider who is able and willing to provide what you're requiring. It's technically possible, and in the end, it's _your_ responsibility anyway ("It's not out fault when you get hacked, your signature on the contract says so."), so it doesn't actually make any difference. Even if we're just talking about VMs, that's pretty standard today: _you_ are the administrator, and you will keep the systems secure; _their_ respnsibilities are different (e. g., keep the actual hardware running, make sure it connects to the Internet, provide access to the VMs, and so on). Personally, I don't see a problem. But that doesn't stop stpud prople from artificially creating problems. ;-) On Thu, 13 Aug 2020 15:06:57 -0400, Aryeh Friedman wrote: > All ports except 80 and 25 are firewalled So they left the "insecure ports" open. Great. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Thu Aug 13 19:30:47 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 366DE3AA9CC for ; Thu, 13 Aug 2020 19:30:47 +0000 (UTC) (envelope-from 4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSGrQ53pXz3TY2 for ; Thu, 13 Aug 2020 19:30:46 +0000 (UTC) (envelope-from 4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597347047; x=1599939047; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:to:from:date:x-thread-info; bh=CBxvANkdj//1FLc4UCbe+/6OqBU6yuSMbd9jW0yGGoI=; b=bHrlVFYjjEwOYufR3EKqEEv+HQkjk/6HVHbb73ngRXV3PPceRsh2Rbo7tzy3FSWDiQYyX+Sb02ZRo2IH12IgwVpzUAuUbYEUS8Xmh08yh1d6Ms8uq/W7N+mONLjJZ0cBjVIf7Tu1aU6k+pP7yB01icqZFc1Keg8IFLyHYCbnrVw= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg1YTNjYTYuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r4.h.in.socketlabs.com (s1-b40f.socketlabs.email-od.com [142.0.180.15]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 15:30:41 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r4.h.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 15:30:41 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6Ivv-0005Dl-72 for freebsd-questions@freebsd.org; Thu, 13 Aug 2020 20:30:39 +0100 Date: Thu, 13 Aug 2020 20:30:39 +0100 From: Steve O'Hara-Smith To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200813203039.30400835439935d1e916d0e1@sohara.org> In-Reply-To: References: X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSGrQ53pXz3TY2 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=bHrlVFYj; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com X-Spamd-Result: default: False [-2.25 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.03)[-1.027]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[sohara.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.023]; RCVD_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.50)[-0.496]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c200085a3ca6.6f6e2995c2dd8814049b7e119de916a6@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:30:47 -0000 On Thu, 13 Aug 2020 14:56:43 -0400 Aryeh Friedman wrote: > The hosting company for one of our clients sent the following reply to > us/them when we asked them to setup end user accounts on a dedicated > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > machine with no other VM's on the physical machine) and being told we > needed scriptable access (not web based non-scriptable) to the windows > desktop and shell accounts (including the ability to sudo) and they agreed > to provide it: Can you ssh *out* from one of the unix boxes ? If so you can tunnel the rest through the ssh connection. -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Thu Aug 13 19:59:25 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 695AD3AADEB for ; Thu, 13 Aug 2020 19:59:25 +0000 (UTC) (envelope-from freebsd@andreboon.nl) Received: from smtp.boon.family (smtp.boon.family [83.162.225.28]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "boon.family", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHTS2jWZz3W61 for ; Thu, 13 Aug 2020 19:59:23 +0000 (UTC) (envelope-from freebsd@andreboon.nl) Received: from smtp.boon.family (unknown [192.168.0.5]) by smtp.boon.family (Postfix) with ESMTP id 92776197C3 for ; Thu, 13 Aug 2020 21:59:15 +0200 (CEST) X-Virus-Scanned: amavisd-new at boon.family Received: from smtp.boon.family ([192.168.0.5]) by smtp.boon.family (smtp.boon.family [192.168.0.5]) (amavisd-new, port 10024) with ESMTP id 590L7fVmsCYQ for ; Thu, 13 Aug 2020 21:57:32 +0200 (CEST) Received: from [192.168.2.17] (smtp.boon.family [83.162.225.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.boon.family (Postfix) with ESMTPSA id 4DDE6197BB for ; Thu, 13 Aug 2020 21:57:32 +0200 (CEST) X-Priority: 3 To: freebsd-questions@freebsd.org From: =?ISO-8859-1?Q?Andr=E9?= Boon Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-Reply-To: References: Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: base64 Date: Thu, 13 Aug 2020 19:57:31 +0000 Message-ID: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> MIME-Version: 1.0 X-Rspamd-Queue-Id: 4BSHTS2jWZz3W61 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@andreboon.nl designates 83.162.225.28 as permitted sender) smtp.mailfrom=freebsd@andreboon.nl X-Spamd-Result: default: False [-1.25 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.95)[-0.953]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; MIME_BASE64_TEXT_BOGUS(1.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.92)[-0.916]; RCVD_COUNT_THREE(0.00)[4]; DMARC_NA(0.00)[andreboon.nl]; NEURAL_HAM_SHORT(-0.18)[-0.181]; MIME_BASE64_TEXT(0.10)[]; HAS_X_PRIO_THREE(0.00)[3]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:3265, ipnet:83.160.0.0/14, country:NL]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 19:59:25 -0000 DQoNCk9uIFRodXJzZGF5LCBBdWd1c3QgMTMsIDIwMjAsIEFyeWVoIEZyaWVkbWFuIHdyb3RlOg0K PiBPbiBUaHUsIEF1ZyAxMywgMjAyMCBhdCAzOjA0IFBNIEphY2sgTC4gPHh4amFjazEyeHhAZ21h aWwuY29tPiB3cm90ZToNCj4gDQo+ID4gSnVzdCBjaGFuZ2UgdGhlIHNzaC9yZHAgcG9ydHM/DQo+ ID4NCj4gPg0KPiBBbGwgcG9ydHMgZXhjZXB0IDgwIGFuZCAyNSBhcmUgZmlyZXdhbGxlZA0KPiAN CkFyZSB5b3Ugc3VyZSBwb3J0IDQ0MyBpc24ndCBvcGVuIGFzIHdlbGw/IEkgd291bGQgZXhwZWN0 IHNvIGlmIHBvcnQgODAgaXMgYXZhaWxhYmxlLiBUaGF0IHdvdWxkIGFsbG93IHBvcnQgODAgdG8g YmUgdXNlZCBmb3IgU1NIIGlmIHlvdSdyZSBPSyB3aXRoIG9ubHkgcHJvdmlkaW5nIEhUVFBTLg== From owner-freebsd-questions@freebsd.org Thu Aug 13 20:02:20 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DDFB23AB423 for ; Thu, 13 Aug 2020 20:02:20 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from oceanview.tundraware.com (oceanview.tundraware.com [45.55.60.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailman.tundraware.com", Issuer "mailman.tundraware.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHXq4SFxz3W7t for ; Thu, 13 Aug 2020 20:02:19 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [192.168.0.2] (ozzie.tundraware.com [75.145.138.73]) (authenticated bits=0) by oceanview.tundraware.com (8.16.1/8.15.2) with ESMTPSA id 07DK2C0m076323 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Thu, 13 Aug 2020 15:02:12 -0500 (CDT) (envelope-from tundra@tundraware.com) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: FreeBSD Mailing List References: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> From: Tim Daneliuk Autocrypt: addr=tundra@tundraware.com; prefer-encrypt=mutual; keydata= xsFNBFlVgYoBEADIYD9W4mbKz5cEleX923hagDWkxyJl4kRiMJnz+dNAH71MItSdErMb0cFt CPxVncb4dR4R2ec0c0MjPcgVINNtbY1DMWsF7t31TKD8NG9ZjLqF6fZDFjgkRejqHytgjmCI UejrMSCf0UJsLtg+I3N1ZVVxd7ALj2bCvC/uc5S7j+YbNnhQvSoBbdFj/xOTjyOGGpk7WfB7 e42PGKq1NSgnI7tcY6HSaSH+LHeoc0yUpBb5A1ge+RhR1N9JTniEFe0qvOBi+HgUltEoxsk4 xb6IhpkDOTsxHvEg5h0ukfl8kG9cu+LrEBqwPaC8lPw3UmoTEAU+lXHanPE12JCF/54EtVCc rb4W0vqgGmLJzn5dRU/fWkar0FKPq4eoV0XMbGZKIC6pWQnMEsxEMpNvh7oefK6Kyn+LO+59 +sNYHbv1RImDJccmfHTOA6/jHdwOcnYy37U8UF7e+mGrwNs8GsMQx2AaQbR6VErakH3GBgft bMFOGQxiaRBkbzba7BZCQ060yhiC3/Mb/xHoVi7PBEmKig1SErTMA7Fh3CYPYIRDphNs6OSr tf9O4hbzUAsjbU3rxOfiWQjP3fSOM0KUBj4wpIWZlMrjAGnMIz2wHb211wsBiLqSaGiiO1LR 7RrcvbIFZvHQHiWe2tdRyuH3N/h7A316yoLfx+yy1gyP5weWsQARAQABzSRUaW0gRGFuZWxp dWsgPHR1bmRyYUB0dW5kcmF3YXJlLmNvbT7CwXcEEwEIACEFAllVgYoCGyMFCwkIBwIGFQgJ CgsCBBYCAwECHgECF4AACgkQdoOXo5EJFKntcA/9F9ags9Ik5C49N39iRq+yqBdn/Lr75rqv +Yg7JkjeVlwHpnQt1S6orTC7EaJc+AqY3szCEmhfuT0+E96Bw2k+G/XRnaedZ9SHSdImlmq0 RmOFpWLr67ScvlA9YG1tyR+QYraEFqK5EB6qhOWRJoz1BYtAAntK9b9gUTXt/277sT7lAWaj oPi4CDd4DofHc4E9VRsniMQNMLCWqc/ygAK07cWbK2Rh90tS2C4nK6OHFkNkK94zDilfxod1 NBFTUPPYfEU2CSa3eLlpfhYY3/2X7zNvmmCt+chHUnAhQLhldQ3WlqmTKP+ZK9LX002/bY1O M8Zk76WyA/A3EfsIUbnXBQvFyjwX6W4QEytlZWtp/yRIe64JOa3dZ8rkhragb2N4VgVLBVe3 jtZgfQ72pHrfNk/T0uT+hjFqInvIYiXkhxB2GiD7Ga28VuXojTmeoaW3GKcvoVxONSju7WzD XgyxWRmNpd5uifJcC3YU3tNNAosnQ0/5FW4wkducSEVwwqnAiSMQEMDDa/e6oP6GyOzes5SV LTNCRYdHWVKbxjetYU4SKm5RdLx9XuJo0qL9vO97mCNwdNkTM7gO2ycQ49qUiGbCZJOh2gpP ZRFrpJDxbloosAfOEB6IYjhb38u6jvbScJKK3bWA+a8TK4SrQpdRd1cAnW9sA8jCTV8ejZq0 CHnOwU0EWVWBigEQAJYuihAOOOe/kAn045Ayn+3is3S+6eV4IAgL6lJhoChkgUJJuFoRX9BY rd35z29+q2/UCoProzd4Mk66wXeWv6n4s5R79OUzjgMLCTVlVaMy4gjPL9NRDwMt7KYRF56g mnoKZwfPDi/oJ5toPPboW94FrMwonqbdqYM2Pyi/HPMe4e396WQ4TaA1CdhyzKHoFSpkGcjX zIQ5yQ5aaGS7wonRu/pg15dbu+8QOgxRNFa0bO+ntz/30u+VmxFqFVbExjuy3Or8fSBhJgx4 cfyrrunKLclpZ/52VeK3l53yWYpR8RaTZfzpu8Ih+ijAY4XLO5F8P1T6sEviMaTY2F0sbFRx ZJXsgFpiKeWPHUn7/LX7qcoFJYoFqG6b3n5km+qy39x6lMgJDuxKpeN6lYj//LB6xVzn0JI+ 4ZHPrEkFqxu8VkL7deCPTI67ZJik18jXjTH9sha1YBvgvxIPFMA7ZwXX2AwNu7PzdcCpWarS usOAHbjQBUsQ+ZPpI1oeFnsCPZ+8/mMcTjVRZyJxOPs3KnXZv2cXNuaa7lwkWS366gHzQI7O l6WdC8TyNjiOzR654cL8BgYQ/xNSW1vTXqPWSRU8/b/5IueY2tQJh0CKIvfoP0rk8976wa1R 8SRi08mwHX7+F5oSeXLRNHicQGpS1f0DywdRcQ0MFHyq/CV4dTltABEBAAHCwV8EGAEIAAkF AllVgYoCGwwACgkQdoOXo5EJFKkDNw//c8nailIVOV72l7Lze+2AuK9MYUCFb1i4qI1WTnG0 OHQlCAltPhdwZPAozJw/eNqIcuWQh8rZspve9ipj589wLSsVyaFRsuYXTiYZ9RlRsnJYa36h 2JML3ZGrRsSxaUEAggbiOKbwmw27JuOIPmC3Gln4tJuZ+nw6cfCgMI45bIzinVanxHwPLeLp BZKpaEYzAwtBykUfAXn3jDwrI95UlMJvhHDFuRgvb6uSyJIqmp5aR/BjnlSdEwICyWpRAVSt yqZeBMeHbCr1B97PIRzk/q0eHm9T+AoiZWwz1iVGGgkYdAaCfs2PBlNHmRm93cfgoEcaGvNb RbTXOe28niMJeYMQsnjOTy5AQIrhVKeP5E+qVs/oPK/inmLiTbjZcnrO2wR+uxpPGgmR6M/3 p8qyRdaOvT87HZXO+Wr+r9A4UnwhCPsfELwPlEo+TJQ/oE71Mlkx/ddQCWELcHjXrQF9YbzA Ml7g0zTkgHysh4DNkV5iYteOcmCwsWdOwn0H0yZfz6weyr8nEdPngyOjFNKMIpcTbeg8866c GxXAJj46dub4VdVwfvMRHfmmRJkjdId7YHWMgz2Kf7S7KPCROLis7WjlOdSS0q2m/7qy9WL/ ZW50YLS8ZZLMrnari5JxCyJX+8n6ZASo2AA93iTbKmYegK2LDwW1QLU1iAF3GyGOnSE= Message-ID: Date: Thu, 13 Aug 2020 15:02:07 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (oceanview.tundraware.com [45.55.60.57]); Thu, 13 Aug 2020 15:02:12 -0500 (CDT) X-TundraWare-MailScanner-Information: Please contact the ISP for more information X-TundraWare-MailScanner-ID: 07DK2C0m076323 X-TundraWare-MailScanner: Found to be clean X-TundraWare-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, score=-2.143, required 1, autolearn=not spam, ALL_TRUSTED -1.00, AWL 0.76, BAYES_00 -1.90, NICE_REPLY_A -0.00) X-TundraWare-MailScanner-From: tundra@tundraware.com X-Spam-Status: No X-Rspamd-Queue-Id: 4BSHXq4SFxz3W7t X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of tundra@tundraware.com designates 45.55.60.57 as permitted sender) smtp.mailfrom=tundra@tundraware.com X-Spamd-Result: default: False [-1.96 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[tundraware.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.88)[-0.883]; NEURAL_HAM_MEDIUM(-0.75)[-0.755]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.03)[-0.026]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14061, ipnet:45.55.32.0/19, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:02:20 -0000 On 8/13/20 2:10 PM, Steve O'Hara-Smith wrote: > On Thu, 13 Aug 2020 14:56:43 -0400 > Aryeh Friedman wrote: > >> The hosting company for one of our clients sent the following reply to >> us/them when we asked them to setup end user accounts on a dedicated >> Windows Server, FreeBSD box and CentOS box (all VM's on the same physical >> machine with no other VM's on the physical machine) and being told we >> needed scriptable access (not web based non-scriptable) to the windows >> desktop and shell accounts (including the ability to sudo) and they agreed >> to provide it: I cannot speak to hosting companies but this is very common in large corporate settings - i.e., I have seen this across many enterprises, especially as regards to sudo or other privilege escalation. To a large extent the decision to limit forms of access (and thereby break most forms of automation tooling) is because of two factors: 1) An increased presence of government regulatory involvement 2) An increased fear of losing in a lawsuit or other legal action I consulted for over 2 years at a large investment bank. During that time, they did not produce a single new financial product for their customers. 100% of their discretionary spending was directed at keeping bureaucrats happy - in this case, GDPR. This sort of things makes even aggressive organizations super conservative about ANY risk. What's really bizarre is that companies that deeply restrict login access, forbid any kind of root promotion other than "firecall" type access, and so forth, seem to have no problem installing BigCo's new monitoring or configuration enforcement agents on these same systems. They trust a vendor's agent more than they do their own ability to produce a good security practice. I once had an extended debates with a so-called security "specialist" who said we couldn't use sudo because it wasn't non-repudiable. I pointed them at the deep event and command logging possible if you setup sudo appropriately. This specialist didn't understand it, held their ground, and all but a few trivial sudo operations were forbidden. Try doing LVM disk management that way .... -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/ From owner-freebsd-questions@freebsd.org Thu Aug 13 20:10:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1B7EE3AB72D for ; Thu, 13 Aug 2020 20:10:28 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x12a.google.com (mail-il1-x12a.google.com [IPv6:2607:f8b0:4864:20::12a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHkB6wd2z3WZ5 for ; Thu, 13 Aug 2020 20:10:26 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x12a.google.com with SMTP id p18so2801142ilm.7 for ; Thu, 13 Aug 2020 13:10:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=N0exn0hYqAxBr3sHo1lmVpC9ySxXVFyrSP+lZQX2evA=; b=Dh+1iU9jK1XIjKtvPUQeq0n2KzNAZq3XGxeefA5QnqbXxTJLcnqTvewEKALR+j68ZJ Sf1XNtOZwBFpzDmdeH7P9JZON5EZty42Z+jPs0IsbL1anwKDESSX8ASGiEtUGWA00kYq 0yiEZi8i0zQKagaSR/SXWtulUQmAPO6DYs8pxIzsIthDs/0b6MvJFUyL80I+C8qSpN/t 4E/UMhVgQ5H2dVrnWzmA28u+MlOn7bPPpk9IYJNKk/84RxDIec0+88trSSwtEWkExYBv 4dCNGm62NJpEeilV0iXvIobWRNpj9ElZGOJFObXYy+ZbiLkUWrB587ujOyTb5BCGy94h Fnhw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=N0exn0hYqAxBr3sHo1lmVpC9ySxXVFyrSP+lZQX2evA=; b=UepzCuAwk/hVFnH1TmRwbcPYbN3Kfmi6SAluw1GXmYPu3ETLkf05ABzxnLzoQf6mX/ TB5t2pgQex+AUpnfdWWyI4C4Jx+BSqpvvwBUNNTQef/NAmg74ETjS3LJtH7qIwzD4Ixs 7abYniHBMqtBesiAYPcc9U+nG/+AmauiunZ7PWUvgf6rJfU6MR4mxd9cUEzuZX3MkQI2 L+OIulafqTHsRZXvLU6yyDjnhYm1mUf8gKk6OhEHBM6mn5RsIn+MUxphsnJNjY4wWNzC G1JKsk/M5nElgjQFdxjAchldmYgprkzfUqbdPKGtcLZCMawgpYti2o47RqnwlGal+RKY ySlw== X-Gm-Message-State: AOAM532bUaetNkuiz4bpouBVSgma1Uz9q40Oq311vFnD8YArmxRi3vPw +xuQnBrFXLRRJJTM9TRj8tyIGeqN5ZVYMXNXTl02spAC X-Google-Smtp-Source: ABdhPJytSkdEahh5a6gBMnSuMZTWyBRdJ8SPDfCL/eFbV6JoTbVc7CKHZTsnzvjT25cphHn8R9Zicnn3s62BGE05XL0= X-Received: by 2002:a92:d20c:: with SMTP id y12mr6621311ily.81.1597349425851; Thu, 13 Aug 2020 13:10:25 -0700 (PDT) MIME-Version: 1.0 References: <20200813203039.30400835439935d1e916d0e1@sohara.org> In-Reply-To: <20200813203039.30400835439935d1e916d0e1@sohara.org> From: Aryeh Friedman Date: Thu, 13 Aug 2020 16:10:14 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: "Steve O'Hara-Smith" Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSHkB6wd2z3WZ5 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Dh+1iU9j; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12a as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.006]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.007]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::12a:from]; NEURAL_HAM_SHORT(-0.43)[-0.429]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:10:28 -0000 On Thu, Aug 13, 2020 at 3:30 PM Steve O'Hara-Smith wrote: > On Thu, 13 Aug 2020 14:56:43 -0400 > Aryeh Friedman wrote: > > > The hosting company for one of our clients sent the following reply to > > us/them when we asked them to setup end user accounts on a dedicated > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > > machine with no other VM's on the physical machine) and being told we > > needed scriptable access (not web based non-scriptable) to the windows > > desktop and shell accounts (including the ability to sudo) and they > agreed > > to provide it: > > Can you ssh *out* from one of the unix boxes ? If so you can tunnel > the rest through the ssh connection. > The block ALL outgoing ports except 25 even between the VM's on the same host. This even if you are using their manaditory VPN access to get to the web portal in the first place (i.e. they even block 10.XXX.XXX.0/24 !?!??!). -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 20:12:32 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C88D53AB673 for ; Thu, 13 Aug 2020 20:12:32 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2f.google.com (mail-io1-xd2f.google.com [IPv6:2607:f8b0:4864:20::d2f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHmb158Sz3X0x for ; Thu, 13 Aug 2020 20:12:31 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2f.google.com with SMTP id z6so8638561iow.6 for ; Thu, 13 Aug 2020 13:12:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ZzySf33Q8ElweK4CKnZ6k8JLyxxU1S/HmaeIqYOZX1I=; b=HhM1Y3QyHEAz4jthcmwgBj+GEj40F9gd4roAWdCkng+Ad2JtVEzCG1N07TyTTMSs+f 7ziUsimQ7dh69yI/diG8/WsEGJ6ZHNgoEwuD3f264i5eSvFCi3NCpHVQGQV3apL6S1Af PUvbgcFkgMOTo/DMF45miqpNugf1/xA+KjmSVqtN8PliE71uGejZ6fkrFtGF5Q/XlrDP td2fiygBuN2J2yHz228NZwdTG/bm1JwhNWQGmE6HmUQXVL29O4wd34reU1UmTaI6TEQm zhRiZjOEMsK8wnogxYgHuSFzMU+5tk/iAlfbos+Rn8Ma2vMo6H7GicmMwmMdPl4NY81x CD1A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ZzySf33Q8ElweK4CKnZ6k8JLyxxU1S/HmaeIqYOZX1I=; b=SGfWwtaqOdwTWqDukpU6vLyu+0PKdh7f2RTkTNSTF4l2s7koD6UrAqZNphwW0Mo981 U+YdvGNzUVgBQW2oOu0vOgxBy1V4EMzKD9Jx3uzxZ5AcwnIs6Xm+/B1c5Ec2w6fQu0Bl r3hPwUaW6ojX8m0LGMma6vRX+QmtyIVZkCxpMQAjtNm8A1Dt/datOM1EqL4YRWUvOt29 2dCesiO9PF1N6CdP5eMZt5/GTgxUarp6VpSSrF3+fdeD7WazH0S3NRhLnd3blG3eZeBS J4g/EL4vG4f3LCsNpN8hDwxgl0B8kJBCqeGaCeWr5OvnXV7tC2lxMTwnYNqh0lHLsNQY yU/g== X-Gm-Message-State: AOAM533I0/EMbssBT0GSMUmlTXEIjpwU/aWcOO1VSHXf6BFNUj7H9pw0 f9lnnEBmkz4NEHpOGzqm2IAGPH9FGOvVpIHpuC4cqYhq X-Google-Smtp-Source: ABdhPJyVs4RWS1eobd6O0VN+zdesaYFqbHkRqWXXv4HL+s8oJ4Als3LpI1yp3N73mw1GjCwqlmjWbdjr3/arXKn1MAA= X-Received: by 2002:a5d:9701:: with SMTP id h1mr6475401iol.36.1597349550073; Thu, 13 Aug 2020 13:12:30 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> In-Reply-To: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> From: Aryeh Friedman Date: Thu, 13 Aug 2020 16:12:18 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: =?UTF-8?Q?Andr=C3=A9_Boon?= Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSHmb158Sz3X0x X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=HhM1Y3Qy; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2f as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.45 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.01)[-1.006]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.007]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2f:from]; NEURAL_HAM_SHORT(-0.44)[-0.438]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:12:32 -0000 On Thu, Aug 13, 2020 at 3:59 PM Andr=C3=A9 Boon wrot= e: > > > On Thursday, August 13, 2020, Aryeh Friedman wrote: > > On Thu, Aug 13, 2020 at 3:04 PM Jack L. wrote: > > > > > Just change the ssh/rdp ports? > > > > > > > > All ports except 80 and 25 are firewalled > > > Are you sure port 443 isn't open as well? I would expect so if port 80 is > available. That would allow port 80 to be used for SSH if you're OK with > only providing HTTPS. > They have a whacko firewall config that will eat 443/decrypt it/forward it on as plain http via a proxy on the firewall --=20 Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 20:15:18 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CAF743ABB47 for ; Thu, 13 Aug 2020 20:15:18 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x130.google.com (mail-il1-x130.google.com [IPv6:2607:f8b0:4864:20::130]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHqp07NGz3XFp for ; Thu, 13 Aug 2020 20:15:17 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x130.google.com with SMTP id y18so6601312ilp.10 for ; Thu, 13 Aug 2020 13:15:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=D6sEd9/A/ejXkybBy+IOo0PzSlxbpbBx2AyXuSyrN6w=; b=Z5BBs8npEWw8RQQtZimkyhGfKRlBw5WkUWKQs+uCeM/OLhfqYeVccaWnnyxfa4ggHF 5wE8In24N0oc8YhHBwCnXaN272UwLyIlCLObNKvJIjnzx2+Qts9EU3JheKg7l88znu6p nJvq/pSCF1RDCyo7oEB9n650NPR3evDG+x2Yh49HD+eeqGF1wDzwTmJ4+xVbFo9VwngJ DHyQ+ddhGdH4Uy0DoTZfQ38WEiCUdiyp7/gLXCjNj1dl+BuuINkFgoFuQU19mNniYeUh c899jC3auYn6mGz+no0yIcBsz2hLMikUvyfRxn+Ig2gGXR2VdVVg5uh5JYLmN8/oW8DW xNyQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=D6sEd9/A/ejXkybBy+IOo0PzSlxbpbBx2AyXuSyrN6w=; b=KA8Z5x6OFT9q85fT8zauBfdcK8kw/rxOflj54l3H6YKnQz9rV5gWZrii35GTh2BTMS LkXL8KxmxgnnfID82YP5EeXxe9454gTvk9a6rJkH+LQJ/F1w4q42GHR79RJWnwGFGxT8 pONw8amJa6BmkxNavonMP1wqO+n1vc7u9J4GE7cgXQOm5uNoy4FoMh23j/IxeiCUBllt +/13A+AGq+jMq8pUJKshSeJmoaq7jpLe3x+aqD5k/YdmR6C+TDtb4HuKF/L9BkFL7oXg KdJb+/oR3iP7+z8q3CX7LjpiVuuthkGaqfa8vlX5Epk8ixDwyIlzSdgGHeXRU8bIXHYs AJXA== X-Gm-Message-State: AOAM531OrnlIjl6lIVaD6ILC3DkcNryW847BOgJfpK7XIRHPtAHTIK/7 sxRZAJZMuT7zIPviw35JYbg+GQZwHp5TryoAjck= X-Google-Smtp-Source: ABdhPJyZAHEGayePAx/wkbnE1bn4tbSWukgS/K8DRZiPtKhEd6gDiyw8UGiDvQRVlpS7hbjwHycQ79q0ZQo40vgAw2k= X-Received: by 2002:a05:6e02:c12:: with SMTP id d18mr5926794ile.185.1597349716504; Thu, 13 Aug 2020 13:15:16 -0700 (PDT) MIME-Version: 1.0 References: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> In-Reply-To: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> From: Aryeh Friedman Date: Thu, 13 Aug 2020 16:15:05 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: "Steve O'Hara-Smith" Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSHqp07NGz3XFp X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Z5BBs8np; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::130 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.44 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.006]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.007]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::130:from]; NEURAL_HAM_SHORT(-0.43)[-0.425]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:15:18 -0000 On Thu, Aug 13, 2020 at 3:10 PM Steve O'Hara-Smith wrote: > On Thu, 13 Aug 2020 14:56:43 -0400 > Aryeh Friedman wrote: > > > The hosting company for one of our clients sent the following reply to > > us/them when we asked them to setup end user accounts on a dedicated > > Windows Server, FreeBSD box and CentOS box (all VM's on the same physical > > machine with no other VM's on the physical machine) and being told we > > needed scriptable access (not web based non-scriptable) to the windows > > desktop and shell accounts (including the ability to sudo) and they > agreed > > to provide it: > > Do you have it in writing that they agreed to provide the access > you require. If so you have a club your lawyer can beat their lawyer over > the head with otherwise you're probably screwed. > Already tried and they said such services were "third party" and specifically forbidden by the contract as being "unsupportable". The client's attorney said the client would lose in court since any third party service is disallowed by the contract. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 20:17:08 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 81AF33ABD3F for ; Thu, 13 Aug 2020 20:17:08 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSHsv3Wzfz3XLV for ; Thu, 13 Aug 2020 20:17:07 +0000 (UTC) (envelope-from kremels@kreme.com) Content-Type: text/plain; charset=utf-8 Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end From: "@lbutlr" In-Reply-To: Date: Thu, 13 Aug 2020 14:17:05 -0600 Content-Transfer-Encoding: quoted-printable Message-Id: References: To: FreeBSD X-Mailer: Apple Mail (2.3652.0.5.2.1) X-Rspamd-Queue-Id: 4BSHsv3Wzfz3XLV X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Spamd-Result: default: False [-0.05 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.72)[-0.724]; FROM_HAS_DN(0.00)[]; MISSING_MIME_VERSION(2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; R_SPF_ALLOW(-0.20)[+mx]; DMARC_NA(0.00)[kreme.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.001]; TO_DN_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.08)[0.079]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:209, ipnet:65.112.0.0/12, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[65.121.55.42:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:17:08 -0000 >> I kind of understand RDP (but we have had bad luck with VNC on the = same >> hosting provider in the past so we prefer RDP), but SSH!?!?!?=E2=81=89=EF= =B8=8F! RDP I not secure and not securable, so banning it is perfectly = legitimate. Banning ssh exposes them as know-nothings. Find a better host. >> So how do we/the client tell the hosting company they are full of = sh*t By denying them the money they are relying on to run their business. >> (the client has a 3 year contract with a pay in full to break clause = with >> them which would be over $100k to break) They are not provided adequate service. If your client signed a contract = that binds them regardless of the incompetence pf failures of the host, = then your client is also inept. --=20 Worlds of belief, she [Susan] thought. Just like oysters. A little piece of shit gets in and then a pearl grows around it. --Hogfather From owner-freebsd-questions@freebsd.org Thu Aug 13 20:23:54 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DC2113AB971 for ; Thu, 13 Aug 2020 20:23:54 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x133.google.com (mail-il1-x133.google.com [IPv6:2607:f8b0:4864:20::133]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSJ1j6vr1z3Xqc for ; Thu, 13 Aug 2020 20:23:53 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x133.google.com with SMTP id p13so6659685ilh.4 for ; Thu, 13 Aug 2020 13:23:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=m7G02MtDJGqCECG3A3LhAMvIWptCr7bFDWs1qSUzfms=; b=p1jdV4TCFnJzawnoyC9nIw6w4DxTot82fHvsrNYZcqW/TJVNjwG3kh+AE0h04IDt4I zxP5aOaFbtYM6e35RfwxhifGlkkgz7FdsK2tQ9kShQbwr06MsV8dmJJZ5U7ujf7q6Fko 1R1rdTWUbliEEnjYjtF29pEgAdkccrOmVVvUuKOjjdaLpMgkB0Yo+BbYeCmcVili68yP Jx93T4IV4i5AGJSjfyyruDU8VDaO+M+0dHj22xoGmJqd1N83zadzJHpMwvMWIcHWcbcc v09E/TLyQaklr85lesSBJkfabLh8G/u8qaBT5zsOUgMTI772n5BStH+oUbAFv2wug8d3 ASQw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=m7G02MtDJGqCECG3A3LhAMvIWptCr7bFDWs1qSUzfms=; b=nLtj3Gv5TdmHpRRmNT6K5ZMIzblPsVgnvUXGbYj41cISRgGn/IF19X5zm6d73lcHYc HWbLnhHwmNrozCCQWjwNiQTw6EiTo1WcBNt1pfZptBxho1jpIqcdA9Llwd4pTcNzt+NL kB6+WhLx8+aTWWPWS5s9IFtJj1YIFhnBJtkXEr9r3N4CWF/nIJbwkFbtAtsUZM8FS4Bt KgV0qwTl+qYUVOpSxbRTkiTLvZRiDz3jcjpy8gXzkQzn6BKlPagDw0Y8r3hUww2jRh1y f3xxhfcms8/s6UV5jCvyxY7445YO+E8SFagJCWII5J9oWdNXdnzQYBCXthgM+iFhW430 Bs1g== X-Gm-Message-State: AOAM532n/OdIk4o8cCYOFcwIfH1BMsYI7DAxCudmNk5m4kWap/skJ+Sf OAHvS5+FHhsRvtv9p/W+5MNQx397BwOMwG0ZnZQ= X-Google-Smtp-Source: ABdhPJyjHguO0MxzxLNXCZBPNX7Ad+D85woofx/IHi1TWKX69i2S0jKp+RIm0K3G4ObLYmOvZTtv5bQ3fQg82RP86F0= X-Received: by 2002:a92:cbd0:: with SMTP id s16mr6150092ilq.187.1597350232800; Thu, 13 Aug 2020 13:23:52 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Aryeh Friedman Date: Thu, 13 Aug 2020 16:23:41 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Michael Sierchio Cc: "Jack L." , FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSJ1j6vr1z3Xqc X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=p1jdV4TC; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::133 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.42 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.02)[-1.021]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-0.99)[-0.995]; RCVD_COUNT_TWO(0.00)[2]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::133:from]; NEURAL_HAM_SHORT(-0.41)[-0.407]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:23:54 -0000 On Thu, Aug 13, 2020 at 3:13 PM Michael Sierchio wrote: > > Unless they are completely clueless, that's easily detected. Although > there is evidence suggestive of them being clueless... > Yes they are complete clueless as evidenced in the same thread:' us: We need reverse DNS on the private IP range that the VM's are on and a request to get a stable VPN connection (not one that dies randomly every 30 to 60 mins) them: You should be using the IP address when connecting to the servers which would not utilize rDNS, I am not sure what you are referring to when mentioning reverse DNS on the LAN for rapid communication? Can you please clarify the specific record being requested .... As for the VPN - I will relay this to our network team to review the timeout settings on the VPN - however going forward RDP and SSH will be closed off and utilizing the NCentral login provided to connect from within NCentral using the usernames and passwords provided will be the best and most secure method of accessing either server. us: Almost everything that is accessible by IP (SSH, SCP, Mail, HTTP, etc.) for security and record keeping reasons will when you connect to the remote side of the connection attempt to turn the IP you are coming from into a DNS name and in *MANY* cases (such as all 4 listed above, and many others) will attempt to resolve the IP you are coming from before allowing you to connect. If they can't then they in most cases will hang until the resolution times out (in more extreme cases will just refuse the connection after the timeout hang). This causes 10 to 30 second hangs during each connection being made. Since part of our system requires many such connections (HTTP from windows to FreeBSD) on the order of 2 or 3 a minute this causes a severe performance hit on that subsystem and makes it barely usable (note to Steve this is *ONE*, out of quite a few other ones, of the sources of performance issues your staff/clients are complaining about).. As to what we need: 1. We need all IP's within the VPN/private network to have a reasonable reverse DNS entry and be accessible from the nameserver(s) that Windows, FreeBSD and CentOS us. 2. Because the IP assigned when connecting to the VPN is dynamic it is not possible to have a one entry fixes all type solution and thus the entire range must have entries them: TCP/IP is not designed for your use case (super WTF?!?!?) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 20:39:13 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 23D633AC37F for ; Thu, 13 Aug 2020 20:39:13 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x132.google.com (mail-il1-x132.google.com [IPv6:2607:f8b0:4864:20::132]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSJML4Hlsz3YPQ for ; Thu, 13 Aug 2020 20:39:10 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x132.google.com with SMTP id p13so6694256ilh.4 for ; Thu, 13 Aug 2020 13:39:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=byYIQ9J08ngqjn6yuI3eCHEEnSvfxlM2BtAYKb+frAc=; b=BrVIHFRYiNdOruZtMb6dmQ2Rm5PwiJfRttcAeEhTGbzc6O6vKpsh8TaQjIo93WDq9x 3GB7OulLAs3cN/X8U2HmRbGfPimL9rHRA9CaajdjBmbpTZlhOf65iliwQWtPUwZRI5PZ 71JdHtJZdCsneltXYbIkkK93osoI1pDAqC2RFG/OUnc2TulbcYfXZqDNfBAqQxIHDucu 5O0I47Z/82khVDBs8s4x6RYAFZRrPPNlowu+ft34m/ADc4jJyuxzdGv/I+lUJXqKXN9+ XCgFmtsdkETRoKeHrPoGgVrBb8EROia6/oDSuDiiK6zmITQyrn/Z+9hmnBT+zezL8Km8 rt5Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=byYIQ9J08ngqjn6yuI3eCHEEnSvfxlM2BtAYKb+frAc=; b=M9pOrvK5W6UwIsIyXTIphieR7hZKlpzrblBF4FyttXY8OounnU6DkvfiDNxk1f87Fp p8UoK50vEUuJivG1iEI9yOkNdAbbJ7C2rpjfMU/B2xpl+nu7lC6lZBB3NbK83T1AD+ug cuUsMRROaMGO3RsW1S6NGkK1gE3ycbpGjy6yAh8TqCNNnKH+wL/0ADuNgbZ8ZKPEfrRE c8LZ1oENd8P0AVR0KiIY1n4DWDJEGWoVgneYTP+38XGOyWw2erb6Z0IXK3bA4FgiOzMr ecA5Z2uW8mowv4bvSuaSy8uvJ+hlAh/lXTTwBImfDJ72XJGwoHYy0Gi69pyEolfngSGR XSXA== X-Gm-Message-State: AOAM530mlcrVXksaxFyCRoNwxBe893rZYWcLW3Va7P/DF2/Lh8shpowL ayJgGvE1ihbcUq1ywV2MVQUa8D2OdHvd/zjAb1Aeg/IG X-Google-Smtp-Source: ABdhPJx9EJEWhJc8jna8DWTy5e/5s1tAV9s7gGjniMVAcBUI8WAkPjhp3cD1LnsAasFWBrh2sq/3ohOPwZqx001VRNY= X-Received: by 2002:a92:cbd0:: with SMTP id s16mr6192438ilq.187.1597351148880; Thu, 13 Aug 2020 13:39:08 -0700 (PDT) MIME-Version: 1.0 References: <20200813212527.1806a142.freebsd@edvax.de> In-Reply-To: <20200813212527.1806a142.freebsd@edvax.de> From: Aryeh Friedman Date: Thu, 13 Aug 2020 16:38:57 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Polytropon Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSJML4Hlsz3YPQ X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=BrVIHFRY; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::132 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.44 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.01)[-1.006]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::132:from]; NEURAL_HAM_SHORT(-0.42)[-0.424]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:39:13 -0000 On Thu, Aug 13, 2020 at 3:25 PM Polytropon wrote: > On Thu, 13 Aug 2020 14:56:43 -0400, Aryeh Friedman wrote: > > "[Insert client name here], we do not allow RDP or SSH into our > datacenter. > > They are the primary vehicles for ransomware and cryptolocker breaches. > We > > utilize a secure access portal with multi-factor authentication to ensure > > you don't get breached." > > Their "secure access portal" is probably something web-based. > What is that? Something consisting of HTML, CSS, and JS, plus > probably some kind of "security by obscurity" backend that has > never seen any kind of security audit. > SolarWind > Their advice sounds good, but seems to be the opposite of what > happens in the real world. > More detached from reality than Trump. > > > > > I kind of understand RDP (but we have had bad luck with VNC on the same > > hosting provider in the past so we prefer RDP), but SSH!?!?!?!?! Their > > idea of a "two factor" authentication is each connection will only be > > allowed via a web portal and must use a one-time password sent the users > > smartphone. > > For more than 10 years now, we know (!) that this method is > not secure. How does it arrive on the smartphone? By SMS? By > e-mail (2nd address)? Or do they have a dedicated app? Oh > yes, I know, smartphones are sooooo secure... > Custom app but they also let you use any TOTP client but will only give you the client key as a bar code and thus not easy to use with security/totp-cli > > > > Not only does this make automated deploy impossible it is a > > complete show stopper since our service is IoT and uses its own custom > > protocol. > > They probably won't be able to even _understand_ what you're > saying. > This is the same one I have told you about privately (the one that claimed that block level backups where all that was needed to backup a live MySQL instance and refused to read anything we sent saying otherwise). > > > > So how do we/the client tell the hosting company they are full of sh*t > (the > > client has a 3 year contract with a pay in full to break clause with them > > which would be over $100k to break) > > That is a good question. Those contracts are often designed > with "if we do something wrong, it's your fault" in mind... > See our private conversation (TL; dr -- for everyone else that is the summery of the entire contract) > My suggestion would be: Try to find a "technical person" > who you can talk to, layout your arguments, and explain > what is going to happen. Yes, this sounds like elementary > school, but sometimes it helps. However, the "technical > person" should have power (!) in that hosting company to > make things happen. > We were working directly with a technical person until the new contract was signed then within 72 hrs the person we were working with said that neither they nor anyone else on the sys/netadmin staff where authorized to talk to end users/customers directly any more and we had to go through the sales dept. (?!!?!?!??) to file a ticket and if needed it would be forwarded to tech support and if they didn't work to the techies but the techies could only tell tech support what to say not to talk to us directly. > > > > On Thu, 13 Aug 2020 14:58:54 -0400, Aryeh Friedman wrote: > > Forgot to ask how common is such idiocy? And is it becoming more common? > > Sadly I have experienced this already a few times, where > secure methods were considered "insecure" and replaced > with "secure" and "convenient" methods that would be more > expensive, more prone to security breaches, inconvenient, > or just unusable (read: it doesn't work at all). > I think the bottom line is they want someone to sue if there is a security breach... this is a hosting company run by bankers and other financial services types. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Thu Aug 13 20:39:51 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B9F083AC71C for ; Thu, 13 Aug 2020 20:39:51 +0000 (UTC) (envelope-from jon@radel.com) Received: from radel.com (fly.radel.com [70.184.242.170]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.radel.com", Issuer "GoGetSSL RSA DV CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSJN626Dbz3YmJ for ; Thu, 13 Aug 2020 20:39:50 +0000 (UTC) (envelope-from jon@radel.com) X-CGP-ClamAV-Result: CLEAN X-VirusScanner: Niversoft's CGPClamav Helper v1.19.2 (ClamAV engine v0.99.2) X-ExtFilter: Niversoft's DomainKeys Helper DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; d=radel.com; s=20170108.radel; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type; b=XXR1JDxuLfqPVyCFsX2XFXyI5oyO+gcX/z9cVChxQBQpzftxkuoD4wCQMf0PU/JzWn IidUGj8xceVW1/kXF9tKhz1KAuhOLFiA6JuEmK31gtQOUkJfGYc4u268N/uMjcNfXYLQ Onipno1olDQ23NeDdujXzDNE0Yuz40Zib0OcbTnPU+6ENOJ7EMHcOTcvDQFLxcA/fFWR uZlVKklSwjaYyIREqlgqtBfXNw+culiO4RhZaSIu64rzi3JhGLBAFvl6/o/VRBBoZKLT 6QwFxDWVi6lFkrZJDNdwrSYEha+ceKnwaZkWINqucklGmL9FWpU3PTQc7msFZkU8b3vT bb5g== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=radel.com; s=20170108.radel; t=1597351183; x=1597955983; q=dns/txt; h=Subject:To:References:From:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=ZuMcOotoCek z4QoVD9pOkvLh2YAK0wg+sXaHcKiBAAI=; b=nGC5n74/ai9zCxP8jqN9yCGEbv9 Nd/hedCV5SEImeedpqimCnpzat3mQVIwPcPQ9U4lHzFkh6q20RVwv8V3X3dsodRr 9wWcmpaj0mcyI+jb9409ibc3ehphTKu4s8zzUaML9K6oKtx09g+GT+9NSaQZVmY1 Wdb4Yy/xLgqZHF0t2uKWkxAy0ELADjDLK0VZpmXbuWY9VAqNFHRE/1EiRxzCnewb lGzuAKL7eoTGaucVG4cXqNId4PBx4FbnOkBUuMkBO7defVQV5YY0pS7bJzSBKoCr RVAIjaAGwIlXeD6Gqr6MwVWBP6nzSrDaN6GtcZul9XvmbbI4prqj+hrEOMw== Received: from [2001:470:880a:4389:6cd6:9ebd:85c:5e4c] (account jon@radel.com HELO haralson.local) by radel.com (CommuniGate Pro SMTP 6.1.14 _community_) with ESMTPSA id 2207510 for freebsd-questions@freebsd.org; Thu, 13 Aug 2020 20:39:43 +0000 Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: freebsd-questions@freebsd.org References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> From: Jon Radel Message-ID: <451a71db-d3aa-ed2b-3d3e-362081a9acea@radel.com> Date: Thu, 13 Aug 2020 16:39:43 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms060800050806000308020905" X-Rspamd-Queue-Id: 4BSJN626Dbz3YmJ X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=radel.com header.s=20170108.radel header.b=nGC5n74/; dmarc=pass (policy=none) header.from=radel.com; spf=pass (mx1.freebsd.org: domain of jon@radel.com designates 70.184.242.170 as permitted sender) smtp.mailfrom=jon@radel.com X-Spamd-Result: default: False [-4.29 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[radel.com:s=20170108.radel]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:70.184.242.160/28]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; TO_DN_NONE(0.00)[]; HFILTER_HELO_IP_A(1.00)[radel.com]; HAS_ATTACHMENT(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.024]; NEURAL_HAM_MEDIUM(-1.01)[-1.008]; DKIM_TRACE(0.00)[radel.com:+]; DMARC_POLICY_ALLOW(-0.50)[radel.com,none]; NEURAL_HAM_SHORT(-0.16)[-0.158]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:22773, ipnet:70.184.240.0/21, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:39:51 -0000 This is a cryptographically signed message in MIME format. --------------ms060800050806000308020905 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Content-Language: en-US On 8/13/20 16:12, Aryeh Friedman wrote: > On Thu, Aug 13, 2020 at 3:59 PM Andr=C3=A9 Boon = wrote: > >> >> On Thursday, August 13, 2020, Aryeh Friedman wrote: >>> On Thu, Aug 13, 2020 at 3:04 PM Jack L. wrote:= >>> >>>> Just change the ssh/rdp ports? >>>> >>>> >>> All ports except 80 and 25 are firewalled >>> >> Are you sure port 443 isn't open as well? I would expect so if port 80= is >> available. That would allow port 80 to be used for SSH if you're OK wi= th >> only providing HTTPS. >> > They have a whacko firewall config that will eat 443/decrypt it/forward= it > on as plain http via a proxy on the firewall > > Well, the availability of TLS off-load is arguably a feature, but to require the use of it...=C2=A0 Apparently they acquired a security consul= tant with a rather limited, and limiting, view of how the world works.=C2=A0 O= r even worse, they don't have a security expert involved and are making it up as they go. Much as it pains me to say this, it's probably time to involve the lawyers and figure out whether the contract has been explicitly or implicitly breached and see if you can shed the vendor without too big an expense.=C2=A0=C2=A0 This probably comes down to the extent this proje= ct was discussed as part of the sales process and what representations about suitability the provider might have made. And then move to an IaaS provider that gives you direct control over most of these matters and leave this wacky little PaaS provider to the market they appear to be aiming for--presumably WordPress sites and the like. --=20 --Jon Radel jon@radel.com --------------ms060800050806000308020905 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC C9owggXmMIIDzqADAgECAhBqm+E4O/8ra58B1dm4p1JWMA0GCSqGSIb3DQEBDAUAMIGFMQsw CQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxm b3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDErMCkGA1UEAxMiQ09NT0RPIFJTQSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xMzAxMTAwMDAwMDBaFw0yODAxMDkyMzU5NTla MIGXMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQH EwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE9MDsGA1UEAxM0Q09NT0RP IFJTQSBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6znlesKHZ1QBbHOAOY08YYdiFQ8yV5C0y1oNF9 Olg+nKcxLqf2NHbZhGra0D00SOTq9bus3/mxgUsg/Wh/eXQ0pnp8tZ8XZWAnlyKMpjL+qUBy RjXCA6RQyDMqVaVUkbIr5SU0RDX/kSsKwer3H1pT/HUrBN0X8sKtPTdGX8XAWt/VdMLBrZBl gvnkCos+KQWWCo63OTTqRvaq8aWccm+KOMjTcE6s2mj6RkalweyDI7X+7U5lNo6jzC8RTXtV V4/Vwdax720YpMPJQaDaElmOupyTf1Qib+cpukNJnQmwygjD8m046DQkLnpXNCAGjuJy1F5N ATksUsbfJAr7FLUCAwEAAaOCATwwggE4MB8GA1UdIwQYMBaAFLuvfgI9+qbxPISOre44mOzZ MjLUMB0GA1UdDgQWBBSCr2yM+MX+lmF86B89K3FIXsSLwDAOBgNVHQ8BAf8EBAMCAYYwEgYD VR0TAQH/BAgwBgEB/wIBADARBgNVHSAECjAIMAYGBFUdIAAwTAYDVR0fBEUwQzBBoD+gPYY7 aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPUlNBQ2VydGlmaWNhdGlvbkF1dGhvcml0 eS5jcmwwcQYIKwYBBQUHAQEEZTBjMDsGCCsGAQUFBzAChi9odHRwOi8vY3J0LmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FBZGRUcnVzdENBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au Y29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQB4XLKBKDRPPO5fVs6fl1bsj6JrF/bz 9kkIBtTYLzXN30D+03Hj6OxCDBEaIeNmsBhrJmuubvyE7HtoSmR809AgcYboW+rcTNZ/8u/H v+GTrNI/AhqX2/kiQNxmgUPt/eJPs92Qclj0HnVyy9TnSvGkSDU7I5Px+TbO+88G4zipA2ps ZaWeEykgzClZlPz1FjTCkk77ZXp5cQYYexE6zeeN4/0OqqoAloFrjAF4o50YJafX8mnahjp3 I2Y2mkjhk0xQfhNqbzlLWPoT3m7j7U26u7zg6swjOq8hITYc3/np5tM5aVyu6t99p17bTbY7 +1RTWBviN9YJzK8HxzObXYWBf/L+VGOYNsQDTxAk0Hbvb1j6KjUhg7fO294F29QIhhmiNOr8 4JHoy+fNLpfvYc/Q9EtFOI5ISYgOxLk3nD/whbUe9rmEQXLp8MB933Ij474gwwCPUpwv9mj2 PMnXoc7mbrS22XUSeTwxCTP9bcmUdp4jmIoWfhQm7X9w/Zgddg+JZ/YnIHOwsGsaTUgj7fIv xqith7DoJC91WJ8Lce3CVJqb1XWeKIJ84F7YLXZN0oa7TktYgDdmQVxYkZo1c5noaDKH9Oq9 cbm/vOYRUM1cWcef20Wkyk5S/GFyyPJwG0fR1nRas3DqAf4cXxMiEKcff7PNa4M3RGTqH0pW R8p6EjCCBewwggTUoAMCAQICEHQDryTAYaEsgncP8aGW6o4wDQYJKoZIhvcNAQELBQAwgZcx CzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1Nh bGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNB IENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMB4XDTE4MDMwNDAw MDAwMFoXDTIxMDMwMzIzNTk1OVowgfoxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwUyMjE1MDEL MAkGA1UECBMCVkExFDASBgNVBAcTC1NwcmluZ2ZpZWxkMRowGAYDVQQJExE2OTE3IFJpZGdl d2F5IERyLjEVMBMGA1UEChMMSm9uIFQuIFJhZGVsMTIwMAYDVQQLEylJc3N1ZWQgdGhyb3Vn aCBKb24gVC4gUmFkZWwgRS1QS0kgTWFuYWdlcjEfMB0GA1UECxMWQ29ycG9yYXRlIFNlY3Vy ZSBFbWFpbDESMBAGA1UEAxMJSm9uIFJhZGVsMRwwGgYJKoZIhvcNAQkBFg1qb25AcmFkZWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/dFQxMTnVPcP1TI09m30v8 rSG/VWSFWfFvu/2jzPkNL+ivx6A4LNUbqw4CS73GIKcbp8IrpNQz2oQV6mTv+KVJzJMf8GjA y8EzZjhc2tAXL+Q57omCTuAc6cw2KDYFL0aNWX4CEe/LqfoBDKpJF7HCrwwus55+tTEkAY8j tRkQRMHf47YQVJjD/4pdC/h+7jjI0oSgh1npT7Q3K47g6IkVzjhiH8LCsCSVYaLzRZfgcl3s 0GLE858PV/84l5d/hUVD0u9J2EdKpf+hnFqZnA3qw9R0xFQIE6yOkUvhALw1zxXaiGj0047a gBE2Bhv2UIlj6Q0zPa5kRYDy9vBI6QIDAQABo4IBzTCCAckwHwYDVR0jBBgwFoAUgq9sjPjF /pZhfOgfPStxSF7Ei8AwHQYDVR0OBBYEFHS/Ewun4pYC9Lla5kkmj4zo7tKcMA4GA1UdDwEB /wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggrBgEFBQcDAjBG BgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBTArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3Vy ZS5jb21vZG8ubmV0L0NQUzBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FDbGllbnRBdXRoZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3Js MIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29t L0NPTU9ET1JTQUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kU2VjdXJlRW1haWxDQS5jcnQwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAYBgNVHREEETAPgQ1qb25AcmFk ZWwuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQBUNLBptNFZRBkOUPOCI9TPM6QauLK6jojtbxZO XWvZfKvq8ukWUZTPtaDS5UjsMhlxLf/Crv8HkiVXSzC36cVQyjNjl1u+u/Sbl/6q/TfQk+aK 5jzDd4onQVzlfE33ymtZJgh+4dMPWKuXjRS0OyMLzv3mYCvFO83l1G9rBiaCEfFJHKgVGY1z 3ZU/gsPCQ2a0xf3908lwl5H3SPB3ZzLWDf41o5zV70HXfsgP862KzxU9t46XBGZ8TRl/5fl+ Xj2KQdpyWlNZUS00/UHznxeFO5+bkNaOg24BjwfBOWi0D47CE+6BRWvtrmgciWxefUuYeeIy Qr58KK8DlBCkVF06MYIENTCCBDECAQEwgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJH cmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBD QSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBh bmQgU2VjdXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMA0GCWCGSAFlAwQCAQUAoIIC WTAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0yMDA4MTMyMDM5 NDNaMC8GCSqGSIb3DQEJBDEiBCB73s3zG2d9MAXuYAg0XqNf+0L0vjVQ8DKQA+YuTEcihTBs BgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcw DgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEo MIG9BgkrBgEEAYI3EAQxga8wgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVy IE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1p dGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2Vj dXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMIG/BgsqhkiG9w0BCRACCzGBr6CBrDCB lzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMH U2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPTA7BgNVBAMTNENPTU9ETyBS U0EgQ2xpZW50IEF1dGhlbnRpY2F0aW9uIGFuZCBTZWN1cmUgRW1haWwgQ0ECEHQDryTAYaEs gncP8aGW6o4wDQYJKoZIhvcNAQEBBQAEggEAnUZnn327PPw+QeBW69PZEjCPgGYmGDGBxXve nt0Y/rvD9oMfUlbYxk/tDMJLJE15MpdDvSjR3/hQYMHKyrv+3GPMItCzOVXd7dFRLKhGrWCw YXGVXrzlcfyVsJ17u8IFDTPEYEl22Q0PimoTDlNVDIwyyN0DxIel8E1lEDCc99AuF/z9dzxG v+wILp74Sa5xuJ756TxIwhMRyX1IogkoW88ZPUU90MdIHEBafd6c4IkKsi1Rg1rnpnB1MTj8 sg9kUAie1bg/S0XBZdyeppStKCeTL2W2gV2G5KgT8rJRoJ06WIuQWx64k3d0FkKnSN5FsY85 yUjB8i73U2t6fVRf7wAAAAAAAA== --------------ms060800050806000308020905-- From owner-freebsd-questions@freebsd.org Thu Aug 13 20:58:01 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C7C993ACE28 for ; Thu, 13 Aug 2020 20:58:01 +0000 (UTC) (envelope-from 4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSJn52JxHz3ZKp for ; Thu, 13 Aug 2020 20:58:01 +0000 (UTC) (envelope-from 4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597352281; x=1599944281; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=keH4a2k8l5IP2ITnnHGDUb0mYXVEmPpN7OROgZh5XI8=; b=OWJg/yIss2RcohSXbqCOQfyDiUffuFowneXlmLO+wozfE0KtciV8vcCgJLW8tje5PwgvDyT0Y65YJsVd21pVf3FEWxboH+uyv6JyiywLNUIS8tAoXsZMA+inG1y4rCEwgAU+eCRk2ABMTlUMrRevFNJzRUo8MkzfDtatAE9K9s0= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg1ZTUxOTQuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r3.us-east-2.aws.in.socketlabs.com (r3.us-east-2.aws.in.socketlabs.com [142.0.189.3]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 16:57:51 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r3.us-east-2.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Thu, 13 Aug 2020 16:57:50 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6KIG-0005T5-GI; Thu, 13 Aug 2020 21:57:48 +0100 Date: Thu, 13 Aug 2020 21:57:48 +0100 From: Steve O'Hara-Smith To: Aryeh Friedman Cc: FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200813215748.a596806040743f3a49cd6225@sohara.org> In-Reply-To: References: <20200813203039.30400835439935d1e916d0e1@sohara.org> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSJn52JxHz3ZKp X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=OWJg/yIs; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com X-Spamd-Result: default: False [-2.35 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.02)[-1.021]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; NEURAL_HAM_LONG(-1.01)[-1.009]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; NEURAL_HAM_SHORT(-0.62)[-0.620]; FREEMAIL_TO(0.00)[gmail.com]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c200085e5194.ff87beb550f10e2e718c90fc0838cbcb@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 20:58:01 -0000 On Thu, 13 Aug 2020 16:10:14 -0400 Aryeh Friedman wrote: > On Thu, Aug 13, 2020 at 3:30 PM Steve O'Hara-Smith > wrote: > > > Can you ssh *out* from one of the unix boxes ? If so you can > > tunnel the rest through the ssh connection. > > > > The block ALL outgoing ports except 25 even between the VM's on the same > host. OK so run an ssh server on port 25 somewhere else and use that to make the hub of an ssh tunnel bypass. It probably breaks their terms of service though. -- Steve O'Hara-Smith | Directable Mirror Arrays C:\>WIN | A better way to focus the sun The computer obeys and wins. | licences available see You lose and Bill collects. | http://www.sohara.org/ From owner-freebsd-questions@freebsd.org Thu Aug 13 21:57:32 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2A1F63ADC32 for ; Thu, 13 Aug 2020 21:57:32 +0000 (UTC) (envelope-from karlo@klarinet.osamsb.hr) Received: from wout2-smtp.messagingengine.com (wout2-smtp.messagingengine.com [64.147.123.25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSL5k55Nfz3dYJ for ; Thu, 13 Aug 2020 21:57:30 +0000 (UTC) (envelope-from karlo@klarinet.osamsb.hr) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id ABFB09D0; Thu, 13 Aug 2020 17:57:27 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Thu, 13 Aug 2020 17:57:27 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= klarinet.osamsb.hr; h=from:to:cc:subject:in-reply-to:references :mime-version:content-type:date:message-id; s=fm2; bh=5QnC22Ph3C K41vozHyXU59qF1tH/JRzB/B9KSpciM1M=; b=AON4DYW2+s1kRSFti64pb+4DRv Ofm14tVU0kIMG0LhLF/ROBZqt0K8Ky0+srBcXuYOlY79yQNB1mE8sBYp4RNe44XH Ik3v2OdeHTgE/4HVB3YH9KJA7MFSkRPRTqhOYBSAlcILTMhs2GC3BQtL2GciRVw1 IRS0NnA5aKJtAed4G1CHLDfUZvx3dOds6u7+QSAF6YhcPiwgyeI8sm4fhHbgYoBf Nz5WtxP5DGpZ1ro7iGo9vZRW/Wi0uEb8zFXZzAgDF78dRp1vEQevKY2ggrdUVuQw kjJz4s1YXUx768Z0AeTnrNorkQb9CFPmntrjE+YsXFcMIop1V2HhZ4/zzyuQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=5QnC22 Ph3CK41vozHyXU59qF1tH/JRzB/B9KSpciM1M=; b=stLgZW+JQyI00Z8PeT3AdL a/k2sHWpJpGGSphFWnirS2TO1STypyzsc/l+0EJVd9fyqSsXD4QMCbXFVi+pN7nW cYhpHj+SImp0pFuHWS7eZUuhZcoTDH2pa/+517MLQqcAsuYPlNxRXu8LUi2q6AAM kq7tLrf1L4GT7l/A6NiteYRt3+eDM0LWCAw5CxvNk36+2fCYuvvcPRHxxVWzIPm9 xrgeetj6QfWRwNxeb5GuyrC/jeOo+3XH8MiL2AiaE0pob5em205NA+s1k1v8nKVe BsNiQWfmvspJSEazlwW8LF5GyG2FpwoBfOi8UwGgsXCn3Yfw6ItATFSt2AgbVQgQ == X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrleeigddtfecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmdenuc fjughrpefhvffujghfgggtfffksehttdeftddttddvnecuhfhrohhmpehkrghrlhhosehk lhgrrhhinhgvthdrohhsrghmshgsrdhhrhenucggtffrrghtthgvrhhnpefgteelteehtd dttedtffdtieehvefgheejjefgfffgffetkedvtdekieefvedtffenucevlhhushhtvghr ufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehkrghrlhhosehklhgrrhhinh gvthdrohhsrghmshgsrdhhrh X-ME-Proxy: From: karlo@klarinet.osamsb.hr To: Aryeh Friedman cc: FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-reply-to: References: Comments: In-reply-to Aryeh Friedman message dated "Thu, 13 Aug 2020 14:56:43 -0400." MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Date: Thu, 13 Aug 2020 21:57:25 +0000 Message-Id: <20200813215726.91056306005F@mailuser.nyi.internal> X-Rspamd-Queue-Id: 4BSL5k55Nfz3dYJ X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=klarinet.osamsb.hr header.s=fm2 header.b=AON4DYW2; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=stLgZW+J; dmarc=none; spf=pass (mx1.freebsd.org: domain of karlo@klarinet.osamsb.hr designates 64.147.123.25 as permitted sender) smtp.mailfrom=karlo@klarinet.osamsb.hr X-Spamd-Result: default: False [-3.16 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.001]; R_DKIM_ALLOW(-0.20)[klarinet.osamsb.hr:s=fm2,messagingengine.com:s=fm3]; RWL_MAILSPIKE_GOOD(0.00)[64.147.123.25:from]; R_SPF_ALLOW(-0.20)[+ip4:64.147.123.25]; NEURAL_HAM_LONG(-1.01)[-1.008]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[osamsb.hr]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[klarinet.osamsb.hr:+,messagingengine.com:+]; RCPT_COUNT_TWO(0.00)[2]; FROM_NO_DN(0.00)[]; NEURAL_HAM_SHORT(-0.55)[-0.550]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:11403, ipnet:64.147.123.0/24, country:US]; RCVD_IN_DNSWL_LOW(-0.10)[64.147.123.25:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 21:57:32 -0000 Aryeh Friedman writes: > the > client has a 3 year contract with a pay in full to break clause with them > which would be over $100k to break Is that $3,000 per month for just this (dis)service? Even if the dedicated server is very powerful and if you would be granted reasonable privileges, that seems like a good deal for the host. Maybe it is time for me to go into the hosting business. Could you find out how the hosting company gets such lucrative contracts? From owner-freebsd-questions@freebsd.org Thu Aug 13 22:43:18 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1A1863AE838 for ; Thu, 13 Aug 2020 22:43:18 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSM6Y0Nb9z3gwl for ; Thu, 13 Aug 2020 22:43:16 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue009 [212.227.15.167]) with ESMTPA (Nemesis) id 1M9Frj-1k19HT42oJ-006MQ6; Fri, 14 Aug 2020 00:43:13 +0200 Date: Fri, 14 Aug 2020 00:43:12 +0200 From: Polytropon To: Aryeh Friedman Cc: =?ISO-8859-1?Q?Andr=E9?= Boon , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814004312.bb0dd9f1.freebsd@edvax.de> In-Reply-To: References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:bhK5MMm2Rg/vtcgtztG/x1yUuZyb6UaeL+4+9ZPTN5mYbTfi6v9 Zfy/FUqWNi2x1Bz1hwlhHaNZBx6GV/pbRl9vIqjEee4FGIyDjjqeFzz+SpQP6iKsaXYw/5W TSe6lHb9rgSlhC20JP+Ly0u1yy3GkVAkDOjIRpa8yqL5gmkIUxyKpCC+C6ESKV4QdoINPHY VqTa0ybb4mBvApYYfQcdA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:BnaKbgCHLmo=:ue+/K70L22xvsLQ+ucgDFs eyImf1kFJxmVcBJddU3JpRqFiNGnRtNkHznGgr/lBFFSk7IlCYTgGOYr8q6mtSHfaq7EDzx8n X296wJyYgHKmzbxsZU4EfocIqjrrxsA5BlgI/31PMWdnfsFv3Abk4CX4wJKAYzmjRxAap8XD1 Av6gNn+B8C8Ad2i62BjuaPKFXaOLioaQPdOpQu+mrMXgvXS3npUUUucQ5h8HmcvdEXmCP78NA PdN7kQZzrIMzG00NHAn6eKpTky1xd83Nr7/gb7F595KpzYrfNiksGRRrz295a25rxZaANssRP 2AlDxvyR0CS432WbCDTTkdO4yLnPntJ7arJdihukHSvkpFWItxu6djl40ifNTuvul32ol92hm Rkcf9sg46xVEFsplS8UCRd4OsY/fXrB4CojjtS3mLDAjcBoz6UG0WwrCt3o9kZTsHYER0eu5+ 220s7UjAJfNm+MEHIZ5mZUryZj5RIAodknHNJm6VIhNU+6byUsz35dIiBWBX5Ao/tWD1hzCTI 6V8il+Cxwph2Kwf8n17YQHfWj2rOC0O1XgbtDWZx3DD9SjczV6zTYwued1x2PjsvZPiufaW9a DvYm9qE5+8YMOjUjRoLLy9pC4oBGmujQptUjA65tOCoL/MKSQqoBC6S+79lT5SqyJNRAbGx6p 2pN8QcXzpdMwVDjrLkftpJdKb8ElgWnHZvl6SZpQ1spU++XSEYvF5pjbSGLySlchlf9DjrDUv KIThgt9Yik7RF0KjVnFa8tVgE64orakrV+W5Xkc7cjvbmJspZoOS9nf+OoCECA/di7hX9chgl aWz4PD6NVHqipGmSe5vPrf8EDZUFo8zjhjvgm4vaFH9VHXK6Ajx/zfeHpjnlKeB8n+dmy1B X-Rspamd-Queue-Id: 4BSM6Y0Nb9z3gwl X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.134) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.83 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.20)[0.199]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.50)[0.501]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.72)[0.725]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.134:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.134:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 22:43:18 -0000 On Thu, 13 Aug 2020 16:12:18 -0400, Aryeh Friedman wrote: > They have a whacko firewall config that will eat 443/decrypt it/forward it > on as plain http via a proxy on the firewall So what you're saying is: They don't care about security, in fact, they're making things worse, by being the "man in the middle"?! Wow... "Boohoohoo! SSH is so insecure, we must not allow that!" -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Thu Aug 13 23:05:07 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 85B593AF19B for ; Thu, 13 Aug 2020 23:05:07 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.130]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSMbj38thz3yrx for ; Thu, 13 Aug 2020 23:05:04 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue011 [212.227.15.167]) with ESMTPA (Nemesis) id 1M3Upe-1k6uFA1sDC-000cxo; Fri, 14 Aug 2020 01:05:02 +0200 Date: Fri, 14 Aug 2020 01:05:02 +0200 From: Polytropon To: Aryeh Friedman Cc: FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814010502.9f6fa071.freebsd@edvax.de> In-Reply-To: References: <20200813212527.1806a142.freebsd@edvax.de> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:0XXzChYqeY1lvMAcw6ZhqNeUc0tY8REsJr4JKWsqi4jWaj1/FXy V0XIUe+y8LaROa5tAm0/UgjHmGz2Za1aibbsXvS2cFS/X7eEiKhkVESKrw64R2hiFtTph/j 0DJDDTMiiXZMMw3WgNfdpTiLvoFLzmCOPDfNCefrJ0HlJdtVgnjfm7nsiWf6hETuLnYhVpe YbTLXoh7v+vd7VwIRFB3g== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:N0Yjx3lOOlY=:SlVWgSoemzT9Hfyuh5UGVO EMJFqAdpI3bDxjbX23bbNDNliwiXyVM7u84Nq6MeDZsUdKJx10hHM7TDdWf6BqC2FZxT3JAKB fBn8WrIIhejwm4zn9yTtvRawmCATvq+95jJX+4eFDYvA1F0CBYokYryoJTCXMW1m2xE8oSiDJ b0G/4AG0bHRnzszUmy+qo+KZhDHkG+sS0sMUTZxl3NKy8rJwLWK7/q1EkxldsMDHc6VoxgaPD h/MfNqWYDMKgcCq3aMsK95aIlYiODfjtGzecc2paNYM6zoyDKdKD2e+vMl2v5681+9NHKOV0u QEfsARWQqFx9iqf6uHIsCuzmv9uesSNanBKe40SxWB/WhOVK3uK9/rz7C6Hxy8k45H5i2Etpa bDh6hIJCp4xm907uWz1jV3lMJTnviEEO8sdeMHZP68rJBH1kiguYq0eCD8hzsUQEfjIRrT6Yi WsAJ3w0E0LvVaGhu5/3wmrQ3wHFMn2ucWpKeyPyrr7kDBr1AknrqOAsegm1OwRKUFMKZiQeyK 4NzHXUU/MOh2F4bgHWQEbGbrWktMMiH5+SYkkr1TbNJ/saWeC5qogK476BhS9zjgcQHhlMDJz NiDOBqwULPGOVWvafDLecWGIC6y8Kgi6Z8ipWcQGhkZ9Ths6G+zALOxdv8qpVAZRrACsiseK7 KPJsoCN8QApSYdWV619/etui83rnL7T/pM9vV+FCctLP4PwhprhTtiCyT12xsMF9rsgiqtOBc akq7E5i49+5aMt0IjuxOf1BYuI8oc53QHITHSYDBkYxu03vAveescGX3Zm847JvKE6Q9GbdFP pt4xt11ZrSAbAv+xMsAtYKAGVScUQF4FZ3vaBDE9uwP7urAJYHGe6gY92GTvvkRcPr2fDUo X-Rspamd-Queue-Id: 4BSMbj38thz3yrx X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.130) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.98 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.36)[0.356]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.62)[0.618]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.60)[0.603]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.130:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.130:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 23:05:07 -0000 On Thu, 13 Aug 2020 16:38:57 -0400, Aryeh Friedman wrote: > On Thu, Aug 13, 2020 at 3:25 PM Polytropon wrote: > > [...] > > My suggestion would be: Try to find a "technical person" > > who you can talk to, layout your arguments, and explain > > what is going to happen. Yes, this sounds like elementary > > school, but sometimes it helps. However, the "technical > > person" should have power (!) in that hosting company to > > make things happen. > > > > We were working directly with a technical person until the new contract was > signed then within 72 hrs the person we were working with said that neither > they nor anyone else on the sys/netadmin staff where authorized to talk to > end users/customers directly any more and we had to go through the sales > dept. (?!!?!?!??) to file a ticket and if needed it would be forwarded to > tech support and if they didn't work to the techies but the techies could > only tell tech support what to say not to talk to us directly. Yes, that is a big problem. I have seen it several times, especially the part "let's route everything through sales, maybe we can sell them something". Deliberately "unpowering" sysadmins and networking stuff (i. e., people who usually are "technical types" and know what they're talking about, as an opposite of sales who will promise you anything if they think there's a sales opportunity) is something that can be seen as an indicator of general quality decrease. It's more about "what it looks like" than "what it can do" for the services. Sadly, as soon as there's a vendor lock-in, a long running contract or or other "forces", this tendency seems to increase: "They cannot do anything - they're bound by contract, so we can drain them, by hook or by crook." That sounds a lot like Tom Smykowski's function described in "Office Space" (in the two-Bob interview). Some years ago, I had a similar experience with a hosting company: Their technical hotline sent you to a callcenter staffed with sales people. Back and forth a few hours, and by accident (!), someone transfered me to a technical person. We were able to solve the problem quickly. It's always nice if you don't have to explain established termini technici or try to convince a sales drone that a mail server is something completely different than "Outlook" or "Google". That technical person didn't try to sell me "premium gold service 1st class ultimate enterprise professional support", but did his normal work: customer support. He also expressed that he is sorry about the situation, but there's nothing that anyone could do. It is _intended_ to be that way... > I think the bottom line is they want someone to sue if there is a security > breach... this is a hosting company run by bankers and other financial > services types. This gives you all the answers you need. They do not care about customers, they care about money, and contracts (instead of providing a good service) is their way to do so. It looks like they're more an "investment company" with some annoying "IT stuff and computers annex". >From what you're describing, escalating to higher levels won't work, because nobody cares. Contracts signed, money sent. Period. Take it or leave it. We already have your money. :-/ -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Thu Aug 13 23:09:25 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6475A3AEE7E for ; Thu, 13 Aug 2020 23:09:25 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.131]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSMhh07lXz402r for ; Thu, 13 Aug 2020 23:09:23 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPA (Nemesis) id 1MfbwW-1kdEGP3aPI-00fzgd; Fri, 14 Aug 2020 01:09:21 +0200 Date: Fri, 14 Aug 2020 01:09:21 +0200 From: Polytropon To: "Steve O'Hara-Smith" Cc: Aryeh Friedman , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814010921.49f3ba37.freebsd@edvax.de> In-Reply-To: <20200813215748.a596806040743f3a49cd6225@sohara.org> References: <20200813203039.30400835439935d1e916d0e1@sohara.org> <20200813215748.a596806040743f3a49cd6225@sohara.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:YqT0cbsMrctjjMVBkuZazL8LIkF9a4wJCvsM2BQHkCLOxOPcgxW Jg7tpX01BWnFfdhW19Zx3vwFl273FYOXRT6UPvxoLDiWAiiABp8JVTYBgtxfH2yDCw5ZZ74 4QpVc4zx9zKiLpkFB+R5sY3LAgJIgKyiGZKHm35DcC42QujmMK7+452vUQAbVoJUX9P4ADk 1tCj/c1xPH4JsCB9QPbig== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:D0kU7XRtd60=:+T9NpPQykFEJSWQVUn1avq 8qb/dQX4KeOMCXN7ShqhqmBhwCyOIkdfQHDVFckreGYU+SsR+v9Xv7krOc5GK2rtgQmO+tkJB YEnGjR+z7soX70YRRHmIg6B+pLtEnSAXftjDeVzX9VJ48gQ5vgCakYdx77f+WXvvw5ZaU2cUf KN7Ar4CONzDHEdo7Qp1ZQJztPswK5vlGWa8J1EBs28gMI47ppqCEdcRYnEiaKi+SZh0KX25my SPebVT7C/rQyfRH4XRafhOg2fQD/EME70jiVdItIVRi7Xa9FqVZt0SDVPk1lWrqjqx00sjFan 977eHf09ezoC2rHUU4LozljzHfLee1HRuGJNQLBhF8nGFsXtZo4XWjGIoftcI9d8cqUuQ+tKh PHj9myA5t4fFpRT8Q6mm1C5OgMmVlmlevIbm9ve6gbSNmek85VJsgpauv8pqak+MGCiMgT6y/ 7Xk/dsvFbrRvpO4p47xD7HhawDE0qa+S1pLerouyLIXFvNjaea/tNSmqdNViBASkR/4k6Lv6y eEsZ8d779/IpoH6MDVs7B1OctRZEavIjWBxD24AY8HVmELUwgqMe97Lvf2U7aVIVSTPqrjuZ9 zoR7lOJ0iAOXRy5aZjuCnkUkAjNv66RE1dz88GxnQnMKkW8vbw+ad53Ei78Gm997fcQzX3aM0 eDpNRzAJHWzCjToRA4gHRp9L0j79As9Ya719VYgGmEvdBLDSArVPvywO9qMzTSOvHrnc0TXgw 1ufBCesVS8tBnGbHeh3zlJhYmMgnVfn+xU1nEC7/Ey/bUpm5P8StedufmE7pQ7B9IQAZW8cae I967mQ4VNfP0/dMr+Sgvqt3Cg0suJBmjFl/0m0DYqwJOEanNIUJMWn3FAxWve23QggwOzyS X-Rspamd-Queue-Id: 4BSMhh07lXz402r X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.131) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.39 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.37)[0.373]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.09)[0.086]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.53)[0.530]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.131:from]; RCVD_TLS_LAST(0.00)[]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.131:from]; FREEMAIL_CC(0.00)[gmail.com,freebsd.org]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 13 Aug 2020 23:09:25 -0000 On Thu, 13 Aug 2020 21:57:48 +0100, Steve O'Hara-Smith wrote: > On Thu, 13 Aug 2020 16:10:14 -0400 > Aryeh Friedman wrote: > > > On Thu, Aug 13, 2020 at 3:30 PM Steve O'Hara-Smith > > wrote: > > > > > Can you ssh *out* from one of the unix boxes ? If so you can > > > tunnel the rest through the ssh connection. > > > > > > > The block ALL outgoing ports except 25 even between the VM's on the same > > host. > > OK so run an ssh server on port 25 somewhere else and use that to > make the hub of an ssh tunnel bypass. It probably breaks their terms of > service though. That probably is a core problem: "We don't want it to work. If someone gets it to work in any other way that _we_ will consider acceptable, we will sue the $h1t out of them!" And given that any "unauthorized modification" or is a breach of contract, they'll surely find a judge stupid enough to rule in their favor. It is comparable to the concept of "We do not allow our home customers to run any kind of server on our network" as it was common a few decades ago for german ISPs. As "server" is not exactly defined in terms of law, it could be anything. "Something that sends something = a server" - and even a web browser _sends_ a HTTP request... "Got ya, scumbag! Service terminated!" -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 01:25:52 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C92DA3B133A for ; Fri, 14 Aug 2020 01:25:52 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x72d.google.com (mail-qk1-x72d.google.com [IPv6:2607:f8b0:4864:20::72d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSQk74PBqz44sg for ; Fri, 14 Aug 2020 01:25:51 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x72d.google.com with SMTP id g26so7083322qka.3 for ; Thu, 13 Aug 2020 18:25:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=ySRHsLY1qCoKrhTVGhSA7iJysDx3UuPPXTXhopuVt8Q=; b=Ij+1Fx6m9bbEDG/N6QlRzcxLcT2mX7+jIdz65yfs88yXF7cN8rbiaz5WYNcIFDcXWq OWqByEkHUNHJq20HNLup7P0DXs6qp3EC15bcQFjx2MjJBoxLElIRNZiFNOPkli1/mEG/ Lhk1g7kCJrGpBMZ6wNHucTTe1XS/Hvv+jJaotPYZNUgbtzg2rpcFuiEgtC4u6TYBUGyu zLMPvHjme1I/z+72G6/HOUh6Z4jb3QODrg02gOK0JLMq/QcnXGBHUNGfQXCHbSHtinW0 XiumB7iZPjmz4QjQhWAQz+LGWjzHi2dHnnhS8X1thy8aDC/c1/OTTDZ7k/ibWZDJxqO8 Zp6A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=ySRHsLY1qCoKrhTVGhSA7iJysDx3UuPPXTXhopuVt8Q=; b=f24B3OaNKBkdm69Ch7QgOqwuqScrl5nN0PdKZNo7YXyAz/DD/Wl0S9byA8a8xq0eLp cjTqztXVuZXl6kftzcbQojJR7JSx/qo0897einwGr9t8pGTw8wqfYo6rjXaiSgHwJdc1 /t6S6QrOru0MZhWywc4l5G2KEYzKKMT6XmhHcuRyDoM3Ca3bB+YDbRxvf78dB5PbhSBu INsaIP0UvL3KGN6lICdjM2YjPLKXiaw9ge28CPV27mlmWxRQCeSCFYcEdcRw9I6vfcDS 9bUsKQDIYzRY5zb3FqbSf4qln0ceiomAMXQbg2YjeO2BXFzCKFzVcmx5kQJuR3x62U4u FGoQ== X-Gm-Message-State: AOAM533cBAyNFXvTmwKQU66aDl3PYkENRFcoyodQxvclfdwtMoWqLLeA Z/P7I+YWYW0WEjJr9uomwkI= X-Google-Smtp-Source: ABdhPJzA4V1uqT39ZaCV1HKjaZ8pItJn++IWCE4YI7kui53OgL8IZpk4RAg/EtgjKkdGdoteEdeNfg== X-Received: by 2002:a37:9e48:: with SMTP id h69mr24909qke.249.1597368350588; Thu, 13 Aug 2020 18:25:50 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id d26sm8879867qtc.51.2020.08.13.18.25.49 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Thu, 13 Aug 2020 18:25:49 -0700 (PDT) Message-ID: <5F35E81E.8090306@gmail.com> Date: Thu, 13 Aug 2020 21:25:50 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: RW CC: freebsd-questions@freebsd.org Subject: Re: boot time error msg from ntpd References: <5F345430.3000206@gmail.com> <20200812211113.D44D3406061@ip-64-139-1-69.sjc.megapath.net> <20200812231336.371cd980@gumby.homeunix.com> In-Reply-To: <20200812231336.371cd980@gumby.homeunix.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSQk74PBqz44sg X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Ij+1Fx6m; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::72d as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.01 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.05)[-0.050]; FREEMAIL_TO(0.00)[googlemail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.96)[-0.963]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-0.998]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::72d:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 01:25:52 -0000 RW via freebsd-questions wrote: > On Wed, 12 Aug 2020 14:11:13 -0700 > Hal Murray wrote: > >> The initial error message is telling you that DNS didn't work. I >> don't know why. Perhaps ntpd got started before your network >> connection was working? > > Try adding the following to /etc/rc.conf > > netwait_enable=YES > netwait_ip="8.8.8.8 208.67.220.220 1.1.1.1" > Here I do nothing and today I reboot the system and the error msg is gone. This is for sure a problem with the ntp internal network. From owner-freebsd-questions@freebsd.org Fri Aug 14 05:57:11 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3782E3B55FB for ; Fri, 14 Aug 2020 05:57:11 +0000 (UTC) (envelope-from 4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSXlB2p4Nz4HYR for ; Fri, 14 Aug 2020 05:57:10 +0000 (UTC) (envelope-from 4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597384630; x=1599976630; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=2w9o8L+AOgCp+ms8r+MboaVUu0EJ3pZPv5RV1oCi5tk=; b=iOWKEpd0BRZc8BuMd+V7N34U7Szri2qLnzJ2pAmw3c9DcG2zYdu0WixEJx6xKi5KXIpMD96rnXX7bGRoY0G8suaVSmuUCaFRh+g1w6YMoWoojFmcC01kqXTwDGJJzY9k+GCVgbzgweX6dK3Fm86BCKjrKYWO6FxS7oo9GGffYQA= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg2ODFkYzEuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r1.us-west-2.aws.in.socketlabs.com (r1.us-west-2.aws.in.socketlabs.com [142.0.190.1]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 01:57:06 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.us-west-2.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 01:57:03 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6Si5-0007vT-ES; Fri, 14 Aug 2020 06:57:01 +0100 Date: Fri, 14 Aug 2020 06:57:01 +0100 From: Steve O'Hara-Smith To: Polytropon Cc: Aryeh Friedman , =?UTF-8?B?QW5kcsOp?= Boon , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814065701.2b390145ac6d189161bc31b4@sohara.org> In-Reply-To: <20200814004312.bb0dd9f1.freebsd@edvax.de> References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSXlB2p4Nz4HYR X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=iOWKEpd0; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com X-Spamd-Result: default: False [-0.84 / 15.00]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.61)[-0.615]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; MID_RHS_MATCH_FROM(0.00)[]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20008681dc1.93f2efa66d611ddaf065c67bb05db590@email-od.com]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.03)[-1.029]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-0.99)[-0.994]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; FREEMAIL_CC(0.00)[gmail.com,andreboon.nl,freebsd.org]; SUSPICIOUS_RECIPS(1.50)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 05:57:11 -0000 On Fri, 14 Aug 2020 00:43:12 +0200 Polytropon wrote: > On Thu, 13 Aug 2020 16:12:18 -0400, Aryeh Friedman wrote: > > They have a whacko firewall config that will eat 443/decrypt it/forward > > it on as plain http via a proxy on the firewall > > So what you're saying is: They don't care about security, > in fact, they're making things worse, by being the "man in > the middle"?! Wow... It is a very common corporate firewall technique, and appropriate in that context. But for a hosting company it seems odd. > "Boohoohoo! SSH is so insecure, we must not allow that!" Again many corporate firewalls don't allow ssh out (or in directly) because tunnelling bypasses the firewalls. And again it seems odd for a hosting company. -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Fri Aug 14 06:29:59 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AD17C3B6324 for ; Fri, 14 Aug 2020 06:29:59 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.17.24]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSYT21RNpz4Jty for ; Fri, 14 Aug 2020 06:29:57 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue109 [212.227.15.183]) with ESMTPA (Nemesis) id 1MBDvU-1jyAge0o1e-00CkMm; Fri, 14 Aug 2020 08:29:54 +0200 Date: Fri, 14 Aug 2020 08:29:53 +0200 From: Polytropon To: "Steve O'Hara-Smith" Cc: Aryeh Friedman , =?ISO-8859-1?Q?Andr=E9?= Boon , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814082953.7647b2f6.freebsd@edvax.de> In-Reply-To: <20200814065701.2b390145ac6d189161bc31b4@sohara.org> References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:VU9JwaeOFeMdMk43oDmL+ENAjM9VxgWgzfPvoOxh1kjPBY4e6VH TlEdXVpjeh9pu6Rof8YkWhDHnCJHK2N3h+HX7m5IFbQvpY5nIcTwIMBYHAHjm7fxD3NZ5aD syRaOALYCv0ZQU1G16HN+MyUtgXw6jM6QecIdPs1tQTn6xCRuDtazyBTtAPjDbBi9u3cIAQ oyhX8bGciaQ2psmKq3ekg== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:2Uga+t6spI4=:dHjySkU6fQb1lb6flGMAMB 9XgVkzJjduNckdmeozAA6fFNT/MOYI6Y6VoV06ByoDhA9wbz89yNKJr0gV8cg+sUounel5CoM 6kp4Yw1NgPcYqcf9Tbf+0/gi9GWCb4lgMerC96FlDF5ls/kBYXJHARShkkjWTEbKHwU38HYVd shOI/6WJj5N6cb4igebLtO4Q9M7f6qUWrOw94fr5TE+XvM0TJg+hg6Ga4hEcAZTsK3PpgEtpP SBcTJ8Ij8GSs1Duda+YwI5m/mnJvXdKekXt51c3Fsep1yZ+zvSSk8dVLvDE8KwOAl4OV+OfNT pBQ/EBwynd+e2CIFL0Yux5W2Ut9mGNmEEZflZPh1iGlO7CVoxTCreP4ZKYmcd6jmntReJNdDH UGzuLJRdlQJMeQUz9SW/6FGkBtqaWVWyJliwA72ldRr1qyaOVU2Vb8sjUnXIe4GEMSzDY1ROz Bo++LfByeZLOdd6ZjsK574Q/J522dj+21zkDVzqMG8XJBDehBErEUwc5UVQBYK3lZ2zXeqNE1 IStHKrfbQw/mdtbKe1Q90Wq2erp2NNi7RQcGoMqqekoFhi5JUCmj6g/z19sbx1SO6Jm91guxG bZHtAd3x3RZIT72ct6M5g//C/gXTDx60UKtMkAIfty+j5Ox4v601SP2c+OqdyoEHZHJwb6pnT l9MMQsJn/i8KzfiWyl8cLIZ7Yu+yi8INwcmGUheiWYB+02rrBG8agLMblA3HwWGA9uhQQ5kVy sLWHUA1FU8to/LNqPG84qqWI7sq4eQB+qT8zspXky4+WeoU7xzss9fNbfGDPJ6besv1Or7n+t eUvOEfNor/2c28D0XGjXk31CBSuLDz+NFyOV54SL9xUQ+jQFLpTQ3vS2c8cLPw8kidL8FQ3 X-Rspamd-Queue-Id: 4BSYT21RNpz4Jty X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.17.24) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [4.74 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.04)[-0.036]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.15)[0.155]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.72)[0.723]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.17.24:from]; RCVD_TLS_LAST(0.00)[]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.17.24:from]; FREEMAIL_CC(0.00)[gmail.com,andreboon.nl,freebsd.org]; RCVD_COUNT_TWO(0.00)[2]; SUSPICIOUS_RECIPS(1.50)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 06:29:59 -0000 On Fri, 14 Aug 2020 06:57:01 +0100, Steve O'Hara-Smith wrote: > On Fri, 14 Aug 2020 00:43:12 +0200 > Polytropon wrote: > > > On Thu, 13 Aug 2020 16:12:18 -0400, Aryeh Friedman wrote: > > > They have a whacko firewall config that will eat 443/decrypt it/forward > > > it on as plain http via a proxy on the firewall > > > > So what you're saying is: They don't care about security, > > in fact, they're making things worse, by being the "man in > > the middle"?! Wow... > > It is a very common corporate firewall technique, and appropriate > in that context. But for a hosting company it seems odd. > > > "Boohoohoo! SSH is so insecure, we must not allow that!" > > Again many corporate firewalls don't allow ssh out (or in directly) > because tunnelling bypasses the firewalls. And again it seems odd for a > hosting company. Exactly my impression. For a regular "boring paper office", such limitations are not a surprise, and seem to work fine, eliminating a few of the most common attack vectors. Smear a few gallons of snake oil on the whole IT infrastructure and perform security theatre twice a month, and everyone will be happy. And look at the shiny new ISO-9660 certificate we have bought! Again, as a _hosting_ service, the decisions mentioned above, especially with no usable workaround ("Due to security considerations, we do offer a different way of doing this.") is really strange. VPN can help to a certain degree, but crippling the networking between VMs (and of the VMs to the outside where the devices are located which needs to be communicated with) looks quite contrary to what one would assume a hosting company would be doing... but hey, what do I know, I'm just a stupid old man... ;-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 06:52:43 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id EBF383B6DE5 for ; Fri, 14 Aug 2020 06:52:43 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x132.google.com (mail-il1-x132.google.com [IPv6:2607:f8b0:4864:20::132]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSYzH1YGCz4LTw for ; Fri, 14 Aug 2020 06:52:42 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x132.google.com with SMTP id p13so7627674ilh.4 for ; Thu, 13 Aug 2020 23:52:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=hOo6jPISAxxCpQNPpxTC/aFpCnCTi4IwZKGCK3V5+DM=; b=BTNrqKrPKCoaN113iUv09ypaOPNQKGRxTprdzh5JNa75KX1eyTtihK/9oMSOK//iuA lYmdGYyXwgkH/kIg9onNYUz/PBo0wQNCaDtMraD8nAGUMWR3HWjgN6u0GitQv2zPTZwv N0rujUEjJ11WCbhOD2uhv1NwbLL+K6ISWwMeNL/Lt4LXZehD6RkBLbPciUfl98BZkigb mr8q/zkswFNHGGHKLJyG3JczLVWL8tLWeZhLd2n/mpz4/mrHLdYwUkPlxLrA2aWOmwOZ UWGJtPNllAdJrzrI/2XMduPyrAqS1+pvh1h26aZj58IvvdvZIFzFhoafqDYkHoz1WYi9 hW0w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=hOo6jPISAxxCpQNPpxTC/aFpCnCTi4IwZKGCK3V5+DM=; b=rcwqPPeJ/fRXMSSyF+KwGpDZSqw07pOnwz6vmYNP507bO2pbiDhWpKB0suoftrsJ99 jgqAV9EwArUKJlfjkZ2xA1I3j6oiK+5L1I/qcha/krn+j18u0WPEnMCGvC32xkll+Qho 4zM83esJd9a+MNJTguQRHiVVeCsW9tkxWpUAJ9nhdw8JWXvDkBSVbbnLASorwgdnELN/ /XkS4cbjYOSpRakA/ckiEXAoWPKYGbeOAQXBLEATc8niJGbBehEKnsOn5iMl1fbKOjsP Vh9vyTP+UwHz1XDxwBmfYl6qpWd/MqpUGsS70oeVliE6GgVl7mRPt0EjZyi+wte5BIac ttiw== X-Gm-Message-State: AOAM533nmWZvNNSCahobir6fFm6mZHQqS9w5niZbVbj1ayzlPRftCwIx fs6m0a0JAmHVFhqb5E5VqX06QXOrpp3SWZTvbEDn7w/hmQ6PNQ== X-Google-Smtp-Source: ABdhPJyH0GMOEAZS9hhS7OfxMivgwIFQPSZghDGWJpj5q2tkE/7hOO/LO1doFRU6hDiLa80iHz+nvhIE7axuNbUePN8= X-Received: by 2002:a92:cbd0:: with SMTP id s16mr1340609ilq.187.1597387961676; Thu, 13 Aug 2020 23:52:41 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <20200814082953.7647b2f6.freebsd@edvax.de> In-Reply-To: <20200814082953.7647b2f6.freebsd@edvax.de> From: Aryeh Friedman Date: Fri, 14 Aug 2020 02:52:29 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Polytropon Cc: "Steve O'Hara-Smith" , =?UTF-8?Q?Andr=C3=A9_Boon?= , FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSYzH1YGCz4LTw X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=BTNrqKrP; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::132 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-2.97 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.01)[-1.009]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.009]; NEURAL_SPAM_SHORT(0.05)[0.046]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::132:from]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 06:52:44 -0000 On Fri, Aug 14, 2020 at 2:29 AM Polytropon wrote: > On Fri, 14 Aug 2020 06:57:01 +0100, Steve O'Hara-Smith wrote: > > On Fri, 14 Aug 2020 00:43:12 +0200 > > Polytropon wrote: > > > > > On Thu, 13 Aug 2020 16:12:18 -0400, Aryeh Friedman wrote: > > > > They have a whacko firewall config that will eat 443/decrypt > it/forward > > > > it on as plain http via a proxy on the firewall > > > > > > So what you're saying is: They don't care about security, > > > in fact, they're making things worse, by being the "man in > > > the middle"?! Wow... > > > > It is a very common corporate firewall technique, and appropriate > > in that context. But for a hosting company it seems odd. > > > > > "Boohoohoo! SSH is so insecure, we must not allow that!" > > > > Again many corporate firewalls don't allow ssh out (or in directly) > > because tunnelling bypasses the firewalls. And again it seems odd for a > > hosting company. > > Exactly my impression. For a regular "boring paper office", > such limitations are not a surprise, and seem to work fine, > eliminating a few of the most common attack vectors. Smear > a few gallons of snake oil on the whole IT infrastructure > and perform security theatre twice a month, and everyone > will be happy. And look at the shiny new ISO-9660 certificate > we have bought! > > Again, as a _hosting_ service, the decisions mentioned above, > especially with no usable workaround ("Due to security > considerations, we do offer a different way of doing this.") > is really strange. VPN can help to a certain degree, but > crippling the networking between VMs (and of the VMs to > the outside where the devices are located which needs to > be communicated with) looks quite contrary to what one would > assume a hosting company would be doing... but hey, what do > I know, I'm just a stupid old man... ;-) > 1. I should mention that firewall/VPN situation we mentioned is what they are attempting to force us to move towards but currently since we were customer before the Great Firewall of NewTek Hosting Services (I might as well name them by name so people know who to avoid for completeness the full name is "NewTek Hosting Services, a division of NewTek Business Solutions") we were grandfathered in with our current config. But we fear due to political factors (the new head of technical operations not only put this monstrosity in place but was described -- by our old tech when being informed that they where no longer authorized to talk to us -- as being "an asshole") they might "forget" we are grandfathered in. The new config they want us to use is even worse in that they will not even allow VPN access under it. Since we have medical IoT devices (using a custom port/protocol) forcing into their "correct (in)security" way of doing things will not only be a show stopper but life threatening to the patients of our clients own clients (mostly cardiologists but a few other doctors) who use the system to do long term cardiac diagnosis for deciding things like do you need a pacemaker/open heart surgery/etc. 2. There internal/infrastructure, which was decent in it's config using true server grade OS's [here I admit Linsucks is better than Window$, but it still much worse for a desktop] just got completely gutted and replaced (without any customers being told) by a complete monsterity as demostrated by the following comment when they finally added our reverse DNS (see other message in thread): "I have made the necessary adjustments to the rDNS/PTR records on your domain controller" (who the f*ck uses Windows to run a hosting service except for MicroSlut with Azure!... it should be noted that when they set the VPN it was via our Windows Server not a *nix based/dedicated firewall) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 07:15:19 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 43D063B7432 for ; Fri, 14 Aug 2020 07:15:19 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSZTK5mPXz4MLR for ; Fri, 14 Aug 2020 07:15:17 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 1830D10276A for ; Fri, 14 Aug 2020 09:15:11 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RSQd2XH3AuKK for ; Fri, 14 Aug 2020 09:15:10 +0200 (CEST) Received: from christophs-macbook-pro.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id ACD22102769 for ; Fri, 14 Aug 2020 09:15:10 +0200 (CEST) From: Christoph Kukulies Content-Type: multipart/signed; boundary="Apple-Mail=_225EA4E1-631C-409C-B419-5D45BFDA64E6"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: smartd reports Currently unreadable sectors Message-Id: <818E85E7-D327-4444-8BA8-E7C06CC1C5E6@kukulies.org> Date: Fri, 14 Aug 2020 09:15:10 +0200 To: Ruben via freebsd-questions X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSZTK5mPXz4MLR X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [1.17 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ATTACHMENT(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received]; ARC_NA(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.21)[0.207]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.39)[0.393]; RCPT_COUNT_ONE(0.00)[1]; DMARC_NA(0.00)[kukulies.org]; NEURAL_SPAM_LONG(0.67)[0.668]; R_SPF_NA(0.00)[no SPF record] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 07:15:19 -0000 --Apple-Mail=_225EA4E1-631C-409C-B419-5D45BFDA64E6 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii smartd reports: Aug 14 08:06:02 pc235 smartd[797]: Device: /dev/ada1, 2 Offline = uncorrectable sectors Aug 14 08:36:01 pc235 smartd[797]: Device: /dev/ada1, 2 Currently = unreadable (pending) sectors ada1: ATA8-ACS SATA 2.x device ada1: Serial Number WD-WMAV50596027 ada1: 300.000MB/s transfers (SATA 2.x, UDMA6, PIO 8192bytes) ada1: Command Queueing enabled ada1: 953869MB (1953525168 512 byte sectors) Time to replace the drive or what measures can I take? -- Christoph= --Apple-Mail=_225EA4E1-631C-409C-B419-5D45BFDA64E6 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MDcxNTEwWjAvBgkqhkiG9w0BCQQxIgQgee+n9sANZDud Pu/kxCKcAAh0GNMUWsoqJbtXuCyH7sUwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQBJgXLWu4YO8h0TRglsMHeH2NW1lywGtKDyD5zXQNnaCR/N UYlymYyf+zwbV+Yfnq/Ffl+hJjig4VR/pSVoqKT1/aGJ+GLVhky6oYovnfSSKFhK/42hgNnI6ruO lD1NlcQvDhsdJJlKn2oOybuM3f6AMKaslExPtH0f8of4LpgGaZ0HOpCuT+W29cdX6zSF2ogZvuUB MeZwpJrshy8JL1K/pCirEmhpGTuJ4uKu6eshXGXnUuSbusYnnfp8oid9kC+nH/ia0yrvaytg+vBY Hkr+DXnC1nZS0e6ePDewnT+Y+wYP4nBb8ImTh8ypybrPPCNMJaCU2K7T+He3wzz3LByqAAAAAAAA --Apple-Mail=_225EA4E1-631C-409C-B419-5D45BFDA64E6-- From owner-freebsd-questions@freebsd.org Fri Aug 14 07:42:37 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 049F23B7DBB for ; Fri, 14 Aug 2020 07:42:37 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSb4r18Ygz4P3P for ; Fri, 14 Aug 2020 07:42:35 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 586E610276A for ; Fri, 14 Aug 2020 09:42:35 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lMXPJoLrXwop for ; Fri, 14 Aug 2020 09:42:35 +0200 (CEST) Received: from christophs-macbook-pro.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id E3D34102769 for ; Fri, 14 Aug 2020 09:42:34 +0200 (CEST) From: Christoph Kukulies Content-Type: multipart/signed; boundary="Apple-Mail=_BC3C5237-B5CC-4E58-8F1B-C5EF90ACBF77"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: 5.25" Floppy disk drive not recognized Message-Id: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> Date: Fri, 14 Aug 2020 09:42:34 +0200 To: Ruben via freebsd-questions X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSb4r18Ygz4P3P X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [1.24 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ATTACHMENT(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received]; ARC_NA(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.23)[0.230]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.43)[0.431]; RCPT_COUNT_ONE(0.00)[1]; DMARC_NA(0.00)[kukulies.org]; NEURAL_SPAM_LONG(0.68)[0.680]; R_SPF_NA(0.00)[no SPF record] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 07:42:37 -0000 --Apple-Mail=_BC3C5237-B5CC-4E58-8F1B-C5EF90ACBF77 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 I=E2=80=99m trying to access a 5.25=E2=80=9C floppy disk drive if anyone = here knowing what a =E2=80=9Efloppy=E2=80=9C disk drive is. :) MB is a ASRock939A790GMH I see the drive in the BIOS although I=E2=80=99m not sure if it is = really =E2=80=9Econnected=E2=80=9C. Anyway, the FreeBSD (12.1) boot doesn=E2=80=99t see the hardware at all. =E2=80=94 Christoph --Apple-Mail=_BC3C5237-B5CC-4E58-8F1B-C5EF90ACBF77 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MDc0MjM0WjAvBgkqhkiG9w0BCQQxIgQgRiJS2MJualrF Z4o44mI+I87qfs+6UJVaJUVZYVHl2eEwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQAJvXcfCXlxSBjRIFsAv+wU3YAv/GYXE3wAf9akcnxwWHGM msl9ZQXzJmNu1GbRjw5SkdPw3ApDMybj+xFFmVEifZJGYSDrtFzLXDt2nHrtDABWcg73VU0oTSv5 IwCoifsDVEc4LCt9/yg1XGOMF8XfKPu4GCQBJl3ZCi6zU2KBWZWry9gO8QCxhWqkoc0vJbqjsIvF zMrCmYN3VmMEnFVhUBezc6lBGWuaSbERvSoXzI9KalvQUn4pyNV0Ua6xAFYSQ7Yh2Zw7Jhc4CpiT B5RzeO/z5bUefsButZr+RasgzgJJK2lFawbOlRH7QZnn+Q6roA5Xezg3s2uaeMwHn7x8AAAAAAAA --Apple-Mail=_BC3C5237-B5CC-4E58-8F1B-C5EF90ACBF77-- From owner-freebsd-questions@freebsd.org Fri Aug 14 07:43:14 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 350953B7DC9 for ; Fri, 14 Aug 2020 07:43:14 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSb5X2CWXz4NZj for ; Fri, 14 Aug 2020 07:43:12 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id 4C756112505; Fri, 14 Aug 2020 14:43:06 +0700 (+07) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= content-type:content-type:mime-version:message-id:date:date :in-reply-to:subject:subject:from:from:received:received :received; s=selector1; t=1597390985; x=1599205386; bh=SMsQov1as EMLNIvoc6kP1lKHXGF0AGDda4dQa/cENiY=; b=QbxfgSNLSuoPyA+AIcHgSWpw2 w9tz3J7bWYVnq52lqRO2tBhFCVph2z4dbfQ6owPuPUqv/AtlBCYtC/ZlqywpVzlJ Ww7LfEI4v+kiZxM0tosf7ZON5BoY2WAMlB2PSNu0BEBzYIpIda8P5oJU6QgZmwgU ZzxPVu0U5/3y8oQZQE= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by mail.cs.ait.ac.th (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id v6TBwUga9fJO; Fri, 14 Aug 2020 14:43:05 +0700 (+07) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id CF463112504; Fri, 14 Aug 2020 14:43:05 +0700 (+07) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.15.2/8.15.2/Submit) id 07E7h3dh063443; Fri, 14 Aug 2020 14:43:03 +0700 (ICT) (envelope-from on@banyan.cs.ait.ac.th) From: Olivier To: Aryeh Friedman Cc: freebsd@edvax.de, steve@sohara.org, freebsd@andreboon.nl, freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-Reply-To: (message from Aryeh Friedman on Fri, 14 Aug 2020 02:52:29 -0400) Date: Fri, 14 Aug 2020 14:43:03 +0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain X-Rspamd-Queue-Id: 4BSb5X2CWXz4NZj X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cs.ait.ac.th header.s=selector1 header.b=QbxfgSNL; dmarc=pass (policy=none) header.from=cs.ait.ac.th; spf=pass (mx1.freebsd.org: domain of Olivier.Nicole@cs.ait.ac.th designates 192.41.170.16 as permitted sender) smtp.mailfrom=Olivier.Nicole@cs.ait.ac.th X-Spamd-Result: default: False [-2.58 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.03)[-1.031]; R_DKIM_ALLOW(-0.20)[cs.ait.ac.th:s=selector1]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+mx]; NEURAL_HAM_LONG(-1.01)[-1.013]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; RCPT_COUNT_FIVE(0.00)[5]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_MED(-0.20)[192.41.170.16:from]; DKIM_TRACE(0.00)[cs.ait.ac.th:+]; DMARC_POLICY_ALLOW(-0.50)[cs.ait.ac.th,none]; NEURAL_HAM_SHORT(-0.34)[-0.335]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:4767, ipnet:192.41.170.0/24, country:TH]; SUSPICIOUS_RECIPS(1.50)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 07:43:14 -0000 Hi, I am jumping a bit late in the conversation but if the problem is mainly a communication between your 3 VM, can't they provide a vitual switch. have a second virtual NIC on your VMs connected to that virtual switch and used for all your internal communications. Given their lack of help, the sanest solution is to get out of there as soon as possible. While there is a 3 years contract, they were providing a service and they changed something so that service is not provided anymore. Even if you were using some "unsupported features", it was working and they broke it. So obviously they are failing their side of the contract. (unless you signed despite they informed you beforehand that it was unsupported and could be blocked anytime). You mentionned that your application is something medical, you could document the fact that what they did is breaking the regulations about medical confidentiality and since they cannot provide that, it is a case of "force majeure" that you must leave. A side question, who is chose that hosting company? You or your client? Olivier -- From owner-freebsd-questions@freebsd.org Fri Aug 14 08:00:36 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E13223B84A5 for ; Fri, 14 Aug 2020 08:00:36 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x12d.google.com (mail-il1-x12d.google.com [IPv6:2607:f8b0:4864:20::12d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSbTc1ZKFz4PZv for ; Fri, 14 Aug 2020 08:00:35 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x12d.google.com with SMTP id y18so7700490ilp.10 for ; Fri, 14 Aug 2020 01:00:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=0HwAA2FbHGkjRPDjm1mUO/LRLWDw6/7Tssx/VK8DXt0=; b=RUSxBNw3C1Pf14U8l0LZImPdWgXdVDYL4USEKURq28zR7S7P/A/4Evg6rBko8+DrKp h2kdJD9ZTb2QQY229DDSR8b/QUqtzsxLWXpJ4v44jPvxxShXtWZv1+eFbzOHLOAA2VmE vIz4gpBYM22rAbMqEmZ7XPRSX8PVWFwhPzjugxwuV+veL1zdeAHOfS/ht+Y71JWwYuvq TZ0vycB8Ai9UJydFLl912uRwM2wotITG1RObWr+D818HewLSjyXroHl90X+ikHQYF5ag T6xFTBdlNXS/PcTx3e8CddYqlzR40+5RQ5wM9HKvgfZq/cq7QJM86fO3FzHT7kL3oIvN pANQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0HwAA2FbHGkjRPDjm1mUO/LRLWDw6/7Tssx/VK8DXt0=; b=oVlf0ihoe/UNCMoKnnZvsYdWS/LXKGiN7n6zDpZpOBj+c4kCMEOWq7OyfZiCl7u/5K zTFmkg2xQ6yBBFqVrM1tLCW4bC0TqdsJi9zVfnFpDKA4RgVY2HRYF+jBiGbDNpPzuwAs epGXOfEsfl6qIefhfWcGQRsK9aJ/Os39b+VShfWAaNaMnrt6SuVN0e6F6isrSUllCnVN tg59eOQMSsoD+KdKsu/uENMJlkc3Fw3tIZEjUecelBvt8D/H+o2O5EWiZW74MhsGHgfJ FMshCDPpNLS/N1uBXu1x7lGlwzV1lMT+0ike1p1p4lY38y9Gsp6JZ1cIMF1T7eQlEmAK ojLA== X-Gm-Message-State: AOAM532pDQ7kzf/8IyjhY8g3fv0R6wd1LFw0L0HHOO5x4mVzUI0jATIP 5VamRYgzL6n9V/habA/l9SzPb6y1C279HC9dULs= X-Google-Smtp-Source: ABdhPJwiw/B/g5+oAqLKMSWeVFlx/KKFONPamqzdr8W+nlxH2Q64KUcjzNIu05loPiO/T2/gPl+deddf5B20IGghT3U= X-Received: by 2002:a05:6e02:c12:: with SMTP id d18mr1448857ile.185.1597392034593; Fri, 14 Aug 2020 01:00:34 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Aryeh Friedman Date: Fri, 14 Aug 2020 04:00:22 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Olivier Cc: Polytropon , "Steve O'Hara-Smith" , =?UTF-8?Q?Andr=C3=A9_Boon?= , FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSbTc1ZKFz4PZv X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=RUSxBNw3; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12d as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-2.85 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.02)[-1.015]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.02)[-1.018]; RCPT_COUNT_FIVE(0.00)[5]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::12d:from]; NEURAL_SPAM_SHORT(0.19)[0.186]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:00:36 -0000 On Fri, Aug 14, 2020 at 3:43 AM Olivier wrote: > Hi, > > I am jumping a bit late in the conversation but if the problem is mainly > a communication between your 3 VM, can't they provide a vitual switch. > have a second virtual NIC on your VMs connected to that virtual switch > and used for all your internal communications. > That is only one problem. There are also the devices that are scattered all over the US and connect to machines via the cell network (need a public IP). Our ability to automatically deploy new versions of the software. The ability of the client's staff to connect to a windows desktop (since the front end to the devices only runs on windows and does not have a web interface). > Given their lack of help, the sanest solution is to get out of there as > soon as possible. While there is a 3 years contract, they were providing > a service and they changed something so that service is not provided > anymore. > Tried and their answer is if we insist on breaking the contract then they will terminate it and ask for additional penalties under the breach clause. > Even if you were using some "unsupported features", it was working and > they broke it. So obviously they are failing their side of the contract. > (unless you signed despite they informed you beforehand that it was > unsupported and could be blocked anytime). > Their claim is it was in the contract so no need to tell us. One such unsupported operation is correct backups of MySQL (not just backing up the files in whatever snapshot they were in when done -- even mid transaction ... don't get me started about their idiotic idea of using object storage vs. block or NFS) > You mentionned that your application is something medical, you could > document the fact that what they did is breaking the regulations about > medical confidentiality and since they cannot provide that, it is a case > of "force majeure" that you must leave. > There website claims they are in full compliance with HIPAA (the relevant regulation in the US) and use it as a marketing point. > A side question, who is chose that hosting company? You or your client? > The client based on a) recommendations from our old hosting provider who decided to go out of business due to the owner retiring, b) the maker of the devices we have connectected to the system (actually the manufacturer is another fine example of head up the ass... stuff like not even knowing what "concurrency" was when asked a question about how the devices interact with the vendor provided front-end/DB [which sucks and thus our ground up rewrite of it] and when we pressed the matter where told "don't go down that rabbit hole", this confirms something another poster said that any software company that uses MSSQL get weird quickly -- the version of the devices we have current use MySQL but the next generation only "support" MSSQL since it is "better" than MySQL) and 3) by the fact that they were a publicly traded (NY Stock Exchange) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 08:11:58 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5DF483B8D84 for ; Fri, 14 Aug 2020 08:11:58 +0000 (UTC) (envelope-from dr.klepp@gmx.at) Received: from vie01a-dmta-at50-3.mx.upcmail.net (vie01a-dmta-at50-3.mx.upcmail.net [62.179.121.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSbkj06syz4Q3Z for ; Fri, 14 Aug 2020 08:11:56 +0000 (UTC) (envelope-from dr.klepp@gmx.at) Received: from [172.31.216.41] (helo=vie01a-pemc-psmtp-at50) by vie01a-dmta-at50.mx.upcmail.net with esmtp (Exim 4.92) (envelope-from ) id 1k6Uoc-0003aG-2d for freebsd-questions@freebsd.org; Fri, 14 Aug 2020 10:11:54 +0200 Received: from t61.lan ([85.126.97.210]) by vie01a-pemc-psmtp-at50 with SMTP @ mailcloud.upcmail.net id FLBt2302Y4YLlkt0BLBt7C; Fri, 14 Aug 2020 10:11:54 +0200 X-SourceIP: 85.126.97.210 X-CNFS-Analysis: v=2.2 cv=O6RJhF1W c=1 sm=2 tr=0 cx=a_idp_f a=/Ac8Q0O/YFE5LOLfUiYZVw==:117 a=/Ac8Q0O/YFE5LOLfUiYZVw==:17 a=8nJEP1OIZ-IA:10 a=2-GWVfuhvr-SeAzJAUUA:9 a=6NmafidyjKlFLjKC:21 a=VLgR_WxSOHbGFhE7:21 a=wPNLvfGTeEIA:10 From: "Dr. Nikolaus Klepp" To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Date: Fri, 14 Aug 2020 10:11:53 +0200 User-Agent: KMail/1.9.10 References: In-Reply-To: X-KMail-QuotePrefix: > MIME-Version: 1.0 Content-Type: Text/Plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <202008141011.53591.dr.klepp@gmx.at> X-Rspamd-Queue-Id: 4BSbkj06syz4Q3Z X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=fail (mx1.freebsd.org: domain of dr.klepp@gmx.at does not designate 62.179.121.138 as permitted sender) smtp.mailfrom=dr.klepp@gmx.at X-Spamd-Result: default: False [4.35 / 15.00]; ARC_NA(0.00)[]; R_SPF_FAIL(1.00)[-all]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmx.at]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[gmx.at]; NEURAL_SPAM_MEDIUM(0.87)[0.865]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_THREE(0.00)[3]; NEURAL_HAM_SHORT(-0.19)[-0.187]; NEURAL_SPAM_LONG(0.87)[0.870]; MID_CONTAINS_FROM(1.00)[]; FROM_NAME_HAS_TITLE(1.00)[dr]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:6830, ipnet:62.179.0.0/17, country:AT]; RCVD_TLS_LAST(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmx.at]; RCVD_IN_DNSWL_LOW(-0.10)[62.179.121.138:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:11:58 -0000 There's the therm "computer sabotage". Go to your lawyer, show him the contracts. Construct a cast that proofs your provider is sabotaging your business. Execute the case, sue him - and move somewhere else. Giving the monthly fee you pay that would be a good thing in the first place. Nik Anno domini 2020 Fri, 14 Aug 04:00:22 -0400 Aryeh Friedman scripsit: > On Fri, Aug 14, 2020 at 3:43 AM Olivier wrote: > > > Hi, > > > > I am jumping a bit late in the conversation but if the problem is mainly > > a communication between your 3 VM, can't they provide a vitual switch. > > have a second virtual NIC on your VMs connected to that virtual switch > > and used for all your internal communications. > > > > That is only one problem. There are also the devices that are scattered > all over the US and connect to machines via the cell network (need a public > IP). Our ability to automatically deploy new versions of the software. > The ability of the client's staff to connect to a windows desktop (since > the front end to the devices only runs on windows and does not have a web > interface). > > > > > Given their lack of help, the sanest solution is to get out of there as > > soon as possible. While there is a 3 years contract, they were providing > > a service and they changed something so that service is not provided > > anymore. > > > > Tried and their answer is if we insist on breaking the contract then they > will terminate it and ask for additional penalties under the breach clause. > > > > Even if you were using some "unsupported features", it was working and > > they broke it. So obviously they are failing their side of the contract. > > (unless you signed despite they informed you beforehand that it was > > unsupported and could be blocked anytime). > > > > Their claim is it was in the contract so no need to tell us. One such > unsupported operation is correct backups of MySQL (not just backing up the > files in whatever snapshot they were in when done -- even mid transaction > ... don't get me started about their idiotic idea of using object storage > vs. block or NFS) > > > > You mentionned that your application is something medical, you could > > document the fact that what they did is breaking the regulations about > > medical confidentiality and since they cannot provide that, it is a case > > of "force majeure" that you must leave. > > > > There website claims they are in full compliance with HIPAA (the relevant > regulation in the US) and use it as a marketing point. > > > > A side question, who is chose that hosting company? You or your client? > > > > The client based on a) recommendations from our old hosting provider who > decided to go out of business due to the owner retiring, b) the maker of > the devices we have connectected to the system (actually the manufacturer > is another fine example of head up the ass... stuff like not even knowing > what "concurrency" was when asked a question about how the devices interact > with the vendor provided front-end/DB [which sucks and thus our ground up > rewrite of it] and when we pressed the matter where told "don't go down > that rabbit hole", this confirms something another poster said that any > software company that uses MSSQL get weird quickly -- the version of the > devices we have current use MySQL but the next generation only "support" > MSSQL since it is "better" than MySQL) and 3) by the fact that they were a > publicly traded (NY Stock Exchange) > > -- Please do not email me anything that you are not comfortable also sharing with the NSA, CIA ... From owner-freebsd-questions@freebsd.org Fri Aug 14 08:19:11 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id A0A753B8DAB for ; Fri, 14 Aug 2020 08:19:11 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSbv15TG1z4QRD for ; Fri, 14 Aug 2020 08:19:09 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id 62B2F112505 for ; Fri, 14 Aug 2020 15:19:04 +0700 (+07) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= content-type:content-type:mime-version:message-id:date:date :in-reply-to:subject:subject:from:from:received:received :received; s=selector1; t=1597393143; x=1599207544; bh=B0249sxer wRUwaFlIkhDYmBrnoXtgq/0yNOypaZfF7I=; b=KVv5GyYYtBUtaQu3E5OYJtEJ+ igPi3esyV/+eQIJEcktRbBR25ceEh+341Kt5NJ+9ccFirbfAM5FUT8DgNoSUSDLL dCtbpheyX3LbtkfYFQZvoLPQ9M08iEldAootuJgY+boVdAV6phVRIUIgjcWuhmoC 59Q06DSFycbZOaWv1o= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by mail.cs.ait.ac.th (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id KBbgNaxryvYg for ; Fri, 14 Aug 2020 15:19:03 +0700 (+07) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id E7545112504 for ; Fri, 14 Aug 2020 15:19:03 +0700 (+07) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.15.2/8.15.2/Submit) id 07E8J5kH063527; Fri, 14 Aug 2020 15:19:05 +0700 (ICT) (envelope-from on@banyan.cs.ait.ac.th) From: Olivier To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-Reply-To: (message from Aryeh Friedman on Fri, 14 Aug 2020 04:00:22 -0400) Date: Fri, 14 Aug 2020 15:19:05 +0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain X-Rspamd-Queue-Id: 4BSbv15TG1z4QRD X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cs.ait.ac.th header.s=selector1 header.b=KVv5GyYY; dmarc=pass (policy=none) header.from=cs.ait.ac.th; spf=pass (mx1.freebsd.org: domain of Olivier.Nicole@cs.ait.ac.th designates 192.41.170.16 as permitted sender) smtp.mailfrom=Olivier.Nicole@cs.ait.ac.th X-Spamd-Result: default: False [-4.33 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.025]; R_DKIM_ALLOW(-0.20)[cs.ait.ac.th:s=selector1]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+mx:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.03)[-1.028]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[cs.ait.ac.th:+]; RCVD_IN_DNSWL_MED(-0.20)[192.41.170.16:from]; DMARC_POLICY_ALLOW(-0.50)[cs.ait.ac.th,none]; NEURAL_HAM_SHORT(-0.58)[-0.579]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:4767, ipnet:192.41.170.0/24, country:TH] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:19:11 -0000 > Tried and their answer is if we insist on breaking the contract then they > will terminate it and ask for additional penalties under the breach > clause. Considering that the hosting company is reponsible to break things, they are he one to pay the penalties... But I take it you are not a lawyer, neither I am. > There website claims they are in full compliance with HIPAA (the relevant > regulation in the US) and use it as a marketing point. I am wondering if their idiocy with HTTPS is and if that would not be worth reporting them to the right agencies. > The client based on a) recommendations from our old hosting provider who > decided to go out of business due to the owner retiring, b) the maker of > the devices we have connectected to the system (actually the manufacturer > is another fine example of head up the ass... stuff like not even knowing > what "concurrency" was when asked a question about how the devices interact > with the vendor provided front-end/DB [which sucks and thus our ground up > rewrite of it] and when we pressed the matter where told "don't go down > that rabbit hole", this confirms something another poster said that any > software company that uses MSSQL get weird quickly -- the version of the > devices we have current use MySQL but the next generation only "support" > MSSQL since it is "better" than MySQL) and 3) by the fact that they were a > publicly traded (NY Stock Exchange) You had no saying in the choice of the hosting company, so you can report to your client that given the circunstances, you cannot help and that your client should deal with the matter. There is a limit to what we can do technically. You mentioned that piort 25 is open, you could modify some SSH client and server to start the connection like and SMTP protocol, launch STARTLS then so some SSH inside. If the 1st packed is an EHLO and everything after is encrypted, they cannot see what is inside. Olivier -- From owner-freebsd-questions@freebsd.org Fri Aug 14 08:36:05 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 6C2983B95AF for ; Fri, 14 Aug 2020 08:36:05 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd33.google.com (mail-io1-xd33.google.com [IPv6:2607:f8b0:4864:20::d33]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BScGX19Bkz4R77 for ; Fri, 14 Aug 2020 08:36:03 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd33.google.com with SMTP id q75so10107534iod.1 for ; Fri, 14 Aug 2020 01:36:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=yaTZaen+h6k6cCeLR6Vc77ZXryBKyapJWbV4Gi6WHTI=; b=uh1VOWUjudMD5KT1ab2+907YZva/kxT1tJcsri3YuwTQN+rit/BkvpDfVjFZOyw/xD 2yokuPDjyQ8hFKIwQBa6rQmZdhXiChh6cMN3zICR66QfL0d2DFV2updq/RD3DJy2eMvL zhlXNwEAeAVW4zvPfHFiKrH0U+tWBrvi06ZxCR5/q9PEajXtZS9Sw3UTPovJ6mgvxnOm c8M406KWJxinM8A0SFQXhRWVe7aF1jIM4nQVA/Dzkxp4rOECwDCCHGI39q/Fh8AGwoMJ 0RVTO4KBJf8iwrxbrDmVZ/7ATntanzEJPUNxJPVG0YTjqDxPCYd9COQbntokgq72lrrO pTsQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=yaTZaen+h6k6cCeLR6Vc77ZXryBKyapJWbV4Gi6WHTI=; b=F7DgnA4qQC4V2eciTM3yrmByChhzAeWogEh95S/n3gTUnPon1G7z20VxeAVEl77EI6 socd2Hbz/yJllzjI2FMhk4aAb69S9kL7Qsv6n1VCIyqE20JwmBus394NDFD2QUBTfO52 lXY8zydUYCJfxGQnSIlqImlNmKBHlUVbeKhsmM7LH2GZb8TnWOcjHcO04vnX0KeLG4zq YoC0dSZCzEGy6tysbjADanWKPUauZO350T5eFsOrnPotzX/esrYFApiVmnxBrQDkZN0P 7X5GM17Nr1E1SzBCmK2xN+u/zL/5b2gg/CQ5/3jziPes7S6CRv7okwsOjPX+Z0IiO5x4 B3Pg== X-Gm-Message-State: AOAM533/QXeV71/XvKqgSVpMArg1ixM9U0Sp934LFzJq1sxl1aC3zIHq /OcOVlasDtBbH/nHSBXyIMZ64HMquIhYFQoP4nM= X-Google-Smtp-Source: ABdhPJxznnr0l0djkaPRcDEMoycl42JJDgHTwzt+LVCqG5ZaW6t5FaAmORH5j4T1LDan5Z0e/3CdvUfIUf7zhdq8WAA= X-Received: by 2002:a02:c789:: with SMTP id n9mr1785582jao.40.1597394163043; Fri, 14 Aug 2020 01:36:03 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Aryeh Friedman Date: Fri, 14 Aug 2020 04:35:50 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Olivier Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BScGX19Bkz4R77 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=uh1VOWUj; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d33 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.05 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.01)[-1.006]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d33:from]; NEURAL_HAM_SHORT(-0.03)[-0.035]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:36:05 -0000 On Fri, Aug 14, 2020 at 4:19 AM Olivier wrote: > > The client based on a) recommendations from our old hosting provider who > > decided to go out of business due to the owner retiring, b) the maker of > > the devices we have connectected to the system (actually the manufacturer > > is another fine example of head up the ass... stuff like not even knowing > > what "concurrency" was when asked a question about how the devices > interact > > with the vendor provided front-end/DB [which sucks and thus our ground up > > rewrite of it] and when we pressed the matter where told "don't go down > > that rabbit hole", this confirms something another poster said that any > > software company that uses MSSQL get weird quickly -- the version of the > > devices we have current use MySQL but the next generation only "support" > > MSSQL since it is "better" than MySQL) and 3) by the fact that they were > a > > publicly traded (NY Stock Exchange) > > You had no saying in the choice of the hosting company, so you can > report to your client that given the circunstances, you cannot help and > that your client should deal with the matter. There is a limit to what > we can do technically. > Nice in theory! The reality is the marching orders we have from the client (who refuses to bend on this) is "make it work, I don't care how you do it, just make it work! ... or I will find new programmers who can make it work"... Good luck on the client doing that because the system is 100% custom (including the DB engine due to no existing DB meeting the regulatory requirements of end-to-end encryption [instead of just encrypted file system and encrypted fields.. the tables themselves need to be encrypted]) which we have wrote/maintained over the last 8 years including the occasional new feature (the new feature that is causing all this fuss is the client wants to autopop the windows MySQL DB the devices use to avoid duplicate hand copying of data between two forms and due to licensing costs we forced to do the testing on the production system thus need the hosting company to set up suitable near real time backups of the MySQL DB). > You mentioned that piort 25 is open, you could modify some SSH client > and server to start the connection like and SMTP protocol, launch > STARTLS then so some SSH inside. If the 1st packed is an EHLO and > everything after is encrypted, they cannot see what is inside. > We actually use port 25 for SMTP so this is a no-go (part of how the devices work is they send a email when they have data to upload and then have to be told remotely to upload it [this is one the scripts we have]) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 08:51:19 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 183F33B9842 for ; Fri, 14 Aug 2020 08:51:19 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BScc62vpYz4S1f for ; Fri, 14 Aug 2020 08:51:18 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id D48F5112505 for ; Fri, 14 Aug 2020 15:51:10 +0700 (+07) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= content-type:content-type:mime-version:message-id:date:date :in-reply-to:subject:subject:from:from:received:received :received; s=selector1; t=1597395070; x=1599209471; bh=wPr7CLpVM 2RvG4+TqP1iL5S/KedLAKbWujA78JMB/rE=; b=ThrtIapyJ/uHoBFSU8/H1KLHs ayh4fORzijwABFtUFrP1qjz+9Q/x1mV6gd3EV/eE9imdceMNhGgm579KHlxbPrWV xZ9zcDW3JQ7HRvC+5XKNffW++cWH8/inf2JdUgTUEG1j4GQCfu8Ip6XvRyJbvmfm UeSsT4HrLD9MjMUHqg= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by mail.cs.ait.ac.th (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id T9c9lwv9Ojsv for ; Fri, 14 Aug 2020 15:51:10 +0700 (+07) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id 278A5112504 for ; Fri, 14 Aug 2020 15:51:10 +0700 (+07) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.15.2/8.15.2/Submit) id 07E8pA22063802; Fri, 14 Aug 2020 15:51:10 +0700 (ICT) (envelope-from on@banyan.cs.ait.ac.th) From: Olivier To: freebsd-questions@freebsd.org Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-Reply-To: (message from Aryeh Friedman on Fri, 14 Aug 2020 04:35:50 -0400) Date: Fri, 14 Aug 2020 15:51:10 +0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain X-Rspamd-Queue-Id: 4BScc62vpYz4S1f X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cs.ait.ac.th header.s=selector1 header.b=ThrtIapy; dmarc=pass (policy=none) header.from=cs.ait.ac.th; spf=pass (mx1.freebsd.org: domain of Olivier.Nicole@cs.ait.ac.th designates 192.41.170.16 as permitted sender) smtp.mailfrom=Olivier.Nicole@cs.ait.ac.th X-Spamd-Result: default: False [-4.40 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.021]; R_DKIM_ALLOW(-0.20)[cs.ait.ac.th:s=selector1]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+mx:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.03)[-1.027]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[cs.ait.ac.th:+]; DMARC_POLICY_ALLOW(-0.50)[cs.ait.ac.th,none]; RCVD_IN_DNSWL_MED(-0.20)[192.41.170.16:from]; NEURAL_HAM_SHORT(-0.65)[-0.653]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:4767, ipnet:192.41.170.0/24, country:TH] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:51:19 -0000 > Nice in theory! The reality is the marching orders we have from the > client (who refuses to bend on this) is "make it work, I don't care how you > do it, just make it work! ... or I will find new programmers who can make > it work"... Good luck on the client doing that because the system is 100% > custom (including the DB engine due to no existing DB meeting the > regulatory requirements of end-to-end encryption [instead of just encrypted > file system and encrypted fields.. the tables themselves need to be > encrypted]) which we have wrote/maintained over the last 8 years including > the occasional new feature (the new feature that is causing all this fuss > is the client wants to autopop the windows MySQL DB the devices use to > avoid duplicate hand copying of data between two forms and due to licensing > costs we forced to do the testing on the production system thus need the > hosting company to set up suitable near real time backups of the MySQL DB). > > >> You mentioned that piort 25 is open, you could modify some SSH client >> and server to start the connection like and SMTP protocol, launch >> STARTLS then so some SSH inside. If the 1st packed is an EHLO and >> everything after is encrypted, they cannot see what is inside. >> > > We actually use port 25 for SMTP so this is a no-go (part of how the > devices work is they send a email when they have data to upload and then > have to be told remotely to upload it [this is one the scripts we have]) If you are ready to do SSH on port 25 (which should be a big no-no considering the stupidity of the hosting company), you can do implement a full IP over IP inside tunnel, with routing and all you need. You will need another machine at the other end of the tunnel. Like a VPN but using SSH tunnel. I have never done that (I have done IP over IP). That means that at the outside layer of IP, you will be able to have all the ports you want, including port 25. Olivier -- From owner-freebsd-questions@freebsd.org Fri Aug 14 08:51:59 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 89FEA3B96DA for ; Fri, 14 Aug 2020 08:51:59 +0000 (UTC) (envelope-from mueller6722@twc.com) Received: from p-impout004.msg.pkvw.co.charter.net (p-impout004aa.msg.pkvw.co.charter.net [47.43.26.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSccv0JWdz4SD5 for ; Fri, 14 Aug 2020 08:51:58 +0000 (UTC) (envelope-from mueller6722@twc.com) Received: from localhost ([96.28.177.163]) by cmsmtp with ESMTP id 6VFIkpmBZWFQf6VFTk4Nio; Fri, 14 Aug 2020 08:39:39 +0000 X-Authority-Analysis: v=2.3 cv=M+4z1B4s c=1 sm=1 tr=0 a=xqrt2BZAGHte7XHhrxJgbA==:117 a=xqrt2BZAGHte7XHhrxJgbA==:17 a=HpEJnUlJZJkA:10 a=LxhdCT-86VdTUeDNdJwA:9 Date: Fri, 14 Aug 2020 08:39:19 +0000 From: "Thomas Mueller" To: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> X-CMAE-Envelope: MS4wfO1Y8tTPG/lBWakKvNtr9psRy5bXHggRPyOdRnQoE6PnQZLC+nNDaiEoi7V9KRJ4mODTU60tJ1FMc5kyx7xJASq4VzA7lt+88vXEXbIWehovO7PZFE5O UHio479kW/RVRAgA6wrKE5TwzJu95DZP0DCWhrcqUOw8lMicIcuclJAvNgimaLPN+cZ0yj6q1GWHzQ== X-Rspamd-Queue-Id: 4BSccv0JWdz4SD5 X-Spamd-Bar: ++++++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of mueller6722@twc.com designates 47.43.26.135 as permitted sender) smtp.mailfrom=mueller6722@twc.com X-Spamd-Result: default: False [8.86 / 15.00]; RCVD_TLS_LAST(0.00)[]; ARC_NA(0.00)[]; NEURAL_SPAM_SHORT(0.77)[0.773]; RECEIVED_SPAMHAUS_PBL(0.00)[96.28.177.163:received]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[twc.com]; R_MISSING_CHARSET(2.50)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; BROKEN_CONTENT_TYPE(1.50)[]; NEURAL_SPAM_MEDIUM(0.90)[0.899]; RCPT_COUNT_ONE(0.00)[1]; MISSING_MID(2.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; GREYLIST(0.00)[pass,body]; DMARC_NA(0.00)[twc.com]; R_SPF_ALLOW(-0.20)[+ip4:47.43.26.0/24]; NEURAL_SPAM_LONG(0.99)[0.988]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:40294, ipnet:47.43.24.0/21, country:US]; FREEMAIL_ENVFROM(0.00)[twc.com]; RWL_MAILSPIKE_POSSIBLE(0.00)[47.43.26.135:from] X-Spam: Yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:51:59 -0000 > I’m trying to access a 5.25“ floppy disk drive if anyone here knowing what a „floppy“ disk drive is. :) > MB is a ASRock939A790GMH > I see the drive in the BIOS although I’m not sure if it is really „connected“. > Anyway, the FreeBSD (12.1) boot doesn’t see the hardware at all. > Christoph Is that an old motherboard? I didn't think you could still get a motherboard with floppy header. In my experience with 3.5" and 5.25" floppy disks, FreeDOS was better than Linux, and Linux was better than FreeBSD or NetBSD. But I can't try that any more, since my current motherboards have no floppy headers. Tom From owner-freebsd-questions@freebsd.org Fri Aug 14 08:57:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B61EC3B9F92 for ; Fri, 14 Aug 2020 08:57:12 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (mail.cs.ait.ac.th [192.41.170.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSckw1FjBz4Shk for ; Fri, 14 Aug 2020 08:57:11 +0000 (UTC) (envelope-from Olivier.Nicole@cs.ait.ac.th) Received: from mail.cs.ait.ac.th (localhost [127.0.0.1]) by mail.cs.ait.ac.th (Postfix) with ESMTP id BA7FF112505 for ; Fri, 14 Aug 2020 15:57:07 +0700 (+07) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.ait.ac.th; h= content-transfer-encoding:content-type:content-type:mime-version :message-id:date:date:in-reply-to:subject:subject:from:from :received:received:received; s=selector1; t=1597395427; x= 1599209828; bh=rS+vmeKTzP4CMzZ1vR5g4SLcuoqfcweLzNbVnq55qr4=; b=j u5gfMAtR47uB6XgFtn+wpjv3QOIstoYFoZ3V/j2IYrOJw0CUkEHtNu4jMnDZj43o eg6HjvTnDoEcsduq4rZfBv3BwBga0cKk4BnDImP80hKhgjq7G2opIRAP2mE2hV+9 eXEZePT5nWFULA50S9BL0FtU9mNwnDHwAdJtQiR4hE= X-Virus-Scanned: amavisd-new at cs.ait.ac.th Received: from mail.cs.ait.ac.th ([127.0.0.1]) by mail.cs.ait.ac.th (mail.cs.ait.ac.th [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id c0KMlOpZVYlH for ; Fri, 14 Aug 2020 15:57:07 +0700 (+07) Received: from banyan.cs.ait.ac.th (banyan.cs.ait.ac.th [192.41.170.5]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.cs.ait.ac.th (Postfix) with ESMTPS id 1960F112504 for ; Fri, 14 Aug 2020 15:57:06 +0700 (+07) Received: (from on@localhost) by banyan.cs.ait.ac.th (8.15.2/8.15.2/Submit) id 07E8v8cx063818; Fri, 14 Aug 2020 15:57:08 +0700 (ICT) (envelope-from on@banyan.cs.ait.ac.th) From: Olivier To: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized In-Reply-To: <20200814085228.64AD5112505@mail.cs.ait.ac.th> (mueller6722@twc.com) Importance: high Date: Fri, 14 Aug 2020 15:57:07 +0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Rspamd-Queue-Id: 4BSckw1FjBz4Shk X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cs.ait.ac.th header.s=selector1 header.b=j u5gfMA; dmarc=pass (policy=none) header.from=cs.ait.ac.th; spf=pass (mx1.freebsd.org: domain of Olivier.Nicole@cs.ait.ac.th designates 192.41.170.16 as permitted sender) smtp.mailfrom=Olivier.Nicole@cs.ait.ac.th X-Spamd-Result: default: False [-4.32 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.024]; R_DKIM_ALLOW(-0.20)[cs.ait.ac.th:s=selector1]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+mx:c]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.03)[-1.028]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[cs.ait.ac.th:+]; DMARC_POLICY_ALLOW(-0.50)[cs.ait.ac.th,none]; RCVD_IN_DNSWL_MED(-0.20)[192.41.170.16:from]; NEURAL_HAM_SHORT(-0.57)[-0.567]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:4767, ipnet:192.41.170.0/24, country:TH] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 08:57:12 -0000 Christoph >> I=E2=80=99m trying to access a 5.25=E2=80=9C floppy disk drive if anyone= here knowing what a =E2=80=9Efloppy=E2=80=9C disk drive is. :) > >> MB is a ASRock939A790GMH >=20=20=20=20 >> I see the drive in the BIOS although I=E2=80=99m not sure if it is reall= y =E2=80=9Econnected=E2=80=9C. > >> Anyway, the FreeBSD (12.1) boot doesn=E2=80=99t see the hardware at all. Launch any old live OS that still had support for floppies and migrate your data. You should be able to find old ditribution of some Linux, or even WinXP. Olivier From owner-freebsd-questions@freebsd.org Fri Aug 14 09:10:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2415C3BA85E for ; Fri, 14 Aug 2020 09:10:28 +0000 (UTC) (envelope-from 4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSd2C2zbMz4TNp for ; Fri, 14 Aug 2020 09:10:27 +0000 (UTC) (envelope-from 4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597396227; x=1599988227; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:to:from:date:x-thread-info; bh=U3+QvJyVOwuISweAc6J9al19k4pGJriWnifSyHW8PTA=; b=WGAOIGyG6zdkUvYMyPlfWK8OC1eJtr9YZKvT1S/dmy9am50UDsLud2qbmO3y0JPmbSqyCN0AAX9hfkcJssgGGssQyXC+eFrjdIH+loPZfghaGWXjPaSEVz0vi+SDxNnDYdowfJhuY1BEqqrP6xXaS2rhs3j74Q6RSOtG1Xq2Aaw= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg2OTQ3N2UuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r2.us-east-2.aws.in.socketlabs.com (r2.us-east-2.aws.in.socketlabs.com [142.0.189.2]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 05:10:24 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r2.us-east-2.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 05:10:23 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6VjB-0008ZV-MH for freebsd-questions@freebsd.org; Fri, 14 Aug 2020 10:10:21 +0100 Date: Fri, 14 Aug 2020 10:10:21 +0100 From: Steve O'Hara-Smith To: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814101021.c71f6c23768a5bef685739fe@sohara.org> In-Reply-To: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BSd2C2zbMz4TNp X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=WGAOIGyG; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com X-Spamd-Result: default: False [-1.85 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.03)[-1.025]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[sohara.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.022]; RCVD_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.11)[-0.105]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c2000869477e.913615e5aaef7ec8a10cc452ea33a8a1@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 09:10:28 -0000 On Fri, 14 Aug 2020 09:42:34 +0200 Christoph Kukulies wrote: > I’m trying to access a 5.25“ floppy disk drive if anyone here knowing > what a „floppy“ disk drive is. :) The last time I used one of those with FreeBSD I installed from it, back then it just worked of course. -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Fri Aug 14 10:50:53 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id E47A33BC528 for ; Fri, 14 Aug 2020 10:50:53 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSgG45yldz4Z5Z for ; Fri, 14 Aug 2020 10:50:52 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 9A79B10276C for ; Fri, 14 Aug 2020 12:50:51 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UJPVJfXA7Lud for ; Fri, 14 Aug 2020 12:50:51 +0200 (CEST) Received: from christophs-macbook-pro.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id 269CA10276B for ; Fri, 14 Aug 2020 12:50:51 +0200 (CEST) From: Christoph Kukulies Content-Type: multipart/signed; boundary="Apple-Mail=_9AD6CDC2-8FAF-4AA9-ABD9-3D9DE0B955F9"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 12:50:50 +0200 References: To: Ruben via freebsd-questions In-Reply-To: Message-Id: X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSgG45yldz4Z5Z X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [1.85 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; HAS_ATTACHMENT(0.00)[]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; AUTH_NA(1.00)[]; RCPT_COUNT_ONE(0.00)[1]; RCVD_COUNT_THREE(0.00)[4]; DMARC_NA(0.00)[kukulies.org]; TO_DN_ALL(0.00)[]; NEURAL_SPAM_MEDIUM(0.92)[0.916]; NEURAL_SPAM_LONG(0.90)[0.901]; NEURAL_SPAM_SHORT(0.63)[0.633]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 10:50:54 -0000 --Apple-Mail=_9AD6CDC2-8FAF-4AA9-ABD9-3D9DE0B955F9 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 First problem was to recognize the 5.25=E2=80=9C drive from the BIOS. This MB seems to only support one floppydrive. It comes with an ASUS = branded point to point cable (one connector only). At least I managed that FBSD now recognizes the drive: fdc0: port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 = on acpi0 fd0: <1200-KB 5.25" drive> on fdc0 drive 0 But when I=E2=80=99m trying to d# dd if=3D/dev/fd0 of=3Dfd_dump=20 dd: /dev/fd0: Device not configured 0+0 records in 0+0 records out 0 bytes transferred in 0.000252 secs (0 bytes/sec) #=20 Do I have to specify special blocksize? =E2=80=94 Christoph > Am 14.08.2020 um 10:57 schrieb Olivier : >=20 > Christoph >=20 >>> I=E2=80=99m trying to access a 5.25=E2=80=9C floppy disk drive if = anyone here knowing what a =E2=80=9Efloppy=E2=80=9C disk drive is. :) >>=20 >>> MB is a ASRock939A790GMH >>=20 >>> I see the drive in the BIOS although I=E2=80=99m not sure if it is = really =E2=80=9Econnected=E2=80=9C. >>=20 >>> Anyway, the FreeBSD (12.1) boot doesn=E2=80=99t see the hardware at = all. >=20 > Launch any old live OS that still had support for floppies and migrate > your data. >=20 > You should be able to find old ditribution of some Linux, or even = WinXP. >=20 > Olivier --Apple-Mail=_9AD6CDC2-8FAF-4AA9-ABD9-3D9DE0B955F9 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MTA1MDUwWjAvBgkqhkiG9w0BCQQxIgQgns+GEg00RO/Q 18VJiRte8pMBtqByPhqLKFoSzLaWWEUwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQCJKRbMYXsXWddOETJpLhcscSgwBrwuMJ+ijRT+N/z5FsEA WPzpfYN1THwUCiSSAZPoSWZJ4VXaY9gLRW1nj/yr2XwDjh68ynHCG6nQtDhTZ9edkNcCrhqw/XAF 9XSobQUk0HTD1Bkg5uPN3LnZQlpbpgMj801IJoUUhiXf3Ax4k26SlxkVPFQSiEAmrya2/6b78fsa uQ+w6KSxA0fXGH1lr000xg/X2Mh3Kvm60R/GdWqeKDfViMgAX8rzAfIzqFlZ88dMTA6ZFs8bpw+o wq6E8IZeIy0RzMdaPW/BnA1xLSt6pOWHLYGSFq8AzTRHqBbH9/X82lh7Z1inNXM2ZNKPAAAAAAAA --Apple-Mail=_9AD6CDC2-8FAF-4AA9-ABD9-3D9DE0B955F9-- From owner-freebsd-questions@freebsd.org Fri Aug 14 11:16:11 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F28BA3BCB9D for ; Fri, 14 Aug 2020 11:16:11 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: from mail-qk1-x735.google.com (mail-qk1-x735.google.com [IPv6:2607:f8b0:4864:20::735]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSgqH0CzBz4b3v for ; Fri, 14 Aug 2020 11:16:10 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: by mail-qk1-x735.google.com with SMTP id p25so7991736qkp.2 for ; Fri, 14 Aug 2020 04:16:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seibercom.net; s=google; h=date:from:to:subject:message-id:in-reply-to:references:reply-to :organization:mime-version; bh=hMXmm8WqI1/onK/nIZ3N1OR1uPgjJT2G9d/B4PxIlbQ=; b=ZgXOzLhh9CuvmrnLOX/iBc7dKSz/SRZnwbCYAM7qrgluYqM8F73NjzcwTrpL+WwDRp misLhRF13tHWTMRffqIfZuGj6tuWCcBFIImJf8JnvzfN8aLaJ1LNCR0aRDf2mkANgy5t vxo8IKATRdksPPbBTaB+xzwiFkVzlKp8RmjaM= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:message-id:in-reply-to :references:reply-to:organization:mime-version; bh=hMXmm8WqI1/onK/nIZ3N1OR1uPgjJT2G9d/B4PxIlbQ=; b=CtEVNnw5EG9pdsNVTpzAPJlAgFMc9sFavsC+2F6f+OFJdw0sFhRRS/hOSgU98yNJiY WpNRLSrHO+Sga8wr79felY7YnkRDM2P69sx+ANJcPNup6BpOuxpDgp91WkQwjZPvySM+ 6TEpcPZnuSWsSLi3ti5pdEZNfsm7b5WnZFOC7xJtXlzxUyoRvyObxpdRTqt0VdpoEfmD 9DtVRcHnnP3/sRh3HXsS4ubJEG2pfRLP0Vejiqc3ZagJh4aAS4Nvo9jawIf6Vl4FYb3W dnHdJ1TgPJdlVB7b9m84BmQ0FgTnhXvmVyzvIIhRAxtsayGNSupuMuJnJW0D6IKylxds +kDQ== X-Gm-Message-State: AOAM532BRhjRZ7UZUKa5edHG/j6lrunAua34oz7FKUknrkHp7v6Pw7mC HQX+QUtJ/gG28TNNEOJ5HbH/c3H5W5bx2g== X-Google-Smtp-Source: ABdhPJzLQRmPgXRQUjv3ET60vZfa3yWGb+1ttuEgRmkOxzzzyY7TNiond51eKu821qv49Zx8DlsSuQ== X-Received: by 2002:a05:620a:12ef:: with SMTP id f15mr1575928qkl.120.1597403451513; Fri, 14 Aug 2020 04:10:51 -0700 (PDT) Received: from scorpio.seibercom.net ([174.109.231.236]) by smtp.gmail.com with ESMTPSA id c5sm9282064qtp.62.2020.08.14.04.10.49 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 14 Aug 2020 04:10:50 -0700 (PDT) Received: from scorpio.seibercom.net (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by scorpio.seibercom.net (Postfix) with ESMTPS id 4BSgj40lGxz2Y1 for ; Fri, 14 Aug 2020 07:10:48 -0400 (EDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.102.4 at scorpio.seibercom.net Date: Fri, 14 Aug 2020 07:10:30 -0400 From: Jerry To: "User Questions" Subject: Re: 5.25" Floppy disk drive not recognized Message-ID: <20200814071030.3f319e5a@scorpio.seibercom.net> In-Reply-To: <20200814101021.c71f6c23768a5bef685739fe@sohara.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> Reply-To: "User Questions" Organization: seibercom NET X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; amd64-portbld-freebsd11.4) MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/VrlVDco2nxPl5wLDnWouN/i"; protocol="application/pgp-signature" X-Rspamd-Queue-Id: 4BSgqH0CzBz4b3v X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=ZgXOzLhh; dmarc=none; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::735 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Spamd-Result: default: False [2.52 / 15.00]; HAS_REPLYTO(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; HAS_ORG_HEADER(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[seibercom.net:+]; NEURAL_HAM_SHORT(-0.17)[-0.174]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; REPLYTO_EQ_TO_ADDR(5.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[174.109.231.236:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.81)[-0.811]; R_DKIM_ALLOW(-0.20)[seibercom.net:s=google]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.90)[-0.899]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[seibercom.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::735:from]; GREYLIST(0.00)[pass,body]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 11:16:12 -0000 --Sig_/VrlVDco2nxPl5wLDnWouN/i Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On Fri, 14 Aug 2020 10:10:21 +0100, Steve O'Hara-Smith stated: >On Fri, 14 Aug 2020 09:42:34 +0200 >Christoph Kukulies wrote: > >> I=E2=80=99m trying to access a 5.25=E2=80=9C floppy disk drive if anyone= here knowing >> what a =E2=80=9Efloppy=E2=80=9C disk drive is. :) =20 > > The last time I used one of those with FreeBSD I installed from >it, back then it just worked of course. I actually had a friend who needed to copy some very old (obviously) data off of a few 5.25" or 3.5" disks. I don't remember off hand which. Anyway, he puirchasded a USB floppy drive (they are very cheap) and plugged it into the system. I should probably add at this point that he was using a Win 10 system. In any case, they system recognized the drive and set it up automatically. My friend then proceeded to copy the files to the HD. Problem solved, almost. Apparently, not all of the data was readable off of the disks, they were well over 10 years old. I believe he was going to try and run SpinRite on the damaged drives and see if it could recover any data. I have no idea if he ever did, or if it succeeded. In any case, you might find that solution acceptable. --=20 Jerry --Sig_/VrlVDco2nxPl5wLDnWouN/i Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEIQb/tTwl6I1ueEVtOHMGOIfexWQFAl82cScACgkQOHMGOIfe xWTwEAgAtjv9wpQmXAveyioiOz8XGraXTrdbJdkKv+8n4zLtGYE0QzlvxtzAKVLP IY1UMq/dSKUQLjs80HfVD73tHYmPqeex5L3M5QGGLGoZsbhjqmQ8McuL/4bxJvEP yDXk/0Yu9x4t9Tav8g61uZ77YH2sINhZ64CWPmTTbcrDQzyW6Q67siynV9RZwThG YTcKuSqa8wjUF2CwJnTyGDYeiymmHnswkVq55OTQnSMaV4Suujy44ivskb3e7kZG SOneTGWDbBTeJuwzVkn4Dx0DqmE6lCnD64xZrbad/rRi7aoUq1u3saORR67JpaY7 EZ8I7+0SmdrvU/6TyhPFItwpUIrPBg== =5PjQ -----END PGP SIGNATURE----- --Sig_/VrlVDco2nxPl5wLDnWouN/i-- From owner-freebsd-questions@freebsd.org Fri Aug 14 12:04:01 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BB6D63BE237 for ; Fri, 14 Aug 2020 12:04:01 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: from mail-ej1-x62d.google.com (mail-ej1-x62d.google.com [IPv6:2a00:1450:4864:20::62d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BShtS732Wz4dw8 for ; Fri, 14 Aug 2020 12:04:00 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: by mail-ej1-x62d.google.com with SMTP id bo3so9623690ejb.11 for ; Fri, 14 Aug 2020 05:04:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:subject:in-reply-to:message-id:references:user-agent :mime-version; bh=owarz94YEgugmCjqgPhCoLLNyZsz8MJQQJd9xT/eoJI=; b=V9u/Ytlr4Lby9HGqmAY6GwLFrNfxEVPBEctDNXPIRw1D0vidb6BeIDu4bc+86wRCFV P+gHMLQM2uNWWO3taucpx5gzsMjM+ecNb9VUsyjE1UqFUP4IWCzXy4dUVd+zS8R3AiZB XqYds46eIDYDH2gllRWMWTvHJxtWGcNQ+4aiyvRSu18giZNOywGRNNqC5SVVAV9KSws4 wMAbHD6F/SQ3pBEf/o462QZSM6iAsMW52JskAln/xTYAQ5Ze8jiVP3hwQUaQEiuBF4gq hpu9eKj/fwrzAX0u4cSQPuDPZvXcAlZ9nLPVer57G16NqdwxeEvAbkK+mSBJdw0zVA7U WKYA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:in-reply-to:message-id :references:user-agent:mime-version; bh=owarz94YEgugmCjqgPhCoLLNyZsz8MJQQJd9xT/eoJI=; b=bSKvy98p+NkXJmVi8RRHDbumyO6YhCu5nAOJQ9s+xWyJBA2WN7xxNG5ogW8IW1nqFB 9kEuJuDrcnO3+94a3wQJ5iPiVrBr8Drij8zhyzBVWnoUGm2HHSj9A42l/iedabcfE2+p ynGL2gnxaXxjGcEHMLB9oI+c5O5me/65e6sr/ce54XSAIIsWWdxBMN2ZEo8jDe52BvaY Ai/Y0N3fTPcPQDE51nwoeOdNV9TEWrcHXp0+JYmIXdwsuCi03tFmAH0TrgfES3YI+lps yA8t5BEPzy+wxbDlneDAP9aPWrP31ZfUKrRwoHlSgYZHOrHFCctssUvC+yJwiG2V9ovv Hm6g== X-Gm-Message-State: AOAM530fh4G4v6KA/QQrYWqnKg7TkQXkHuE2JN1V3OXbXHThl/eYc4Ga wsJgOPY6PqaFHK19yys64qon9wG/kpmIjQ== X-Google-Smtp-Source: ABdhPJx7spiPJVdt2W3A5q0z/8WBYbvEMbCq2N5isj3Zj4sc1GpApezM9bll4jykty8LJ+qyH2b1hQ== X-Received: by 2002:a17:906:5f8a:: with SMTP id a10mr2133873eju.379.1597406639177; Fri, 14 Aug 2020 05:03:59 -0700 (PDT) Received: from [192.168.178.26] (dslb-092-078-051-020.092.078.pools.vodafone-ip.de. [92.78.51.20]) by smtp.gmail.com with ESMTPSA id s9sm6806243edt.36.2020.08.14.05.03.58 for (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 14 Aug 2020 05:03:58 -0700 (PDT) Date: Fri, 14 Aug 2020 12:03:40 +0000 (UTC) From: Roderick To: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized In-Reply-To: Message-ID: References: User-Agent: Alpine 2.23 (BSF 453 2020-06-18) MIME-Version: 1.0 X-Rspamd-Queue-Id: 4BShtS732Wz4dw8 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=V9u/Ytlr; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of hruodr@gmail.com designates 2a00:1450:4864:20::62d as permitted sender) smtp.mailfrom=hruodr@gmail.com X-Spamd-Result: default: False [-2.09 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; CTYPE_MIXED_BOGUS(1.00)[]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.48)[-0.478]; RECEIVED_SPAMHAUS_PBL(0.00)[92.78.51.20:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.66)[-0.659]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.95)[-0.948]; MIME_GOOD(-0.10)[multipart/mixed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::62d:from]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; format=flowed; charset=ISO-8859-7 Content-Transfer-Encoding: 8BIT X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 12:04:01 -0000 The problem is perhaps more than the block size: the low level formatting of the disk. On Fri, 14 Aug 2020, Christoph Kukulies wrote: > But when I¢m trying to > d# dd if=/dev/fd0 of=fd_dump > dd: /dev/fd0: Device not configured > 0+0 records in > 0+0 records out > 0 bytes transferred in 0.000252 secs (0 bytes/sec) > # > > > Do I have to specify special blocksize? From owner-freebsd-questions@freebsd.org Fri Aug 14 12:08:13 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 90CDB3BE44F; Fri, 14 Aug 2020 12:08:13 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qt1-x836.google.com (mail-qt1-x836.google.com [IPv6:2607:f8b0:4864:20::836]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BShzH2p5bz4dwt; Fri, 14 Aug 2020 12:08:11 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qt1-x836.google.com with SMTP id w9so6684253qts.6; Fri, 14 Aug 2020 05:08:11 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:subject :content-transfer-encoding; bh=mVjOTSEbnv0047r+dfSGGllgLdcHR9TrgyQdZszzaNM=; b=cfazFmt1ZDqEvmmvFP3zJsBdxtoxgGDcCxjfhGwRxH3Nwc8IF+XJ9QeJHhu/Mnbjhe B0B72Xna97U6xC8+WrkABuEzwuLBmCa50E42GUK7dsaozEVB/7DcyT/MzPmhyhXAajQ3 Z0MMgqcgtSLhb+xGsjPafmX9RDic7xfFMTm4BSG7R9dZHwBU5W2cqugASEtKL9fmoJO7 K4sXSi/6Dd/NL4w4Gi2a4gI3H+rp6qIlSRovMNrTOCCktDBRuW067qlsENfcPWmgznsu OW/hUUUgiFPM5vz14SlSVOueBuPVSi2YRgpSIToNyTHNmXbg6Gc6CEi7H7Wjaptx49hQ yhiA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:content-transfer-encoding; bh=mVjOTSEbnv0047r+dfSGGllgLdcHR9TrgyQdZszzaNM=; b=uVDAhRWNQAyi48lq+AG6Rx6/Hs5JkC6tQfyZnNT3h/z9kAtxCQ8a2GlI+BSNkZ4yEi telSvYocYoNSpRBFOp3Z7U9Ndsrt1Y/fhnxaoulJY/Uu/VE6DlNbP2XHpta4/q68mS1X WwOOzBepXH41rkx4ZLUvemZvQDJ6zpiUneVdskg9bISWA5PsRya1tnv7iNv/qDH98gq9 apnJk7yyJjxtXSbuxzYX6EZGxms0XTVQ8hDkbpiNLFttmePn3TC51NXmAw75AkoPWrjj eaSnEm6z7y5NyNvx+HWPcgyb4YWIkLupLmW7Dkfxon0qfymlAWIrosuamWsKhMWo6rC/ dWpQ== X-Gm-Message-State: AOAM531ty90ubfNkKyg1f3pn8Vr5fuV0Iw5n+WSkGxvYBW9NQ6rAFzAu EDA/98Zx3VTP+PWxJf5lVGJ5OnflvEw= X-Google-Smtp-Source: ABdhPJwNcm3FBjm2IBpuo4gMv4km57BbClrV0P01FSHJkzivK7MKtb8OfOczdJbspS0I4rv3Gr0d0g== X-Received: by 2002:ac8:60d4:: with SMTP id i20mr1697648qtm.69.1597406890354; Fri, 14 Aug 2020 05:08:10 -0700 (PDT) Received: from [10.0.10.8] ([65.25.51.0]) by smtp.googlemail.com with ESMTPSA id x57sm10168777qtc.61.2020.08.14.05.08.09 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 14 Aug 2020 05:08:09 -0700 (PDT) Message-ID: <5F367EA9.20809@gmail.com> Date: Fri, 14 Aug 2020 08:08:09 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: "freebsd-questions@freebsd.org" , "freebsd-jail@freebsd.org" Subject: How to steer public traffic to a jail Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BShzH2p5bz4dwt X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=cfazFmt1; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::836 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.40 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.01)[-1.006]; RCVD_COUNT_THREE(0.00)[3]; NEURAL_HAM_MEDIUM(-0.96)[-0.955]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::836:from]; TO_DN_EQ_ADDR_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.43)[-0.435]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RCVD_TLS_ALL(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 12:08:13 -0000 I have 4 registered domain names, one for each jail. How do I get [ALL] public traffic to a domain name directed to the desired jail? From owner-freebsd-questions@freebsd.org Fri Aug 14 12:20:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 137933BE8BA for ; Fri, 14 Aug 2020 12:20:12 +0000 (UTC) (envelope-from 4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSjF56j1kz4fJN for ; Fri, 14 Aug 2020 12:20:09 +0000 (UTC) (envelope-from 4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597407610; x=1599999610; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:to:from:date:x-thread-info; bh=6WyOpGgdOz3LMGC0lDNrWuRmm3rxGvrBHRzmAGq3kpo=; b=dK+Hwd3b1hEA6NIC4tvOcwyyPqm5pRCFIeJ/eFjASme/WHqiXPaGPHsYKN9YUPxwFmvcx8lSZcwRBtt+9aV4SMmCBfKo2WLIcwTCz4nlR6kfVfzNUgZH58UQ88aMSvqKAmkjucbsBNmYm893BxFX1AFpg2Q1/mthUWu12ov18Jk= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg3MGVkMTMuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r1.us-east-1.aws.in.socketlabs.com (r1.us-east-1.aws.in.socketlabs.com [142.0.191.1]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 08:20:08 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.us-east-1.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 08:20:07 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6Ygo-000992-Cy for freebsd-questions@freebsd.org; Fri, 14 Aug 2020 13:20:06 +0100 Date: Fri, 14 Aug 2020 13:20:06 +0100 From: Steve O'Hara-Smith To: freebsd-questions@freebsd.org Subject: Re: How to steer public traffic to a jail Message-Id: <20200814132006.8864951f45baffd383c1a171@sohara.org> In-Reply-To: <5F367EA9.20809@gmail.com> References: <5F367EA9.20809@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSjF56j1kz4fJN X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=dK+Hwd3b; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com X-Spamd-Result: default: False [-2.62 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.09)[-1.088]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; DMARC_NA(0.00)[sohara.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.023]; RCVD_COUNT_THREE(0.00)[4]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.81)[-0.814]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c2000870ed13.706de20cd0058c0f7f40bb8d1acb4523@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 12:20:12 -0000 On Fri, 14 Aug 2020 08:08:09 -0400 Ernie Luzar wrote: > I have 4 registered domain names, one for each jail. How do I get [ALL] > public traffic to a domain name directed to the desired jail? Do you have four public IP addresses to go with them ? If not what sort of "public traffic" are you talking about just http/s or other protocols ? -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Fri Aug 14 12:59:31 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 95F123BF51A for ; Fri, 14 Aug 2020 12:59:31 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qv1-xf32.google.com (mail-qv1-xf32.google.com [IPv6:2607:f8b0:4864:20::f32]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSk6T3Js1z3Rx4 for ; Fri, 14 Aug 2020 12:59:29 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qv1-xf32.google.com with SMTP id l13so4193677qvt.10 for ; Fri, 14 Aug 2020 05:59:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=DfRJCRxmkj5eZyauiMbj2a0/ggSW3trGKxOKyJbd7+M=; b=sM7+G2oBENxOIJ49lYQiq76pfelJGLqsgEoqMkj2tWPLMaV9ZkmG40MDI4l784u7OK xvBGtY283nvHJ4hQ4uWiAOjqcDFFAMhWzqVVl6yZBmxBtSdOtGSAQ8w1qjcXhEC0t8Gf Ej4x6T75p3pRwkgDWRluo1Zt6elgMT/u+7ET5wEEurm9LhZr1zuW2s+wgy60MSE5pH3t DN8ei+On+TAPOjx647xZGd9Vo/X02er52cqUqtxzYa0sZzDTgHfwd+k2LRH4gD4ZjLPB rdekxfZefAIq/inAIc0LRZxVVzVVSV6z0wQNGiof94OnFdG2cm30uQOHiD1Jk+ShmqKG hxjA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=DfRJCRxmkj5eZyauiMbj2a0/ggSW3trGKxOKyJbd7+M=; b=lAm3wbbFyDF3ey0Qyz+Ks+CF5SXg0HdjvZtZuT0v7oc1yiXKjtQXi/jLnLstR5TvCz Ar5ej8Z8DlprZFsBOHRTN/WVqKh1xPi+YBNoLZQcm4FlNHGiUfWVzUvzQrlrTpp1+/iV 16W7EOCG3O9rEO7IJZfOwnZlsFd7+LWhmBw0nzNKY4eKwgq5NaZkEGs71XyQ373KwAUN E7k+TS+Z32ACyDHeolZnn4F/sQwdWePK64qHc6p91cKRUxpaelpeTns4SrCiWGyMg21j 7B6Pxe4sWpXjuLTfRcxVcK9BSXB4Z0/CiwIpxbrBSfXwKeqS4EOYObfSxXgaSxWGg3NJ fTlg== X-Gm-Message-State: AOAM5308W+qt6UUEFeAJ+YH3zbjYSg6KbVNuAGic09StOqYGCg8xSH7F jPDMK1gaCz0X1LioQpagZLE= X-Google-Smtp-Source: ABdhPJyNp5PP0E4LVxxcGlSI5bSFSdBd/zXUcG+wcLuwaO4XvOHLtWzzBUYSFsSrQ09fTE7EYe9tew== X-Received: by 2002:ad4:5349:: with SMTP id v9mr2562966qvs.160.1597409968512; Fri, 14 Aug 2020 05:59:28 -0700 (PDT) Received: from [10.0.10.8] ([65.25.51.0]) by smtp.googlemail.com with ESMTPSA id d8sm10087341qtr.12.2020.08.14.05.59.27 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 14 Aug 2020 05:59:28 -0700 (PDT) Message-ID: <5F368AAF.4090904@gmail.com> Date: Fri, 14 Aug 2020 08:59:27 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: Steve O'Hara-Smith CC: freebsd-questions@freebsd.org, Ernie Luzar Subject: Re: How to steer public traffic to a jail References: <5F367EA9.20809@gmail.com> <20200814132006.8864951f45baffd383c1a171@sohara.org> In-Reply-To: <20200814132006.8864951f45baffd383c1a171@sohara.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSk6T3Js1z3Rx4 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=sM7+G2oB; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::f32 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.54 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.50)[-0.500]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; MID_RHS_MATCH_FROM(0.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.049]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.99)[-0.992]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::f32:from]; FREEMAIL_CC(0.00)[freebsd.org,gmail.com]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 12:59:31 -0000 Steve O'Hara-Smith wrote: > On Fri, 14 Aug 2020 08:08:09 -0400 > Ernie Luzar wrote: > >> I have 4 registered domain names, one for each jail. How do I get [ALL] >> public traffic to a domain name directed to the desired jail? > > Do you have four public IP addresses to go with them ? If not what > sort of "public traffic" are you talking about just http/s or other > protocols ? > [ALL] means everything. Host and each jail have own website, email, ftp, ssh services plus what ever the owner of the jail wants to install. Tagging a port number on the end of the domain name is not a option. Host that jails are on has just single public ipv4 address. My ISP has not enabled ipv6 yet. From owner-freebsd-questions@freebsd.org Fri Aug 14 13:06:47 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B89A03BF7AB for ; Fri, 14 Aug 2020 13:06:47 +0000 (UTC) (envelope-from 4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSkGt4RPyz3SYK for ; Fri, 14 Aug 2020 13:06:46 +0000 (UTC) (envelope-from 4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597410407; x=1600002407; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=BZfvHT5rnB6sNvnCGvqQ+e5KlR9KVpXgijSu5r9tmfw=; b=ag0E+2slbK589pUGxHVvgrIGr4AIr8RsFrNyGFS7OUJlD5TxY/5EXOB1hxF/NPqy/HqgbMBsKolmrXuesFy/B7w6yHQVj2IkCXbLVxzjRdU9CNdWNSAiTCRCky8hXkk71Pr35rHN5FU1i7DRflNHi4Fpi72CtTKhA8v4lF5FXu8= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg3MjIzN2EuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r1.us-east-1.aws.in.socketlabs.com (r1.us-east-1.aws.in.socketlabs.com [142.0.191.1]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 09:06:41 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r1.us-east-1.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 09:06:36 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6ZPm-0009Id-Le; Fri, 14 Aug 2020 14:06:34 +0100 Date: Fri, 14 Aug 2020 14:06:34 +0100 From: Steve O'Hara-Smith To: Ernie Luzar Cc: freebsd-questions@freebsd.org Subject: Re: How to steer public traffic to a jail Message-Id: <20200814140634.495e7e018f683e97b0da3d3d@sohara.org> In-Reply-To: <5F368AAF.4090904@gmail.com> References: <5F367EA9.20809@gmail.com> <20200814132006.8864951f45baffd383c1a171@sohara.org> <5F368AAF.4090904@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSkGt4RPyz3SYK X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=ag0E+2sl; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com X-Spamd-Result: default: False [-2.62 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.07)[-1.071]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; NEURAL_HAM_LONG(-1.00)[-0.999]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; NEURAL_HAM_SHORT(-0.85)[-0.854]; FREEMAIL_TO(0.00)[gmail.com]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c2000872237a.f0e247bf474ba6c74068ba07ed38f58c@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 13:06:47 -0000 On Fri, 14 Aug 2020 08:59:27 -0400 Ernie Luzar wrote: > Steve O'Hara-Smith wrote: > > On Fri, 14 Aug 2020 08:08:09 -0400 > > Ernie Luzar wrote: > > > >> I have 4 registered domain names, one for each jail. How do I get > >> [ALL] public traffic to a domain name directed to the desired jail? > > > > Do you have four public IP addresses to go with them ? If not > > what sort of "public traffic" are you talking about just http/s or other > > protocols ? > > > > [ALL] means everything. OK. > Host and each jail have own website, email, ftp, ssh services plus what > ever the owner of the jail wants to install. For that the jail needs it's own public IP address. > Tagging a port number on the end of the domain name is not a option. No, because you need each one to have ports 21, 22, 25 ... open independently. > Host that jails are on has just single public ipv4 address. In that case there's only one set of public ports. You *can* run some services on non-standard ports but email won't for one. You're SOL unless you can get more public IP addresses to use. > My ISP has not enabled ipv6 yet. If IPv6 addresses will do for public then you can always tunnel an IPv6 connection from Hurricane Electric - it's free and you get a /64 and if you want it a /48 to use. I think they're the only tunnel broker left that still provides tunnels on request. -- Steve O'Hara-Smith | Directable Mirror Arrays C:\>WIN | A better way to focus the sun The computer obeys and wins. | licences available see You lose and Bill collects. | http://www.sohara.org/ From owner-freebsd-questions@freebsd.org Fri Aug 14 13:20:13 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5A3D83BFC8D for ; Fri, 14 Aug 2020 13:20:13 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from oceanview.tundraware.com (oceanview.tundraware.com [45.55.60.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailman.tundraware.com", Issuer "mailman.tundraware.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSkZM6CZxz3T58 for ; Fri, 14 Aug 2020 13:20:11 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [100.108.116.68] (158.sub-174-192-64.myvzw.com [174.192.64.158]) (authenticated bits=0) by oceanview.tundraware.com (8.16.1/8.15.2) with ESMTPSA id 07EDJrEn024692 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Fri, 14 Aug 2020 08:19:54 -0500 (CDT) (envelope-from tundra@tundraware.com) From: Tim Daneliuk To: "Steve O'Hara-Smith" , Polytropon CC: Aryeh Friedman , =?UTF-8?B?QW5kcsOpIEJvb24=?= , FreeBSD Mailing List Date: Fri, 14 Aug 2020 08:19:46 -0500 Message-ID: <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> In-Reply-To: <20200814065701.2b390145ac6d189161bc31b4@sohara.org> References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> User-Agent: AquaMail/1.25.2-1672 (build: 102500008) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end MIME-Version: 1.0 X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (oceanview.tundraware.com [45.55.60.57]); Fri, 14 Aug 2020 08:19:56 -0500 (CDT) X-TundraWare-MailScanner-Information: Please contact the ISP for more information X-TundraWare-MailScanner-ID: 07EDJrEn024692 X-TundraWare-MailScanner: Found to be clean X-TundraWare-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, score=-2.772, required 1, autolearn=not spam, ALL_TRUSTED -1.00, AWL 0.13, BAYES_00 -1.90, HTML_MESSAGE 0.00) X-TundraWare-MailScanner-From: tundra@tundraware.com X-Spam-Status: No X-Rspamd-Queue-Id: 4BSkZM6CZxz3T58 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of tundra@tundraware.com designates 45.55.60.57 as permitted sender) smtp.mailfrom=tundra@tundraware.com X-Spamd-Result: default: False [-0.38 / 15.00]; RCVD_TLS_ALL(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; NEURAL_SPAM_SHORT(0.21)[0.215]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; NEURAL_HAM_LONG(-0.88)[-0.876]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; ARC_NA(0.00)[]; RCPT_COUNT_FIVE(0.00)[5]; RECEIVED_SPAMHAUS_PBL(0.00)[174.192.64.158:received]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DMARC_NA(0.00)[tundraware.com]; NEURAL_HAM_MEDIUM(-0.92)[-0.921]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:14061, ipnet:45.55.32.0/19, country:US]; FREEMAIL_CC(0.00)[gmail.com,andreboon.nl,freebsd.org]; SUSPICIOUS_RECIPS(1.50)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; format=flowed; charset="UTF-8" Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 13:20:13 -0000 On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" wrote >>> > Again many corporate firewalls don't allow ssh out (or in directly) > because tunnelling bypasses the firewalls. And again it seems odd for a > hosting company. ssh out is typically prohibited to lower the risk of employee transfer of sensitive data to external destinations - So called Data Loss Prevention. This, along with email scanning and man in the middle cert management is pretty common. From owner-freebsd-questions@freebsd.org Fri Aug 14 13:40:59 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4581A3C0021 for ; Fri, 14 Aug 2020 13:40:59 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSl2L10rTz3TkV for ; Fri, 14 Aug 2020 13:40:57 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 416ED10276A for ; Fri, 14 Aug 2020 15:40:56 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nlo7n4HyprWh for ; Fri, 14 Aug 2020 15:40:55 +0200 (CEST) Received: from christophs-mbp.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id 9D9AB102769 for ; Fri, 14 Aug 2020 15:40:55 +0200 (CEST) From: Christoph Kukulies Content-Type: multipart/signed; boundary="Apple-Mail=_5E2BC3D4-1572-4B4F-9D24-35C471591DBC"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 15:40:54 +0200 References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> To: User Questions In-Reply-To: <20200814071030.3f319e5a@scorpio.seibercom.net> Message-Id: <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSl2L10rTz3TkV X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [2.01 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ATTACHMENT(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received]; ARC_NA(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.54)[0.537]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.86)[0.862]; RCPT_COUNT_ONE(0.00)[1]; DMARC_NA(0.00)[kukulies.org]; NEURAL_SPAM_LONG(0.71)[0.709]; R_SPF_NA(0.00)[no SPF record] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 13:40:59 -0000 --Apple-Mail=_5E2BC3D4-1572-4B4F-9D24-35C471591DBC Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Fine. There may be many solutions. Actually I=E2=80=99m trying to use = the tools I have nd not buy extra hard- and software. I might also buy a used ISA-bus computer with a VGA Monitor :) FreeBSD always has been a good platform to experiment at low level. Meanwhile I=E2=80=99ve proceeded a bit as can be seen in a previous = post. Only this is a riddle to me: # dd if=3D/dev/fd0 of=3Dfd_dump dd: /dev/fd0: Device not configured 0+0 records in 0+0 records out 0 bytes transferred in 0.000262 secs (0 bytes/sec) Also # cat /dev/fd0 >dump cat: /dev/fd0: Device not configured Why? I recall there were devices like fd.360 fd.1200 fd.1440=20 or some such in earlier times where you could choose the right device. Also using mtools gives me similar messages: # mdir plain_io: Device not configured init A: could not read boot sector Cannot initialize 'A:' =E2=80=94 Christoph > Am 14.08.2020 um 13:10 schrieb Jerry : >=20 > On Fri, 14 Aug 2020 10:10:21 +0100, Steve O'Hara-Smith stated: >> On Fri, 14 Aug 2020 09:42:34 +0200 >> Christoph Kukulies wrote: >>=20 >>> I=E2=80=99m trying to access a 5.25=E2=80=9C floppy disk drive if = anyone here knowing >>> what a =E2=80=9Efloppy=E2=80=9C disk drive is. :) =20 >>=20 >> The last time I used one of those with FreeBSD I installed from >> it, back then it just worked of course. >=20 > I actually had a friend who needed to copy some very old (obviously) > data off of a few 5.25" or 3.5" disks. I don't remember off hand = which. > Anyway, he puirchasded a USB floppy drive (they are very cheap) and > plugged it into the system. I should probably add at this point that = he > was using a Win 10 system. In any case, they system recognized the = drive > and set it up automatically. My friend then proceeded to copy the = files > to the HD. Problem solved, almost. Apparently, not all of the data was > readable off of the disks, they were well over 10 years old. I believe > he was going to try and run SpinRite on the damaged drives and see if > it could recover any data. I have no idea if he ever did, or if it > succeeded. >=20 > In any case, you might find that solution acceptable. >=20 > --=20 > Jerry --Apple-Mail=_5E2BC3D4-1572-4B4F-9D24-35C471591DBC Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MTM0MDU0WjAvBgkqhkiG9w0BCQQxIgQgDSUTi0jyzIwE J1X7XQY29hyCTPw+QW7NLlFjzWinKHEwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQB9Ag7fFSdSMx74InIAZCH32vNI3q2rHAok31+AT+kGLtN2 A9xSwvIyGqzz0HygZNmn1kl/ehrqzAEWhMCdXPpD+mXuVAE0US5ECrh4wNvUyAjoave3Zetp5qC8 3ysX/v1ZB+EbVHQQGcjOT3/79phwSJFJU/8ZLck57hZ5b6llnzIU7EmRdojmBjXWv1WGfHWUR/VU 0tzLZsZtz14tc+ft5VtiKa9qCQLbcajV2Kz6YmaARfdLGCrJZOY8kkSVXO7nLf45+wfuXQ/cR0Vk JoXNPHBkNaA0KeasM5v/uvLYR/WoKZFweuzOyjc3oygO+QB6QIiNs1x/VlaCIomBVDKyAAAAAAAA --Apple-Mail=_5E2BC3D4-1572-4B4F-9D24-35C471591DBC-- From owner-freebsd-questions@freebsd.org Fri Aug 14 13:48:51 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 18AAA3C048E for ; Fri, 14 Aug 2020 13:48:51 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd30.google.com (mail-io1-xd30.google.com [IPv6:2607:f8b0:4864:20::d30]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSlCP6kq4z3TvR for ; Fri, 14 Aug 2020 13:48:49 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd30.google.com with SMTP id h4so10818729ioe.5 for ; Fri, 14 Aug 2020 06:48:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=NB8SOggQRDhsO0CgW6UEsd9su4RVLQg/Y9yEmr4489k=; b=jBJ3ACGSb1CnZeFDbSB5yz9i/El/xdfWh6s+/DyDnQTBFErSZhzMH/Xp44c7buYRbD btuOOepEWY+hd126DsDndEf5IUYwUnjpbr3h/qh8pWYL75ze0t70xQRuuboI4Pcnin8q kdFmF+4u1PvdDjqTmCOW+9z9NZNGtj6xRykM/5hsgEzCGdLYTYqVW87kgF1iV98z3tZH UxJ/Hvr8I3dADPwtJl70HoqIpdgf4FEyazTWWrOBPXgAvqcAavY2KqDF6Op1KUIJpXkK dXF7S0AXUgEclThBOcccb5dOT8D2BpHfg7sAjjvljdeGRBRKwpmdMGCihX3pDgspuTEL cWTA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=NB8SOggQRDhsO0CgW6UEsd9su4RVLQg/Y9yEmr4489k=; b=KJU7H93oX3tpJzZiITw5uLY7kkwYM6Jo9cRBR0qC1hUsJJwmpkRq7yoxrno6W6GPU7 4XuUrWYvSqE+Kaqm9yDqmI1OR6Mnr/MXtTPsbD64m2XF9zpuQIOr0L5J1U1zDlpuPwLe 3Ds6PmRbBux70uvBCb142fcbaHMb2MNWlUAAxW0CVzaBt8JDeZUpEeT1yL6ACL898Py0 DT1Zu2Q+09Yh2H7lc0FMGCncRhJfJK8oV8PeromNSFEm72UfiS7S6hYvHPbNHO4ypt/L 0J3mbemsSYHnmT8RwqlFbsOxg7R+imzaQ1DHhK6fENpFlO+AAZRgNNW1sP5W5Fx6ClrI GyNg== X-Gm-Message-State: AOAM531g8V0RdVa4oo4nxjyNrIm+hnNo3aHzauGZrK1LRXebWxFt8WBk 3oCIrZo0rI00GgGwqjgomm+dzpf0cav97XgmN3E= X-Google-Smtp-Source: ABdhPJyj7+Vp8qQN/YSRxX6RKOSrQ9RXj9uhGu4OyP/sxwHt6zN23GHzfKOBh1QBHcgjmqql0QhNCA04dqFecLCnQsY= X-Received: by 2002:a05:6638:1313:: with SMTP id r19mr2869946jad.60.1597412928320; Fri, 14 Aug 2020 06:48:48 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> In-Reply-To: <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> From: Aryeh Friedman Date: Fri, 14 Aug 2020 09:48:36 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Tim Daneliuk Cc: "Steve O'Hara-Smith" , Polytropon , =?UTF-8?Q?Andr=C3=A9_Boon?= , FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSlCP6kq4z3TvR X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=jBJ3ACGS; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d30 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.34 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.063]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.02)[-1.020]; RCPT_COUNT_FIVE(0.00)[5]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d30:from]; NEURAL_HAM_SHORT(-0.26)[-0.260]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 13:48:51 -0000 On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk wrote: > On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" > wrote > > Again many corporate firewalls don't allow ssh out (or in directly) >> because tunnelling bypasses the firewalls. And again it seems odd for a >> hosting company. >> > > > ssh out is typically prohibited to lower the risk of employee transfer of > sensitive data to external destinations - So called Data Loss Prevention. > This, along with email scanning and man in the middle cert management is > pretty common. > Unless it is 100% air gapped with no ability to plug in portable media and/or record the screen then nothing is 100% immune from such loss and thus not allowing it makes very little sense. If on the other hand the idea is to limit the damage that malware/spyware can do then it makes sense (even if someone does in [accidentally] install malware/spyware it can not send the results of its dirty work anywhere). But for the hosting company in question this seems to not be a concern we have had to clear some accidentally installed bitcoin miner off the windows machine 5 times in the last year even with all these "safeguards". -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 14:15:18 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 9914A3C09FA for ; Fri, 14 Aug 2020 14:15:18 +0000 (UTC) (envelope-from 4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSlnx0SXsz3Vx4 for ; Fri, 14 Aug 2020 14:15:16 +0000 (UTC) (envelope-from 4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597414517; x=1600006517; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=kg046/Bk4ckdX/wNgQfEQM+I/VxCf5ym5MuM+q00nH8=; b=ZDc2WRt1fZ1mHZ5NBO4aFCd4wLK0YJP5ZFWwvQvlGVtaO+X9kcFo4fdzxO1ehH56AjIwmMpjjwrwk5naiMJ/ZVJCCsSAzhvHwmQTtr2VUs3HTe/8CKbAy+FX58MlRGBVr8bDaueymmS2LF4K/MyUqTjTzjGNUWREio+XtfeoHf0= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg3NTNkZmMuZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r3.sg.in.socketlabs.com (r3.sg.in.socketlabs.com [142.0.179.13]) by mxsg2.email-od.com with ESMTP; Fri, 14 Aug 2020 10:15:13 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r3.sg.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 10:15:11 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6aU9-0009VV-LW; Fri, 14 Aug 2020 15:15:09 +0100 Date: Fri, 14 Aug 2020 15:15:09 +0100 From: Steve O'Hara-Smith To: Christoph Kukulies Cc: User Questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> In-Reply-To: <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BSlnx0SXsz3Vx4 X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=ZDc2WRt1; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com X-Spamd-Result: default: False [-2.61 / 15.00]; ARC_NA(0.00)[]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; NEURAL_HAM_MEDIUM(-1.08)[-1.078]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; NEURAL_HAM_LONG(-1.02)[-1.021]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[email-od.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; NEURAL_HAM_SHORT(-0.81)[-0.814]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20008753dfc.c23f8ed3ce1aa52b406dad3e051f499e@email-od.com]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:15:18 -0000 On Fri, 14 Aug 2020 15:40:54 +0200 Christoph Kukulies wrote: > Fine. There may be many solutions. Actually I’m trying to use the tools I > have nd not buy extra hard- and software. > > I might also buy a used ISA-bus computer with a VGA Monitor :) > > FreeBSD always has been a good platform to experiment at low level. > > Meanwhile I’ve proceeded a bit as can be seen in a previous post. Only > this is a riddle to me: > > # dd if=/dev/fd0 of=fd_dump > dd: /dev/fd0: Device not configured Is there a floppy in the drive ? Is it formatted ? Can you test it elsewhere to make sure ? -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Fri Aug 14 14:27:04 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4CD703C0D69 for ; Fri, 14 Aug 2020 14:27:04 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x733.google.com (mail-qk1-x733.google.com [IPv6:2607:f8b0:4864:20::733]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSm3W0RDrz3Wqy for ; Fri, 14 Aug 2020 14:27:02 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x733.google.com with SMTP id 62so8476726qkj.7 for ; Fri, 14 Aug 2020 07:27:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=xqfR1JvmOsy0haXsHSadG69vzeALcKPtfBEeASlqFic=; b=Scf6Vc/Ug7aYchlwmnr2/RlKwaQbZ4y/Z3XJaREBj0eo6uvD20hLLRfaTpW/PGkAcR 5/tbJ8TSKH7NXlk69YsCdyNOyBh2mPEjT/jDT3ZC6TpxQGheFoKwY3JcsZ9GYqG5V0Mj WNIoK+VGXln4yyeowgpyxpBCZf7IS9izAVN/LYKs4iwomRFZxXyvb/+U6fzKpC8wr9HL +GahUNtq/fLaWOJNJuq02AHnnUGQHT2dQvJC7YKxojKWFn6F/q50NFzvbdV4xOCnFFsk qSr7dHwQ6LefRMyBrXFPKeVav/W6NgsPkHCcxeoA9NDusXW8qRxg3riXDMGRT0rXBpLK Yd/A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=xqfR1JvmOsy0haXsHSadG69vzeALcKPtfBEeASlqFic=; b=gRVPof5H35B5qs4OgVi2pMoVprO0yZFqKWJ2IdFSQniLH+tyUAKFEPY7OtST0P4QVU wtD6ipsOheOw8zKG2TKNabTsqLkr1TSUsLG5Wdt3/b7pUF9fxmaZIZga1OA7kSYMYVxW tcOzk+NEF7WY010DjyWR4vXvFdQNLItzfzPxMzj936Hpxgq0+o7wj6+ln0PaX2vobe7g fydhrHmeSqpKP5axB5/j4fpc7dwF/gMXAM4AVdzQRe/56+6btHaNo55o06c9ldjYY3qB r7sC/ZngdZlwFDPw8v3b9oOr9BwDa84iD0OBW43fnLgnvTmFz+6ZDk5g+rrdtKwBBPwQ X0TQ== X-Gm-Message-State: AOAM532dW/Ns6JJ6Ivs1wmEQBKjrh8mR3PibXPxlJ07mC1jTwE3n6Yh0 wevhsWjXSB/q7daeCPu9M6c= X-Google-Smtp-Source: ABdhPJxMvCphwl7tZAWIgb3HjXhli7gs1nwwAefXoVr/QtgS1IqU9pMC42TZQfD9x2+jEn0TiptJxg== X-Received: by 2002:a05:620a:68c:: with SMTP id f12mr2206660qkh.337.1597415221973; Fri, 14 Aug 2020 07:27:01 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id z10sm10443018qtf.24.2020.08.14.07.27.01 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 14 Aug 2020 07:27:01 -0700 (PDT) Message-ID: <5F369F35.2020606@gmail.com> Date: Fri, 14 Aug 2020 10:27:01 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: Steve O'Hara-Smith CC: freebsd-questions@freebsd.org, Ernie Luzar Subject: Re: How to steer public traffic to a jail References: <5F367EA9.20809@gmail.com> <20200814132006.8864951f45baffd383c1a171@sohara.org> <5F368AAF.4090904@gmail.com> <20200814140634.495e7e018f683e97b0da3d3d@sohara.org> In-Reply-To: <20200814140634.495e7e018f683e97b0da3d3d@sohara.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSm3W0RDrz3Wqy X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Scf6Vc/U; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::733 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.59 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.55)[-0.546]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; MID_RHS_MATCH_FROM(0.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.049]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.99)[-0.991]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::733:from]; FREEMAIL_CC(0.00)[freebsd.org,gmail.com]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:27:04 -0000 Steve O'Hara-Smith wrote: > On Fri, 14 Aug 2020 08:59:27 -0400 > Ernie Luzar wrote: > >> Steve O'Hara-Smith wrote: >>> On Fri, 14 Aug 2020 08:08:09 -0400 >>> Ernie Luzar wrote: >>> >>>> I have 4 registered domain names, one for each jail. How do I get >>>> [ALL] public traffic to a domain name directed to the desired jail? >>> Do you have four public IP addresses to go with them ? If not >>> what sort of "public traffic" are you talking about just http/s or other >>> protocols ? >>> >> [ALL] means everything. > > OK. > >> Host and each jail have own website, email, ftp, ssh services plus what >> ever the owner of the jail wants to install. > > For that the jail needs it's own public IP address. > >> Tagging a port number on the end of the domain name is not a option. > > No, because you need each one to have ports 21, 22, 25 ... open > independently. > >> Host that jails are on has just single public ipv4 address. > > In that case there's only one set of public ports. You *can* run > some services on non-standard ports but email won't for one. You're SOL > unless you can get more public IP addresses to use. > >> My ISP has not enabled ipv6 yet. > > If IPv6 addresses will do for public then you can always tunnel an > IPv6 connection from Hurricane Electric - it's free and you get a /64 and > if you want it a /48 to use. I think they're the only tunnel broker left > that still provides tunnels on request. > So what I hear you saying is there is only one set of official port numbers. That any port can only be used one time. [IE; if host is using port 22 then it can not be used in a jail.] This method requires the host firewall to forward the inbound port number to a jails internal private ip address after the fqdn directs the traffic to the hosts single ipv4 address. Which most likely is a home type of ISP account having a dynamic ip address. Another conclusion is that for jails to be the target of public traffic containing their own set of the official port numbers, the host must have multiple public ipv4 address assigned to it with each unique fqdn using one of the public ip address. That means a business type of ISP account which is expensive with additional fees for each additional static ip addresses needed. Is my understanding correct? From owner-freebsd-questions@freebsd.org Fri Aug 14 14:32:38 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F079A3C12A9 for ; Fri, 14 Aug 2020 14:32:38 +0000 (UTC) (envelope-from jon@radel.com) Received: from radel.com (fly.radel.com [70.184.242.170]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.radel.com", Issuer "GoGetSSL RSA DV CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSm9x3yKRz3XBk for ; Fri, 14 Aug 2020 14:32:37 +0000 (UTC) (envelope-from jon@radel.com) X-CGP-ClamAV-Result: CLEAN X-VirusScanner: Niversoft's CGPClamav Helper v1.19.2 (ClamAV engine v0.99.2) X-ExtFilter: Niversoft's DomainKeys Helper DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; d=radel.com; s=20170108.radel; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type; b=ZekfPlsPo4U8K4Z7OxBnJ53FFFjOF6+GvcKRnkoelavZy2R6GSuUViFCOYjcqHFXnB 9JPFCBM1M51ZD9zT1kV+CuKH2KfwztZxHbWlAJkrYzRuZERDU3RsjtJQFBkQE45ztxhp Wek5lAhYb6LS9ydCrDvhNEbCSioSIop3aAbHMlj5Mj6G4s/j8/QIkDHkXMBnKXx/CAT/ VKaIBquO8qeWo74+v4uMkUkjjNBxZ9S+Xewq8tZlU2bjHen79IaYjOQi6KsncDQL3gCL uOJ28dT7cbOKj9HA2c9QnFuV1JQ+FwRgt7YfvvRzfjcw66V1k4yPIS6fsT8WQONZRHH5 P4Jw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=radel.com; s=20170108.radel; t=1597415555; x=1598020355; q=dns/txt; h=Subject:To:References:From:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=yiHSg1Xc7li R3bqj09OjP2jA48jyEw8s/zj7kvFtHFI=; b=M2l3FkkU2/oYxMTPVdD/DLi2T7h q9mSwUoADTC7ycgKkZfwgrzO+Ieer0I24uykJyIZJXNZVHxYJSND+8FqUD/iyPjZ 89zmU4cVbQuwp6y6TwoeS9ary2PQJRmhOYfNQ4TvGEkUFcqlo4Lrcul3tYHKM6tW GNYO3kjVdU7+LqSdnvJw2XLOMAE0qU8m+j+NiqAG5lLMGLLqCzbssHQYufzEV4Ik huLDHzc8+uq3kL5DJGlVPqYfiEUKmcqgv/fumbNcCxIXJrAw1vgmn9Yg7+w+U0il 8t0S/oSFXddsX0xqAAowLV+fJbE573s/lb8ujlKNY5KbDJs7Gvhowl5EliA== Received: from [2001:470:880a:4389:1815:e745:25d3:f224] (account jon@radel.com HELO haralson.local) by radel.com (CommuniGate Pro SMTP 6.1.14 _community_) with ESMTPSA id 2208007 for freebsd-questions@freebsd.org; Fri, 14 Aug 2020 14:32:35 +0000 Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: freebsd-questions@freebsd.org References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> From: Jon Radel Message-ID: <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> Date: Fri, 14 Aug 2020 10:32:33 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms020501090001000806030708" X-Rspamd-Queue-Id: 4BSm9x3yKRz3XBk X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=radel.com header.s=20170108.radel header.b=M2l3FkkU; dmarc=pass (policy=none) header.from=radel.com; spf=pass (mx1.freebsd.org: domain of jon@radel.com designates 70.184.242.170 as permitted sender) smtp.mailfrom=jon@radel.com X-Spamd-Result: default: False [-4.24 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[radel.com:s=20170108.radel]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:70.184.242.160/28]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; TO_DN_NONE(0.00)[]; HFILTER_HELO_IP_A(1.00)[radel.com]; HAS_ATTACHMENT(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.024]; NEURAL_HAM_MEDIUM(-1.06)[-1.063]; DKIM_TRACE(0.00)[radel.com:+]; DMARC_POLICY_ALLOW(-0.50)[radel.com,none]; NEURAL_HAM_SHORT(-0.05)[-0.049]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:22773, ipnet:70.184.240.0/21, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:32:39 -0000 This is a cryptographically signed message in MIME format. --------------ms020501090001000806030708 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Content-Language: en-US On 8/14/20 09:48, Aryeh Friedman wrote: > On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk wr= ote: > >> On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" = >> wrote >> >> Again many corporate firewalls don't allow ssh out (or in directly) >>> because tunnelling bypasses the firewalls. And again it seems odd for= a >>> hosting company. >>> >> >> ssh out is typically prohibited to lower the risk of employee transfer= of >> sensitive data to external destinations - So called Data Loss Preventi= on. >> This, along with email scanning and man in the middle cert management = is >> pretty common. >> > Unless it is 100% air gapped with no ability to plug in portable media > and/or record the screen then nothing is 100% immune from such loss and= > thus not allowing it makes very little sense. If on the other hand th= e > idea is to limit the damage that malware/spyware can do then it makes s= ense > (even if someone does in [accidentally] install malware/spyware it can = not > send the results of its dirty work anywhere). > Untrue.=C2=A0 As the CISO at my latest employer said to me (paraphrasing some, as it's been a while): You and I know how to circumvent the restrictions, but the vast majority of the staff hasn't a clue.=C2=A0 This cuts down the noise I have to wade= through. ----- And back to the main topic of this thread:=C2=A0 What does your lawyer sa= y about your client that is huffing and puffing threats over your inability to perform magic to paper over their unwise contracting actions in regard to a different vendor?=C2=A0 Seems to me that you left = the land of technology a ways back on this one. Actually, better yet, you probably don't want to discuss that on a public list...... Good luck. --=20 --Jon Radel jon@radel.com --------------ms020501090001000806030708 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC C9owggXmMIIDzqADAgECAhBqm+E4O/8ra58B1dm4p1JWMA0GCSqGSIb3DQEBDAUAMIGFMQsw CQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxm b3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDErMCkGA1UEAxMiQ09NT0RPIFJTQSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xMzAxMTAwMDAwMDBaFw0yODAxMDkyMzU5NTla MIGXMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQH EwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE9MDsGA1UEAxM0Q09NT0RP IFJTQSBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6znlesKHZ1QBbHOAOY08YYdiFQ8yV5C0y1oNF9 Olg+nKcxLqf2NHbZhGra0D00SOTq9bus3/mxgUsg/Wh/eXQ0pnp8tZ8XZWAnlyKMpjL+qUBy RjXCA6RQyDMqVaVUkbIr5SU0RDX/kSsKwer3H1pT/HUrBN0X8sKtPTdGX8XAWt/VdMLBrZBl gvnkCos+KQWWCo63OTTqRvaq8aWccm+KOMjTcE6s2mj6RkalweyDI7X+7U5lNo6jzC8RTXtV V4/Vwdax720YpMPJQaDaElmOupyTf1Qib+cpukNJnQmwygjD8m046DQkLnpXNCAGjuJy1F5N ATksUsbfJAr7FLUCAwEAAaOCATwwggE4MB8GA1UdIwQYMBaAFLuvfgI9+qbxPISOre44mOzZ MjLUMB0GA1UdDgQWBBSCr2yM+MX+lmF86B89K3FIXsSLwDAOBgNVHQ8BAf8EBAMCAYYwEgYD VR0TAQH/BAgwBgEB/wIBADARBgNVHSAECjAIMAYGBFUdIAAwTAYDVR0fBEUwQzBBoD+gPYY7 aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPUlNBQ2VydGlmaWNhdGlvbkF1dGhvcml0 eS5jcmwwcQYIKwYBBQUHAQEEZTBjMDsGCCsGAQUFBzAChi9odHRwOi8vY3J0LmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FBZGRUcnVzdENBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au Y29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQB4XLKBKDRPPO5fVs6fl1bsj6JrF/bz 9kkIBtTYLzXN30D+03Hj6OxCDBEaIeNmsBhrJmuubvyE7HtoSmR809AgcYboW+rcTNZ/8u/H v+GTrNI/AhqX2/kiQNxmgUPt/eJPs92Qclj0HnVyy9TnSvGkSDU7I5Px+TbO+88G4zipA2ps ZaWeEykgzClZlPz1FjTCkk77ZXp5cQYYexE6zeeN4/0OqqoAloFrjAF4o50YJafX8mnahjp3 I2Y2mkjhk0xQfhNqbzlLWPoT3m7j7U26u7zg6swjOq8hITYc3/np5tM5aVyu6t99p17bTbY7 +1RTWBviN9YJzK8HxzObXYWBf/L+VGOYNsQDTxAk0Hbvb1j6KjUhg7fO294F29QIhhmiNOr8 4JHoy+fNLpfvYc/Q9EtFOI5ISYgOxLk3nD/whbUe9rmEQXLp8MB933Ij474gwwCPUpwv9mj2 PMnXoc7mbrS22XUSeTwxCTP9bcmUdp4jmIoWfhQm7X9w/Zgddg+JZ/YnIHOwsGsaTUgj7fIv xqith7DoJC91WJ8Lce3CVJqb1XWeKIJ84F7YLXZN0oa7TktYgDdmQVxYkZo1c5noaDKH9Oq9 cbm/vOYRUM1cWcef20Wkyk5S/GFyyPJwG0fR1nRas3DqAf4cXxMiEKcff7PNa4M3RGTqH0pW R8p6EjCCBewwggTUoAMCAQICEHQDryTAYaEsgncP8aGW6o4wDQYJKoZIhvcNAQELBQAwgZcx CzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1Nh bGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNB IENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMB4XDTE4MDMwNDAw MDAwMFoXDTIxMDMwMzIzNTk1OVowgfoxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwUyMjE1MDEL MAkGA1UECBMCVkExFDASBgNVBAcTC1NwcmluZ2ZpZWxkMRowGAYDVQQJExE2OTE3IFJpZGdl d2F5IERyLjEVMBMGA1UEChMMSm9uIFQuIFJhZGVsMTIwMAYDVQQLEylJc3N1ZWQgdGhyb3Vn aCBKb24gVC4gUmFkZWwgRS1QS0kgTWFuYWdlcjEfMB0GA1UECxMWQ29ycG9yYXRlIFNlY3Vy ZSBFbWFpbDESMBAGA1UEAxMJSm9uIFJhZGVsMRwwGgYJKoZIhvcNAQkBFg1qb25AcmFkZWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/dFQxMTnVPcP1TI09m30v8 rSG/VWSFWfFvu/2jzPkNL+ivx6A4LNUbqw4CS73GIKcbp8IrpNQz2oQV6mTv+KVJzJMf8GjA y8EzZjhc2tAXL+Q57omCTuAc6cw2KDYFL0aNWX4CEe/LqfoBDKpJF7HCrwwus55+tTEkAY8j tRkQRMHf47YQVJjD/4pdC/h+7jjI0oSgh1npT7Q3K47g6IkVzjhiH8LCsCSVYaLzRZfgcl3s 0GLE858PV/84l5d/hUVD0u9J2EdKpf+hnFqZnA3qw9R0xFQIE6yOkUvhALw1zxXaiGj0047a gBE2Bhv2UIlj6Q0zPa5kRYDy9vBI6QIDAQABo4IBzTCCAckwHwYDVR0jBBgwFoAUgq9sjPjF /pZhfOgfPStxSF7Ei8AwHQYDVR0OBBYEFHS/Ewun4pYC9Lla5kkmj4zo7tKcMA4GA1UdDwEB /wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggrBgEFBQcDAjBG BgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBTArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3Vy ZS5jb21vZG8ubmV0L0NQUzBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FDbGllbnRBdXRoZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3Js MIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29t L0NPTU9ET1JTQUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kU2VjdXJlRW1haWxDQS5jcnQwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAYBgNVHREEETAPgQ1qb25AcmFk ZWwuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQBUNLBptNFZRBkOUPOCI9TPM6QauLK6jojtbxZO XWvZfKvq8ukWUZTPtaDS5UjsMhlxLf/Crv8HkiVXSzC36cVQyjNjl1u+u/Sbl/6q/TfQk+aK 5jzDd4onQVzlfE33ymtZJgh+4dMPWKuXjRS0OyMLzv3mYCvFO83l1G9rBiaCEfFJHKgVGY1z 3ZU/gsPCQ2a0xf3908lwl5H3SPB3ZzLWDf41o5zV70HXfsgP862KzxU9t46XBGZ8TRl/5fl+ Xj2KQdpyWlNZUS00/UHznxeFO5+bkNaOg24BjwfBOWi0D47CE+6BRWvtrmgciWxefUuYeeIy Qr58KK8DlBCkVF06MYIENTCCBDECAQEwgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJH cmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBD QSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBh bmQgU2VjdXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMA0GCWCGSAFlAwQCAQUAoIIC WTAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0yMDA4MTQxNDMy MzNaMC8GCSqGSIb3DQEJBDEiBCDq4T2662mRqTexyeVoaPEEVClxrETrYwMeQl1zi7Zj2zBs BgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcw DgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEo MIG9BgkrBgEEAYI3EAQxga8wgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVy IE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1p dGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2Vj dXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMIG/BgsqhkiG9w0BCRACCzGBr6CBrDCB lzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMH U2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPTA7BgNVBAMTNENPTU9ETyBS U0EgQ2xpZW50IEF1dGhlbnRpY2F0aW9uIGFuZCBTZWN1cmUgRW1haWwgQ0ECEHQDryTAYaEs gncP8aGW6o4wDQYJKoZIhvcNAQEBBQAEggEAbYthRW3ZC0tHQypnfH4CkdCXGNVvJJEp8eYS no2S5xEhj5pG4/5pJP0cbaWKL2p3pPWG+xSnK/npu8MiIY5Um+4x2IgnLmALT7S7H85OS4gz SXg2dV7F/aBaOiL8v8YYYgljcPAffxrHoEOFWm0ad13mXlY2mj9968I0GEtu276kF5gjhbJ2 UBt2a9xLkfZNLF+rNG0yREfRbaYYenRWMt4zzhbh8kkDUw91Iy+DUAWXM7kbyPvBKfD5LAII wAaQJkOHbX1DRbM8DDCjt00untP1SggeOQfdA+R8C0WHniJzmBpMDB7nzU5Wq64Fw8ddQfyT 86I+w6D4IYUm7dGXdAAAAAAAAA== --------------ms020501090001000806030708-- From owner-freebsd-questions@freebsd.org Fri Aug 14 14:39:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 865A83C14E7 for ; Fri, 14 Aug 2020 14:39:45 +0000 (UTC) (envelope-from freebsd@boosten.org) Received: from smtpq5.tb.mail.iss.as9143.net (smtpq5.tb.mail.iss.as9143.net [212.54.42.168]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSmL81RBwz3WyR for ; Fri, 14 Aug 2020 14:39:43 +0000 (UTC) (envelope-from freebsd@boosten.org) Received: from [212.54.42.136] (helo=smtp12.tb.mail.iss.as9143.net) by smtpq5.tb.mail.iss.as9143.net with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1k6ars-0000tr-Vw; Fri, 14 Aug 2020 16:39:40 +0200 Received: from 84-25-247-31.cable.dynamic.v4.ziggo.nl ([84.25.247.31] helo=smtp.boosten.org) by smtp12.tb.mail.iss.as9143.net with esmtp (Exim 4.90_1) (envelope-from ) id 1k6ars-0003o1-Ps; Fri, 14 Aug 2020 16:39:40 +0200 Received: from amon.boosten.org (amon.boosten.org [192.168.13.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.boosten.org (Postfix) with ESMTPSA id E0C462669A; Fri, 14 Aug 2020 16:39:39 +0200 (CEST) From: freebsd@boosten.org Message-Id: Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\)) Subject: Re: How to steer public traffic to a jail Date: Fri, 14 Aug 2020 16:39:39 +0200 In-Reply-To: <5F369F35.2020606@gmail.com> Cc: Steve O'Hara-Smith , freebsd-questions@freebsd.org To: Ernie Luzar References: <5F367EA9.20809@gmail.com> <20200814132006.8864951f45baffd383c1a171@sohara.org> <5F368AAF.4090904@gmail.com> <20200814140634.495e7e018f683e97b0da3d3d@sohara.org> <5F369F35.2020606@gmail.com> X-Mailer: Apple Mail (2.3608.80.23.2.2) X-SourceIP: 84.25.247.31 X-Ziggo-spambar: / X-Ziggo-spamscore: 0.0 X-Ziggo-spamreport: CMAE Analysis: v=2.4 cv=Nr5vz+RJ c=1 sm=1 tr=0 ts=5f36a22c a=JWBJsaPp29SgP5DpYRBqZw==:17 a=y4yBn9ojGxQA:10 a=GMdr-ebMbBBKievfqDMA:9 a=6wLkPguPRl-uNFCL:21 a=b2FeGbFBTzZxGtum:21 a=QEXdDO2ut3YA:10 a=tf5L89vpwRYZ5JGV:21 a=_W_S_7VecoQA:10 X-Ziggo-Spam-Status: No X-Spam-Status: No X-Spam-Flag: No X-Rspamd-Queue-Id: 4BSmL81RBwz3WyR X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.57 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[boosten.org:s=myselector]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.54.42.168:from]; RCPT_COUNT_THREE(0.00)[3]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:212.54.32.0/19]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; NEURAL_HAM_LONG(-1.01)[-1.010]; NEURAL_HAM_MEDIUM(-1.07)[-1.065]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; DKIM_TRACE(0.00)[boosten.org:+]; DMARC_POLICY_ALLOW(-0.50)[boosten.org,quarantine]; FROM_NO_DN(0.00)[]; NEURAL_HAM_SHORT(-0.89)[-0.893]; RECEIVED_SPAMHAUS_PBL(0.00)[84.25.247.31:received]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:33915, ipnet:212.54.32.0/20, country:NL]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[212.54.42.168:from] Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:39:45 -0000 >=20 >=20 > So what I hear you saying is there is only one set of official port = numbers. That any port can only be used one time. [IE; if host is using = port 22 then it can not be used in a jail.]=20 You can use a port only once _per IP address_. In a VNET configuration = you can assign each jail a unique IP address. In your case that should = be a non-rfc1918 address. If it were only for web- and email traffic you could go with one public = IP address and routing/reverse proxying. Peter =E2=80=94 It never hurts to help =E2=80=94 Eek! From owner-freebsd-questions@freebsd.org Fri Aug 14 14:44:48 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8D5D63C1814 for ; Fri, 14 Aug 2020 14:44:48 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSmRz4807z3XVg for ; Fri, 14 Aug 2020 14:44:47 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2b.google.com with SMTP id t15so11043738iob.3 for ; Fri, 14 Aug 2020 07:44:47 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=2nZlCClzQrzrZzQelx5+TVZRJ+ou1d1K2y9Z36hr3iI=; b=sRY5IFRwITjU6GkUI59CtloByt7EPXsRaqrgAuZsniV3Vmh4mPfpb8kaOqr3aB84v9 NUAr6mXLo2jyKib872bIjuY5pQ35sr8nwh5zqnzdgN1qTqkvCkZAW0JssK6oSPBOlgO/ c362IjeX51IwazE9JWe5PqKYn9+IH61hBAv7M1xUHQYnP2kqLWEC20CYuDnTjU2oXpTK wcCujLu7O9CnFbIOO+gXfFbRZZqpSLg1CWUc04x9Re0twOym8Mf5oLg1gtQ4m4h0wxVY Ek6RjxKfY6gn9kcDl4Rcihc3hj9T1Gf9tA4/jbySMOlQzbXwTW2zUAGwnIt7D9VecpKD U9Tw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=2nZlCClzQrzrZzQelx5+TVZRJ+ou1d1K2y9Z36hr3iI=; b=gTeNzasfw+iBfouO9HQBHJsU2KO/WcmKxDzaiuORUoslNWCN9ZZ0sQW19Tf6zoY86A +cN7Dyf65VzDrfHstw64CSnxuOHhj15eMteBeZq9ftGFmxgksp2nADUk8v4s9PxwLYi4 f51bC4t65DYMWfZq6/j0gC3nakgxCKa0LWamq/dI3540AH75wDNl+eilN1B4IhPg6uqL SXyec3gb1k561+bA3UO6UZ2iC34KGhCpbCSGEMlQazK2qHbbixmeqm96A0bFQ8MDH+re hJ5+k2R5w7sfPJzjidG60kSTjm+Ma/So4KCw4kxNk9OUt8832FUIl04D2bFcvsm4HIGP XJnw== X-Gm-Message-State: AOAM533fUuU12IAaRbEabQmgDDtDwdPC2s93Ihj3v13+Nc0JEE5OX5F8 HTWHw/b/Ov+0KBYnA7ETJobXZV4HPe2gR4Uyngi4/fLC2G8= X-Google-Smtp-Source: ABdhPJzTBMzCZBaOfq8BYz1DSXew4uScjBXQySGhUtDmrISEjUmv6fl2P2lo4jHTxq0P8hBS9ddB0iUswqRsyxj7SVk= X-Received: by 2002:a02:c789:: with SMTP id n9mr3004754jao.40.1597416286769; Fri, 14 Aug 2020 07:44:46 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> In-Reply-To: <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> From: Aryeh Friedman Date: Fri, 14 Aug 2020 10:44:35 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Jon Radel Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSmRz4807z3XVg X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=sRY5IFRw; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2b as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.53 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.056]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.008]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2b:from]; NEURAL_HAM_SHORT(-0.46)[-0.464]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:44:48 -0000 On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: > On 8/14/20 09:48, Aryeh Friedman wrote: > > On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk > wrote: > > > >> On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" > >> wrote > >> > >> Again many corporate firewalls don't allow ssh out (or in directly) > >>> because tunnelling bypasses the firewalls. And again it seems odd for a > >>> hosting company. > >>> > >> > >> ssh out is typically prohibited to lower the risk of employee transfer > of > >> sensitive data to external destinations - So called Data Loss > Prevention. > >> This, along with email scanning and man in the middle cert management is > >> pretty common. > >> > > Unless it is 100% air gapped with no ability to plug in portable media > > and/or record the screen then nothing is 100% immune from such loss and > > thus not allowing it makes very little sense. If on the other hand the > > idea is to limit the damage that malware/spyware can do then it makes > sense > > (even if someone does in [accidentally] install malware/spyware it can > not > > send the results of its dirty work anywhere). > > > Untrue. As the CISO at my latest employer said to me (paraphrasing > some, as it's been a while): > > You and I know how to circumvent the restrictions, but the vast majority > of the staff hasn't a clue. This cuts down the noise I have to wade > through. > Oh great security by obfuscation! Sounds like the CSIO missed the first day of security 101. False sense of security is always a bad idea. > > ----- > > And back to the main topic of this thread: What does your lawyer say > about your client that is huffing and puffing threats over your > inability to perform magic to paper over their unwise contracting > actions in regard to a different vendor? Seems to me that you left the > land of technology a ways back on this one. > Actually the client has signed the one piece of paper we needed to move forward which is a waiver of liability for stuff we said was inherently risky (in writing) before we started the work. It should also be noted that due to lack of competance by the hosting company and by the equipment supplier we have become the client's defecto IT dept. Even though we were originally hired as programmers only (this means when push comes to shove the client almost always trusts us over anyone else and for the most part "I will find someone else '' is just his lack of social graces and not an actual threat). Also as stated before the client is currently grandfathered into the older config the hosting company uses and thus we don't need to do magic to do the work. The concern is if the hosting company starts insisting that the grandfathering was "incorrect" and thus attempting to gather 3rd party evidence they are being idiots and this thread is just one such piece of evidence and thus still very relevant. > Actually, better yet, you probably don't want to discuss that on a > public list...... > If *YOU* think it doesn't belong on the list just come out and say it. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 14:58:05 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C7B483C16F8; Fri, 14 Aug 2020 14:58:05 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x729.google.com (mail-qk1-x729.google.com [IPv6:2607:f8b0:4864:20::729]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSmlJ2Z2Kz3YGw; Fri, 14 Aug 2020 14:58:04 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x729.google.com with SMTP id l64so8563596qkb.8; Fri, 14 Aug 2020 07:58:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=9JLYkLOw8KLRHmp2KJi8l6ry2YarCOScBps7yvpl/m8=; b=L9l5QOb4veJvmnzTNMJUtBPKq0BOpxgZwFpHWzwl8ZZM+CJT9+8NpZaT7759Hw31g0 rMk828cwcWdqTngYZHCd3OnzB0/ALxQgPKbQPAho1frOjkFvBkSd8lRXDFb/NkTZiTYQ mlC2FhTNfwE6DVB7DqQ+PvqE1s79TRG4iG7hjL6+FUjlHTrETYFxL0KbxXgPsT1tgGJo synm5aSQxq9Jr0dzOxYpspl7M/k7VgbgRZj3CUAvjqQX2ohTP0WY0lpmuGxiHYBAg0Ec 7miwDWTwqbTgca8TgFVgg4IMVn/pyO/PuGAVMntpE2TGl2m3oZqNdiIfcBXwFJNgYJ1l Co+Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=9JLYkLOw8KLRHmp2KJi8l6ry2YarCOScBps7yvpl/m8=; b=KsoMMUEfsmNw+Lx5tmwCC3virWXHNW6Q8UEt0zK66/Jr9X2pk7ngvyx9tS1gsrdDKl lR5V+qR7WvfbuHj4IFXWQ2OcVM461SKqDVx5JEmMHafiujNB4fR9vGEKt2gInvOqdgrc 0j83yfIUl5O7O2AO65WDtxf2diklwVwmmf2upv5a2HMJfCx3NwaTev/8VwoEy6jnHQzt UEbskIuLnClFzeGci4KSQc5eAuwwYfh4fq2iduiNBZxfswqsl1U6W4lv8BN5WSS797qp 6PXDNFh1XAjHSB+pHzkk/WI4V8pVwjeKNubCP8qSlLJeAw0rmVOh3MqOq0Ja6pTU+wd9 SR0g== X-Gm-Message-State: AOAM532GfWQg+unW57RE7dTmhjM627cGS00LE7FVEVXmKPsfIyGz7mcO puHwQmTT+vZq0HuN6FQugJo= X-Google-Smtp-Source: ABdhPJwgg7lrxMW+gJpBVMQglQ2XX6+KVIDo5E7Ijp3iZQflbAqm/1nPIbk7Y3tThSVlhEUqqNCA7Q== X-Received: by 2002:a37:7dc2:: with SMTP id y185mr2346608qkc.381.1597417083140; Fri, 14 Aug 2020 07:58:03 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id s4sm10090703qtn.34.2020.08.14.07.58.02 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 14 Aug 2020 07:58:02 -0700 (PDT) Message-ID: <5F36A67B.1040408@gmail.com> Date: Fri, 14 Aug 2020 10:58:03 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: =?ISO-8859-1?Q?Carsten_B=E4cker?= CC: "freebsd-questions@freebsd.org" , "freebsd-jail@freebsd.org" Subject: Re: How to steer public traffic to a jail References: <5F367EA9.20809@gmail.com> <8984b35b-7c48-32ee-5bd0-e29c9439c890@gmx.de> In-Reply-To: <8984b35b-7c48-32ee-5bd0-e29c9439c890@gmx.de> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BSmlJ2Z2Kz3YGw X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=L9l5QOb4; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::729 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.39 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.35)[-0.353]; FREEMAIL_TO(0.00)[gmx.de]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.03)[-1.033]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-1.00)[-1.000]; MIME_GOOD(-0.10)[text/plain]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::729:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 14:58:05 -0000 Carsten Bäcker wrote: > Hi, > > you may want to have a look into reverse proxying, e.g. using nginx on > your jail-host. > Really basic example: > > |http { server { listen 80; server_name your.1st.domain.com; location / > { proxy_pass http://127.0.1.2; } } server { listen 80; server_name > your.2nd.domain.com; location / { proxy_pass http://127.0.1.3; } } }| > This looks interesting. When does nginx see the packet, before the firewall or after the firewall passes it through? Employing this concept each unique domain name is the element used to target the jails private ip address. Would need a server clause for each port number/domain name targeting each jail. This would work for port 21, 22, 23, 25 From owner-freebsd-questions@freebsd.org Fri Aug 14 15:17:36 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2CF5C3C2316 for ; Fri, 14 Aug 2020 15:17:36 +0000 (UTC) (envelope-from 4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com) Received: from s1-b0c6.socketlabs.email-od.com (s1-b0c6.socketlabs.email-od.com [142.0.176.198]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSn9q1mL1z3ZCH for ; Fri, 14 Aug 2020 15:17:34 +0000 (UTC) (envelope-from 4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com) DKIM-Signature: v=1; a=rsa-sha256; d=email-od.com;i=@email-od.com;s=dkim; c=relaxed/relaxed; q=dns/txt; t=1597418255; x=1600010255; h=content-transfer-encoding:content-type:mime-version:references:in-reply-to:message-id:subject:cc:to:from:date:x-thread-info; bh=v+Pwp94kn5eqCNLWeW0zJo6rKSqcfFfYfe7aQRb7YvE=; b=Vy5R7c70/k+Ya2mRKrzE6zx0qrDuTjJBU13kR50Eq/gq0s+ksvvsPMxT1Xo3Gk8fQSi7BaoP1+wZN1CbVrDEb5k/UiDl3FCjbPxqMASz8N+1OA6OReBkrRNmuXjND7JFkycMHpV2R4TW6Xmg4pz0nd+TYBPEToQ0lWEtS/axkVQ= X-Thread-Info: NDI1MC45Mi4xZDRjMjAwMDg3NjY0ODguZnJlZWJzZC1xdWVzdGlvbnM9ZnJlZWJzZC5vcmc= Received: from r2.us-east-1.aws.in.socketlabs.com (r2.us-east-1.aws.in.socketlabs.com [142.0.191.2]) by mxsg2.email-od.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 11:17:29 -0400 Received: from smtp.lan.sohara.org (EMTPY [185.202.17.215]) by r2.us-east-1.aws.in.socketlabs.com with ESMTP(version=Tls12 cipher=Aes256 bits=256); Fri, 14 Aug 2020 11:17:27 -0400 Received: from [192.168.63.1] (helo=steve.lan.sohara.org) by smtp.lan.sohara.org with smtp (Exim 4.94 (FreeBSD)) (envelope-from ) id 1k6bSQ-0009kB-Ao; Fri, 14 Aug 2020 16:17:26 +0100 Date: Fri, 14 Aug 2020 16:17:26 +0100 From: Steve O'Hara-Smith To: Ernie Luzar Cc: Carsten =?UTF-8?B?QsOkY2tlcg==?= , "freebsd-questions@freebsd.org" , "freebsd-jail@freebsd.org" Subject: Re: How to steer public traffic to a jail Message-Id: <20200814161726.972dcb71499c7129fe672836@sohara.org> In-Reply-To: <5F36A67B.1040408@gmail.com> References: <5F367EA9.20809@gmail.com> <8984b35b-7c48-32ee-5bd0-e29c9439c890@gmx.de> <5F36A67B.1040408@gmail.com> X-Mailer: Sylpheed 3.7.0 (GTK+ 2.24.32; amd64-portbld-freebsd12.0) X-Clacks-Overhead: "GNU Terry Pratchett" Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BSn9q1mL1z3ZCH X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=email-od.com header.s=dkim header.b=Vy5R7c70; dmarc=none; spf=pass (mx1.freebsd.org: domain of 4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com designates 142.0.176.198 as permitted sender) smtp.mailfrom=4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com X-Spamd-Result: default: False [-2.47 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; R_SPF_ALLOW(-0.20)[+ip4:142.0.176.0/20]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[email-od.com:+]; NEURAL_HAM_SHORT(-0.72)[-0.718]; FREEMAIL_TO(0.00)[gmail.com]; FORGED_SENDER(0.30)[steve@sohara.org,4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:7381, ipnet:142.0.176.0/22, country:US]; FROM_NEQ_ENVFROM(0.00)[steve@sohara.org,4250.82.1d4c20008766488.c6a15d5713ebb3299694d0509a3d0cd6@email-od.com]; MID_RHS_MATCH_FROM(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.065]; R_DKIM_ALLOW(-0.20)[email-od.com:s=dkim]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-0.99)[-0.989]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[sohara.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[142.0.176.198:from]; RWL_MAILSPIKE_VERYGOOD(0.00)[142.0.176.198:from]; FREEMAIL_CC(0.00)[gmx.de,freebsd.org] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 15:17:36 -0000 On Fri, 14 Aug 2020 10:58:03 -0400 Ernie Luzar wrote: > Carsten Bäcker wrote: > > Hi, > > > > you may want to have a look into reverse proxying, e.g. using nginx on > > your jail-host. > > Really basic example: > > > > |http { server { listen 80; server_name your.1st.domain.com; location / > > { proxy_pass http://127.0.1.2; } } server { listen 80; server_name > > your.2nd.domain.com; location / { proxy_pass http://127.0.1.3; } } }| > > > > This looks interesting. Think again - this is HTTP proxying only. It's great for that but useless for anything else. I use a similar mechanism to serve multiple domains from one http server. > Employing this concept each unique domain name is the element used to > target the jails private ip address. Yes but it only works because there is an HTTP header with the hostname in it and nginx knows how to read HTTP. > Would need a server clause for each port number/domain name targeting > each jail. > > This would work for port 21, 22, 23, 25 No only 80 and then only if the protocol is HTTP and if the clients send the necessary HTTP header (I haven't seen one that didn't in decades). -- Steve O'Hara-Smith From owner-freebsd-questions@freebsd.org Fri Aug 14 15:41:49 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5229D3C274C for ; Fri, 14 Aug 2020 15:41:49 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSnjm1xpVz3bCj for ; Fri, 14 Aug 2020 15:41:48 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: less "there is no -l option" Message-Id: <548D7ED2-9BEA-4B73-9F86-5597AB305B29@kreme.com> Date: Fri, 14 Aug 2020 09:41:45 -0600 To: FreeBSD X-Mailer: Apple Mail (2.3652.0.5.2.1) X-Rspamd-Queue-Id: 4BSnjm1xpVz3bCj X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Spamd-Result: default: False [-0.75 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.96)[-0.957]; FROM_HAS_DN(0.00)[]; MISSING_MIME_VERSION(2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; R_SPF_ALLOW(-0.20)[+mx]; DMARC_NA(0.00)[kreme.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.99)[-0.989]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.40)[-0.401]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:209, ipnet:65.112.0.0/12, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[65.121.55.42:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 15:41:49 -0000 When executing the less I get an error from less: ce # less 20200814-093500.36786.2.trace There is no -l option ("less --help" for help) - (press RETURN) then the less command continues # which less /usr/bin/less # less --version There is no -l option ("less --help" for help) less 530 (POSIX regular expressions) Copyright (C) 1984-2017 Mark Nudelman less comes with NO WARRANTY, to the extent permitted by law. For information about the terms of redistribution, see the file named README in the less distribution. Homepage: http://www.greenwoodsoftware.com/less # echo "$LESS\n$PAGER\n$MANPAGER" less -esXFR less -esXFR less -esXFR This is new behavior in the last few days, and the less binary dates = from nearly a year ago. --=20 The difference between science fiction and fantasy in this world is not any of the elaborate rules that you hear. The difference is simply this: Science Fiction has rivets, Fantasy has trees. -Orson Scott Card From owner-freebsd-questions@freebsd.org Fri Aug 14 15:46:03 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0D1743C2C80 for ; Fri, 14 Aug 2020 15:46:03 +0000 (UTC) (envelope-from tomek@cedro.info) Received: from mail-wr1-x436.google.com (mail-wr1-x436.google.com [IPv6:2a00:1450:4864:20::436]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSnpd1JDzz3bZb for ; Fri, 14 Aug 2020 15:46:00 +0000 (UTC) (envelope-from tomek@cedro.info) Received: by mail-wr1-x436.google.com with SMTP id p20so8770905wrf.0 for ; Fri, 14 Aug 2020 08:46:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cedro.info; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=lhIL9ATtlf8RGITu0WagNF4K4a6/01vFHmu7LMRPMtY=; b=BgNm75XSeSc/NLgqJY7CCChEbOZwBDgBAPOMiFcf6AlNIvWybTtbImfveLPPfZh1zY 6ii3WRaI+/DNdEYQPvUfWqBt4TZfVx4b/alzoo0QrI02uA91YeO5Lvk3xcjrVrjLR2l2 QnI4kHNpwqkdS/0YKzQ5h2MIWEcKJrwWc45kbSs57B2e2zhdE0rAPZJ9RzYOZxsCae6j t7dCV8RmPMnXStoi77AkPyLjrhc91hTUVWY6T1QujNOcnHp4H2qLLPYPb9Rrw9lHmlzt hYkIjJewyBWSGmmmqhB2qVeYoSFKRHrOr2U7wE93N+DKq1wV5yR2eGOhM/JYQu/3lIX0 SdCQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=lhIL9ATtlf8RGITu0WagNF4K4a6/01vFHmu7LMRPMtY=; b=QLNdXSeTOK3spqdtJlZSwJ9umqiOog3+VAbQyTFpaxksRf0UE9QqzJ38gwRt1O7Dns S7Lg1BxNHCmUouYm5N3CFW2Bk/dJI8iEx2o0u637m9CPkFh75iv8VjHFas20qFFN5LAC u0MmRH5uCh3zpnv1JaW9v2Oy5m0zdFUDqK+7+zhZ28OO6yw6HWduTyRruSNCJr9OkgPF vEUwoNx7XGoa8xvgid9qsEuzqhukgYhpVFPPyutlCSu4ZFddzncnn7RqPDmqhByu1Sni Af7Dgd/B6O9IHhRIQKZE/IIxXf/lA0BFih0hHUvCKaUqJMaXOIHcUT7oWwcp5bLvSbbN YJvA== X-Gm-Message-State: AOAM5310LKC5NADFTFYWzplcPLK07qtB8jhD9NWLoxfDoMeL8EAtr8Wo b14NllSOEu5C3+yMci2q/ShDSziO6lQRG8TWIV0ekXxvess= X-Google-Smtp-Source: ABdhPJxuGmdf+QsGD140Vh79El9Gj3LbVGUCpEivWrqUrEaUd9t95PKtw7PDgqwnFhIZxaXhohg7kUEdsswt4nQM6/M= X-Received: by 2002:a5d:538d:: with SMTP id d13mr3246837wrv.400.1597419959498; Fri, 14 Aug 2020 08:45:59 -0700 (PDT) MIME-Version: 1.0 References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> In-Reply-To: <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> From: Tomasz CEDRO Date: Fri, 14 Aug 2020 17:45:47 +0200 Message-ID: Subject: Re: 5.25" Floppy disk drive not recognized To: "Steve O'Hara-Smith" Cc: Christoph Kukulies , User Questions X-Rspamd-Queue-Id: 4BSnpd1JDzz3bZb X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cedro.info header.s=google header.b=BgNm75XS; dmarc=none; spf=none (mx1.freebsd.org: domain of tomek@cedro.info has no SPF policy when checking 2a00:1450:4864:20::436) smtp.mailfrom=tomek@cedro.info X-Spamd-Result: default: False [-2.73 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.020]; R_DKIM_ALLOW(-0.20)[cedro.info:s=google]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-0.98)[-0.977]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[cedro.info]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[cedro.info:+]; NEURAL_HAM_SHORT(-0.43)[-0.430]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::436:from]; R_SPF_NA(0.00)[no SPF record]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 15:46:03 -0000 Is floppy drive still available? Was it supposed to be removed..? -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info From owner-freebsd-questions@freebsd.org Fri Aug 14 16:01:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 93A3C3C2B59 for ; Fri, 14 Aug 2020 16:01:16 +0000 (UTC) (envelope-from ml@netfence.it) Received: from soth.netfence.it (net-2-44-121-52.cust.vodafonedsl.it [2.44.121.52]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mailserver.netfence.it", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSp8C34qqz3bnf for ; Fri, 14 Aug 2020 16:01:14 +0000 (UTC) (envelope-from ml@netfence.it) Received: from alamar.ventu (alamar.local.netfence.it [10.1.2.18]) (authenticated bits=0) by soth.netfence.it (8.15.2/8.15.2) with ESMTPSA id 07EG13nU064509 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO) for ; Fri, 14 Aug 2020 18:01:06 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: soth.netfence.it: Host alamar.local.netfence.it [10.1.2.18] claimed to be alamar.ventu Subject: Re: Complete idiots guide to virtualize Android with bhyve To: freebsd-questions@freebsd.org References: <2FpLnblcS8dY17rDqJi-ACKQ4qXa5A6M7LZjQ2xv79zjqXLj9-jCTMZes_SU1glRZmJ8BtpIp5IJDT0dBNBq5fWf_6vBDexQ_UqivFWS7Hk=@dstev.xyz> <20200805091331.4b52af5c@archlinux> From: Andrea Venturoli Message-ID: Date: Fri, 14 Aug 2020 18:01:03 +0200 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: <20200805091331.4b52af5c@archlinux> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSp8C34qqz3bnf X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=pass (policy=none) header.from=netfence.it; spf=pass (mx1.freebsd.org: domain of ml@netfence.it designates 2.44.121.52 as permitted sender) smtp.mailfrom=ml@netfence.it X-Spamd-Result: default: False [-2.89 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:2.44.121.52]; MIME_GOOD(-0.10)[text/plain]; HAS_XAW(0.00)[]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.99)[-0.990]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_SHORT(-0.06)[-0.059]; DMARC_POLICY_ALLOW(-0.50)[netfence.it,none]; NEURAL_HAM_MEDIUM(-1.04)[-1.043]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:30722, ipnet:2.44.0.0/16, country:IT]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 16:01:16 -0000 On 2020-08-05 09:13, Ralf Mardorf wrote: > it doesn't make sense to install an operating system that doesn't > fit the users needs and then to emulate a mobile phone on that > operating system, to run the required applications. That is the most > worst mismanagement possible in the first place. Well, I think there are situation in which virtualizing Android does make sense. I need a desktop system 99% of the time, but I have an Android app (*) that I'd need to run occasionally. (*) Not Zoom. It's an app that shouldn't probably exist in the first place, but so it is. > You are using an operating system not providing what you actually > need, No, I'm using an operating system which gives me 99% of what I need. > so to workaround the wrong choice done in the first place, you > consider to use a virtual machine, but not to run the most useful guest > for your purpose, instead you consider to try the most freakish > "solution". No again. Really. Unfortunately that app is available for Android and iOS, so it's not a matter of "freak". > Why not running iOS or iPadOS as virtualbox guest? Licensing issues, I guess. Is it possible to run those OSes freely? To come up with something costructive, I've never run Android on bhyve, but I have on VirtualBox: performance is horrible, there are no guest additions, but it works for an occasional use. bye av. From owner-freebsd-questions@freebsd.org Fri Aug 14 16:14:11 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 2AB713C3132 for ; Fri, 14 Aug 2020 16:14:11 +0000 (UTC) (envelope-from dwilde1@gmail.com) Received: from mail-pf1-x431.google.com (mail-pf1-x431.google.com [IPv6:2607:f8b0:4864:20::431]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSpR603qKz3cjD for ; Fri, 14 Aug 2020 16:14:09 +0000 (UTC) (envelope-from dwilde1@gmail.com) Received: by mail-pf1-x431.google.com with SMTP id m8so4790512pfh.3 for ; Fri, 14 Aug 2020 09:14:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-transfer-encoding:content-language; bh=HCHVWvOLnvJfR6C4nvkfaXrm5D7MdtT7DvtpgM1eVsk=; b=Kg0yv+G+EmTbgmtr5t0s8qfu1P2m7A6fcQXCD3kI/tYDoRVUBL9ICUBuAoyb9eDj+n M041uTl+kE/Rf/p1GDsmiNsQa7Q5xCz8P+3/KARitA4tH7TsvrspL3nv4fA9QzxOA0hn r1GiiRWWVMkkHI6S0akws4w/hfDteq0y+sLU5LbXoiok4iRZsCSV28lV61bgeeOpKK2r U05fgM/I7w7V8wRGjppOBEYRq/0hJFzQIbvGBnpwFbqcVzuxZooPZIc4iZ9f8aADak/G cg/7QwJpqQ/GQsyNuXkE1XPJ35ScJoO834m7ItbqjP+1kEJd7i1/uLq6hF8GnOmnSasu sDzw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=HCHVWvOLnvJfR6C4nvkfaXrm5D7MdtT7DvtpgM1eVsk=; b=YztYpOhk7oaDlu3NcUHVyfQZTJezoU0z1qPvnHyDnB0hl1pCLFiE2LnaH1MTOjZNIq Ln5mUFUvpyuCwU2Tmli3DpQL0D4uHFJ+D2nQ5/4iSgHcMOhMsraXkBHn62YBU9Wgn1Z5 uo1kkbOKLihVpKVnjoWyEkDMjTaPfkPU+psHhnEush5DSgT8Mnc2c0ZDsrDnnw1570SA 9oDcfEiG/V5Zmiv6V/imA+i6DlK101T53gzeaofbZTiESiWS5rbrWFBCNFZLIwIme0bG nCPWdRMx50PzO5Na/mTqnzbDYXwJ2DZ6MBuzFti+OaYbjsUoNC2Za8LY+pk/DX6Z+rdy zqFg== X-Gm-Message-State: AOAM530PKzJbudV7FPqvt0VA/Pa3Qg9OTyZtQaGkoQ87DpcXv8PWcA/P OxJMtRz0C5lRQfOtVat9Ag5xGihsQuCYfA== X-Google-Smtp-Source: ABdhPJwhqNZJt/1EMDghGZF2zGsC8/naNdiPOhGgA/Lmn41uaZ3wX37ILqe6zrPsGfDDDrx2BiZjiA== X-Received: by 2002:aa7:8285:: with SMTP id s5mr2327659pfm.226.1597421647765; Fri, 14 Aug 2020 09:14:07 -0700 (PDT) Received: from [192.168.0.4] (184-98-145-89.phnx.qwest.net. [184.98.145.89]) by smtp.gmail.com with ESMTPSA id y9sm3061821pgp.77.2020.08.14.09.14.06 for (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 14 Aug 2020 09:14:07 -0700 (PDT) Subject: Re: 5.25" Floppy disk drive not recognized To: freebsd-questions@freebsd.org References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> From: Don Wilde Message-ID: <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> Date: Fri, 14 Aug 2020 09:14:05 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-Rspamd-Queue-Id: 4BSpR603qKz3cjD X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=Kg0yv+G+; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of dwilde1@gmail.com designates 2607:f8b0:4864:20::431 as permitted sender) smtp.mailfrom=dwilde1@gmail.com X-Spamd-Result: default: False [-2.94 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RECEIVED_SPAMHAUS_PBL(0.00)[184.98.145.89:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.98)[-0.984]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.99)[-0.988]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_SPAM_SHORT(0.03)[0.032]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::431:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 16:14:11 -0000 On 8/14/20 8:45 AM, Tomasz CEDRO wrote: > Is floppy drive still available? Was it supposed to be removed..? It's still in the GENERIC kernel configuration. Disk Doctors, if you have one local, should be able to tell you whether the diskette itself is readable and formatted. > -- > CeDeROM, SQ7MHZ, http://www.tomek.cedro.info > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" -- Don Wilde **************************************************** * What is the Internet of Things but a system * * of systems including humans? * **************************************************** From owner-freebsd-questions@freebsd.org Fri Aug 14 16:26:39 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BA42D3C36BD for ; Fri, 14 Aug 2020 16:26:39 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSpjV2sWWz3dJR for ; Fri, 14 Aug 2020 16:26:38 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 42F7210276A; Fri, 14 Aug 2020 18:26:37 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P6r1NmO76V6F; Fri, 14 Aug 2020 18:26:36 +0200 (CEST) Received: from christophs-mbp.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id BD637102769; Fri, 14 Aug 2020 18:26:36 +0200 (CEST) From: Christoph Kukulies Message-Id: <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> Content-Type: multipart/signed; boundary="Apple-Mail=_D04ECBE1-810A-4B85-A332-551357BD32D9"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 18:26:36 +0200 In-Reply-To: Cc: Steve O'Hara-Smith , User Questions To: Tomasz CEDRO References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSpjV2sWWz3dJR X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [1.17 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; MV_CASE(0.50)[]; SIGNED_SMIME(-2.00)[]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; HAS_ATTACHMENT(0.00)[]; DMARC_NA(0.00)[kukulies.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.60)[0.597]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_SPAM_LONG(0.15)[0.149]; NEURAL_SPAM_SHORT(0.53)[0.528]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 16:26:39 -0000 --Apple-Mail=_D04ECBE1-810A-4B85-A332-551357BD32D9 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 What do you mean by =E2=80=9Efloppy drive still available=E2=80=9C? Yes, floppy is in the drive. The select light goes lit when I issue the = dd command. I don=E2=80=99t have any other place to test it, unless I buy me an old = PC. > Am 14.08.2020 um 17:45 schrieb Tomasz CEDRO : >=20 > Is floppy drive still available? Was it supposed to be removed..? removed? >=20 > -- > CeDeROM, SQ7MHZ, http://www.tomek.cedro.info =E2=80=94 Christoph --Apple-Mail=_D04ECBE1-810A-4B85-A332-551357BD32D9 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MTYyNjM2WjAvBgkqhkiG9w0BCQQxIgQgVhUw8lcthIu/ wHRCAAdX/1glPsnqTOJNLVXK/JVnMUgwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQCnrwrRZE2T1Xq/bKJhAvmigxhKo9pLA4nTO7AbTFopdLld L7BuMCcw9Xi6IYXlOnoqpWAYVMYz1/Qy39asgj5rJecaoY9PjBkiX5AD7tkaKy7FVltpnPen18Vq pLFPF1iMgiK59FI2/cMDNuYYT0zolovEZf9JqlDtdP8c8ZoECZLoGsocidFa/RDGPfkBTG/W0GdS g60n2B3nAr4GYtHbhZiqshPw1pvQ/FLR8mVnirRQc/kgx3C4PJ0w+/1Z7uD7E57c3KuYtaSxREgl 5B0mGKzH6PvOS5y94+EU20uwH5e9D9kCMORRwlyR30fp87kD6HeCIrR+JQIfUYS4x7SXAAAAAAAA --Apple-Mail=_D04ECBE1-810A-4B85-A332-551357BD32D9-- From owner-freebsd-questions@freebsd.org Fri Aug 14 16:34:33 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 635E13C3894 for ; Fri, 14 Aug 2020 16:34:33 +0000 (UTC) (envelope-from tomek@cedro.info) Received: from mail-wm1-x32e.google.com (mail-wm1-x32e.google.com [IPv6:2a00:1450:4864:20::32e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSptc2Qhsz3dYD for ; Fri, 14 Aug 2020 16:34:32 +0000 (UTC) (envelope-from tomek@cedro.info) Received: by mail-wm1-x32e.google.com with SMTP id p14so7973567wmg.1 for ; Fri, 14 Aug 2020 09:34:32 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cedro.info; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=9hUtvX7RmWLIz80GQXs0IrMgpaPPNoH2/uiG+KJFORk=; b=IxYcf2awlZtyNoFngIXlPqiVz9qdRrHwlfdeL9Jgthm1HvDbeiz5OebUOw7iz+DSTG tRUdAlucrxA7tMSHK6d+OdObN9HXYstlG7C30NkviRdFPr0CNtvoPnMon139eDBWanzk VOfeJeOSt+joIJnYob3SEFC5ESoExElhEb3KTn8T9KVeH84tQZDFJv/IF4uU9R+nz2je HyiCaZnzZH5VYOmC1Hp9QjgIp26i5isQ6BHkuIY+U/etsJnAyDHwHD/a4SjCzlrrwSQh PEjjQuLBjS5Ik4eDksgGLNfY4OeSl8I6dYHO9JVLABWMKMno2908hf9qqhgbvF7jH0eo 4gdg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=9hUtvX7RmWLIz80GQXs0IrMgpaPPNoH2/uiG+KJFORk=; b=JuXGfZdMC8UXH7SJJerG5SfsjDfBVstGVma3Z5LzYUsGCY/qnDal8aAFbN2B3vFRme 2yVgTXO2rNcvIMmYGXZK7CVMEhELwFhj78ofAydUMeYozO8xpEh8FrKO1mF3vSFGZqzk av7f+riOc4a9TVKCBqaR2o3gzQ0a49jAFWcv+sgHZgvHTOFxVudJg2gTCNEr4dinyQ6n xTRjmmAswI2rgZyUElpQVeSliKBtOQXgEyucBeW46FHfU3WcmNxEo9+aBnQ5/ymm3L3n q3zfstvwJ00swHrWOOzMWpObAoDLn3BpSJK+AnE/erAa4dDaEmBEKYper0b8rdnJOeSM 7Zmg== X-Gm-Message-State: AOAM533ASrBmUPhOgPLBfMJIIqvd6quh7iPT0uaeYcgBJn3vCry8oXqf DQRp1yJD/o5ALt4hKr29kg/uXqowbm+I0ef/kPAvhg== X-Google-Smtp-Source: ABdhPJzY1G4v/0ezKsI7AZZZf9ZpVUEEr6eYnIBFu9m76iXYs5WzGZL8doSCXqaqajkZyLD3EzTKF1wz4gxELuQgVtU= X-Received: by 2002:a1c:e0c2:: with SMTP id x185mr3209665wmg.124.1597422869514; Fri, 14 Aug 2020 09:34:29 -0700 (PDT) MIME-Version: 1.0 References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> In-Reply-To: <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> From: Tomasz CEDRO Date: Fri, 14 Aug 2020 18:34:15 +0200 Message-ID: Subject: Re: 5.25" Floppy disk drive not recognized To: Don Wilde Cc: FreeBSD Questions Mailing List , Christoph Kukulies , "Steve O'Hara-Smith" Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4BSptc2Qhsz3dYD X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cedro.info header.s=google header.b=IxYcf2aw; dmarc=none; spf=none (mx1.freebsd.org: domain of tomek@cedro.info has no SPF policy when checking 2a00:1450:4864:20::32e) smtp.mailfrom=tomek@cedro.info X-Spamd-Result: default: False [-2.33 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.96)[-0.960]; R_DKIM_ALLOW(-0.20)[cedro.info:s=google]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; NEURAL_HAM_LONG(-0.94)[-0.940]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[cedro.info]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[cedro.info:+]; NEURAL_HAM_SHORT(-0.13)[-0.130]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::32e:from]; R_SPF_NA(0.00)[no SPF record]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 16:34:33 -0000 On Fri, Aug 14, 2020 at 6:14 PM Don Wilde wrote: > On 8/14/20 8:45 AM, Tomasz CEDRO wrote: > > Is floppy drive still available? Was it supposed to be removed..? > It's still in the GENERIC kernel configuration. Disk Doctors, if you > have one local, should be able to tell you whether the diskette itself > is readable and formatted. Good news, thank you :-) There was a discussion somewhere around 2017 to remove it.. I am glad floppies are still here and will stay here :-) I am fan of retro computers and this may come handy :-) https://lists.freebsd.org/pipermail/freebsd-arch/2017-December/018681.html -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info From owner-freebsd-questions@freebsd.org Fri Aug 14 17:11:39 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AE73A3C3C46 for ; Fri, 14 Aug 2020 17:11:39 +0000 (UTC) (envelope-from moridin@mm.st) Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSqjQ6lFKz3fvm for ; Fri, 14 Aug 2020 17:11:38 +0000 (UTC) (envelope-from moridin@mm.st) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id 9E2E55C018B; Fri, 14 Aug 2020 13:06:02 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Fri, 14 Aug 2020 13:06:02 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mm.st; h=subject :to:references:from:message-id:date:mime-version:in-reply-to :content-type:content-transfer-encoding; s=fm1; bh=BJDEI6alzylFW h2qoupKQMSqHeQNQS7pCU/Y4SAMsAk=; b=msTGVl3tdVflE022lTfXuY7KL6h4C EmU7d9RU6pTRkNMBCTfBfxCtgZHEIyRaTdjMlwKdqosZ2ef8DWQi5k7D5z7W+nB5 Xu7rygqwci3tODsoTrupQi1JlTnv2aP70hvCkZfL8jMJGufEWAaPdQAYtUKZkQmk IKju3xdhMkM9ICfatC1DWjLeLA5OEyB8xxAhxojSGnn1ovuiiAFVOg1ExA+Nn5Bo /UEGrVx7mcqB+g8W28zspxX/POdcAJzF5H9j9Cl5AxruFLixmBJdHmlPE8siTnx8 sZCREAJHB5T2XyMofUpg15DOgrmMrKf9lASYFzwCNy8mQfl9cfV98lCDA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=BJDEI6alzylFWh2qoupKQMSqHeQNQS7pCU/Y4SAMs Ak=; b=HpQikrOFS176jE1uiCLdp9WquIAHrOJJd2bNNezkgXiR0lA0fbt0SrgAS MRndFjQ/I77ZsLcEk6pGSFsyVvjOHwzBOmKG7MNAHR3O7W01DtIrpaH9qe06b8ng d/F0ATEmOyPdwpncy4DH9zcgKTxro8+VXYubbzmoJpww3hJ4LDDNHZQBU+NhHGIj LZHuR8GPu0R4ls1NR7o48VXP5+BfGcNftxOz/T0/CfuZ+2BHton2gW/7o/YOi/fr 89byXz0On5GZSx3qQOULA2K9txvXQWFv7wFhM9oPnP/sfiKunDz6PCCbnZsNxaGY lJZwujbZvDSk8xzsf/QWe80CVrGCA== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrleejgddutdegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefuvfhfhffkffgfgggjtgfgsehtje ertddtfeejnecuhfhrohhmpehmohhrihguihhnsehmmhdrshhtnecuggftrfgrthhtvghr nhepvdduieffkedtjeeigeejteekffevvdekhffgudduudffudduhffggefhvefhueffne cuffhomhgrihhnpehgrhgvvghnfihoohgushhofhhtfigrrhgvrdgtohhmnecukfhppeel uddrvdegtddruddvgedrudegfeenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmh epmhgrihhlfhhrohhmpehmohhrihguihhnsehmmhdrshht X-ME-Proxy: Received: from [192.168.1.6] (unknown [91.240.124.143]) by mail.messagingengine.com (Postfix) with ESMTPA id C1BF3306005F; Fri, 14 Aug 2020 13:06:01 -0400 (EDT) Subject: Re: less "there is no -l option" To: "@lbutlr" , FreeBSD References: <548D7ED2-9BEA-4B73-9F86-5597AB305B29@kreme.com> From: moridin@mm.st Message-ID: Date: Fri, 14 Aug 2020 20:05:36 +0300 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.1.1 MIME-Version: 1.0 In-Reply-To: <548D7ED2-9BEA-4B73-9F86-5597AB305B29@kreme.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSqjQ6lFKz3fvm X-Spamd-Bar: ++++++++++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=mm.st header.s=fm1 header.b=msTGVl3t; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=HpQikrOF; dmarc=pass (policy=none) header.from=mm.st; spf=pass (mx1.freebsd.org: domain of moridin@mm.st designates 66.111.4.28 as permitted sender) smtp.mailfrom=moridin@mm.st X-Spamd-Result: default: False [10.09 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[66.111.4.28:from]; R_SPF_ALLOW(0.00)[+ip4:66.111.4.28:c]; FREEMAIL_FROM(0.00)[mm.st]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[mm.st:+,messagingengine.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(0.00)[mm.st,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[mm.st]; ASN(0.00)[asn:11403, ipnet:66.111.4.0/24, country:US]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[66.111.4.28:from]; ARC_NA(0.00)[]; RECEIVED_SPAMHAUS_XBL(5.00)[91.240.124.143:received]; R_DKIM_ALLOW(0.00)[mm.st:s=fm1,messagingengine.com:s=fm3]; RECEIVED_SPAMHAUS_CSS(4.00)[91.240.124.143:received]; NEURAL_SPAM_SHORT(0.08)[0.082]; MIME_GOOD(-0.10)[text/plain]; NEURAL_SPAM_MEDIUM(0.92)[0.917]; BAD_REP_POLICIES(0.10)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.19)[0.188]; FROM_NO_DN(0.00)[]; GREYLIST(0.00)[pass,body] X-Spam: Yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 17:11:39 -0000 @lbutlr wrote: > When executing the less I get an error from less: > > ce # less 20200814-093500.36786.2.trace > There is no -l option ("less --help" for help) > - (press RETURN) > > then the less command continues > > # which less > /usr/bin/less > # less --version > There is no -l option ("less --help" for help) > less 530 (POSIX regular expressions) > Copyright (C) 1984-2017 Mark Nudelman > > less comes with NO WARRANTY, to the extent permitted by law. > For information about the terms of redistribution, > see the file named README in the less distribution. > Homepage: http://www.greenwoodsoftware.com/less > > # echo "$LESS\n$PAGER\n$MANPAGER" > less -esXFR This is the source of the problem, LESS variable needs to contain only the options: $ which less /usr/bin/less $ less Missing filename ("less --help" for help) $ LESS="less -esXFR" less There is no -l option ("less --help" for help) Missing filename ("less --help" for help) > less -esXFR > less -esXFR > > This is new behavior in the last few days, and the less binary dates from nearly a year ago. > > > From owner-freebsd-questions@freebsd.org Fri Aug 14 17:13:24 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id F1B193C429F for ; Fri, 14 Aug 2020 17:13:24 +0000 (UTC) (envelope-from jon@radel.com) Received: from radel.com (fly.radel.com [70.184.242.170]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.radel.com", Issuer "GoGetSSL RSA DV CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSqlN1YNTz3gSk for ; Fri, 14 Aug 2020 17:13:19 +0000 (UTC) (envelope-from jon@radel.com) X-CGP-ClamAV-Result: CLEAN X-VirusScanner: Niversoft's CGPClamav Helper v1.19.2 (ClamAV engine v0.99.2) X-ExtFilter: Niversoft's DomainKeys Helper DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; d=radel.com; s=20170108.radel; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type; b=NVQbKL8px85fnKfXFQLQdHAXqJo36/L30mEm7ehtQ1E1V73TnNe0NWTs2zXa5VD6wW dKhMT9ItaZIRSa2S0DhJ+Z9Voc/hPyWJSMheAJ2LCrW+7GXKdSXR3jFxdk8DLIMkUA4G hXEhmFMuI5JUMmGYb3vJ1AQMDAHe85eWlU4kUrxDaSfB6FZYr6CZh6b9pzj742JbUPhD h7cnTRr+h5JdrCzlcvPKVr/liiHpKFQlyHaMKbWJTGA40pEcbYhtVIpo1dmF063f6EMN 5NkbBNGjWVc+OOm7wSt8yR2JTdlw3mFt+R1FFniH2JKhE0qgzzTljPcWq7cXwIqh0HYS jcdQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=radel.com; s=20170108.radel; t=1597425198; x=1598029998; q=dns/txt; h=Subject:To:References:From:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=qcddYJlvK0n ziRJvCdOQOBJjU5l4dr+QRwF27SH7FmM=; b=hOU4u8QJgRSrz/dl+vGYKQD+sr2 b4L5ygIOjGrDI5GA3dL/PrrxCmYsV+2AJquJ2ljJeyquyhaAeoK0NdWlNEhR2V0w 1+N6bb527aOyEfgmRn68MYgq+FlwQybDWSG2Q6paaYKBm4PERntmebOXU8UNgbBw TSHBf4wX3MyidGmVUC8F9LJSyTWIu3EDNO8sXLs2BAwgLVz/1QTvE96TdvW5vhv8 DbNjXs6lmR64wcZG3NVwCufn1Ar6nzw2RvT+0VrYQJ5qN87K0kMY/qBXDvFkPiXi N9EhJ+y7yiMQArPCyIeRhYybG+XgasLRQLvYnuCSJ6tvQVlg0U3qOQxqMxg== Received: from [2001:470:880a:4389:1815:e745:25d3:f224] (account jon@radel.com HELO haralson.local) by radel.com (CommuniGate Pro SMTP 6.1.14 _community_) with ESMTPSA id 2208126 for freebsd-questions@freebsd.org; Fri, 14 Aug 2020 17:13:18 +0000 Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: freebsd-questions@freebsd.org References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> From: Jon Radel Message-ID: Date: Fri, 14 Aug 2020 13:13:17 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms070809010209080808000107" X-Rspamd-Queue-Id: 4BSqlN1YNTz3gSk X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=radel.com header.s=20170108.radel header.b=hOU4u8QJ; dmarc=pass (policy=none) header.from=radel.com; spf=pass (mx1.freebsd.org: domain of jon@radel.com designates 70.184.242.170 as permitted sender) smtp.mailfrom=jon@radel.com X-Spamd-Result: default: False [-4.29 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[radel.com:s=20170108.radel]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:70.184.242.160/28]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; TO_DN_NONE(0.00)[]; HFILTER_HELO_IP_A(1.00)[radel.com]; HAS_ATTACHMENT(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.018]; NEURAL_HAM_MEDIUM(-1.07)[-1.067]; DKIM_TRACE(0.00)[radel.com:+]; DMARC_POLICY_ALLOW(-0.50)[radel.com,none]; NEURAL_HAM_SHORT(-0.10)[-0.103]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:22773, ipnet:70.184.240.0/21, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 17:13:25 -0000 This is a cryptographically signed message in MIME format. --------------ms070809010209080808000107 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Content-Language: en-US On 8/14/20 10:44, Aryeh Friedman wrote: > On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: > >> On 8/14/20 09:48, Aryeh Friedman wrote: >>> Unless it is 100% air gapped with no ability to plug in portable medi= a >>> and/or record the screen then nothing is 100% immune from such loss a= nd >>> thus not allowing it makes very little sense. If on the other hand = the >>> idea is to limit the damage that malware/spyware can do then it makes= >>> sense (even if someone does in [accidentally] install malware/spyware= it can >>> not send the results of its dirty work anywhere). >>> >> Untrue. As the CISO at my latest employer said to me (paraphrasing >> some, as it's been a while): >> >> You and I know how to circumvent the restrictions, but the vast majori= ty >> of the staff hasn't a clue. This cuts down the noise I have to wade >> through. >> > Oh great security by obfuscation! Sounds like the CSIO missed the firs= t > day of security 101. False sense of security is always a bad idea. > I'm a bit unclear on how a frank admission that the controls can be circumvented translates, in your head at least, into a false sense of security. The playground is a bit bigger than the technical sandbox where you appear, and I most certainly am, most comfortable.=C2=A0 The CISO also ha= s to be comfortable hanging out with the compliance lawyers behind the shed at the far end of playground, not to mention keeping HR happy. If you write a policy document, implement controls that make "accidental" circumvention of the policy difficult, while still keeping a close eye on what else the staff is doing, you can: 1.=C2=A0 Reduce the noise of having to track unthinking, largely innocent= violations and endless, tedious discussions about who deserves to be fired.=C2=A0 2.=C2=A0 Reduce the plausible deniability of the actual attempts to cause= harm to the company, now that actual "tricky" actions are required to circumvent controls that give you big warnings in your browser, making for much better confidence in making termination decisions and/or taking legal action. None of this particularly has anything to do with the technology. >> Actually, better yet, you probably don't want to discuss that on a >> public list...... >> > If *YOU* think it doesn't belong on the list just come out and say it. > > You may be under the impression that our interests are aligned on this one.=C2=A0 Personally, I'd find blow-by-blow updates on how your lawyer freaks on finding that you are discussing his/her strategy on the Internet, tidbits on the suit against you claiming torturous interference by the hosting provider you've been bad-mouthing for days and have now named, and the general unraveling of your contract, amusing reading.=C2=A0 (Others here probably feel differently, but they can speak= for themselves--I suspect the sensible ones have already killed this thread.)=C2=A0 If you think that was a mealy mouthed way for me to say th= at I'd prefer you'd stop discussing this, you'd be most mistaken.=C2=A0 I wa= s just trying to suggest, given that I'm not malevolent enough to wish all that on you solely for my amusement, that you consider how much of your laundry, with some mighty amusing and suggestive stains showing, you wish to air in public.=C2=A0 That's all. Oh, and thanks for caring enough to check me out on LinkedIn.=C2=A0 ;-) --=20 --Jon Radel jon@radel.com --------------ms070809010209080808000107 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC C9owggXmMIIDzqADAgECAhBqm+E4O/8ra58B1dm4p1JWMA0GCSqGSIb3DQEBDAUAMIGFMQsw CQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxm b3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDErMCkGA1UEAxMiQ09NT0RPIFJTQSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xMzAxMTAwMDAwMDBaFw0yODAxMDkyMzU5NTla MIGXMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQH EwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE9MDsGA1UEAxM0Q09NT0RP IFJTQSBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6znlesKHZ1QBbHOAOY08YYdiFQ8yV5C0y1oNF9 Olg+nKcxLqf2NHbZhGra0D00SOTq9bus3/mxgUsg/Wh/eXQ0pnp8tZ8XZWAnlyKMpjL+qUBy RjXCA6RQyDMqVaVUkbIr5SU0RDX/kSsKwer3H1pT/HUrBN0X8sKtPTdGX8XAWt/VdMLBrZBl gvnkCos+KQWWCo63OTTqRvaq8aWccm+KOMjTcE6s2mj6RkalweyDI7X+7U5lNo6jzC8RTXtV V4/Vwdax720YpMPJQaDaElmOupyTf1Qib+cpukNJnQmwygjD8m046DQkLnpXNCAGjuJy1F5N ATksUsbfJAr7FLUCAwEAAaOCATwwggE4MB8GA1UdIwQYMBaAFLuvfgI9+qbxPISOre44mOzZ MjLUMB0GA1UdDgQWBBSCr2yM+MX+lmF86B89K3FIXsSLwDAOBgNVHQ8BAf8EBAMCAYYwEgYD VR0TAQH/BAgwBgEB/wIBADARBgNVHSAECjAIMAYGBFUdIAAwTAYDVR0fBEUwQzBBoD+gPYY7 aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPUlNBQ2VydGlmaWNhdGlvbkF1dGhvcml0 eS5jcmwwcQYIKwYBBQUHAQEEZTBjMDsGCCsGAQUFBzAChi9odHRwOi8vY3J0LmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FBZGRUcnVzdENBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au Y29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQB4XLKBKDRPPO5fVs6fl1bsj6JrF/bz 9kkIBtTYLzXN30D+03Hj6OxCDBEaIeNmsBhrJmuubvyE7HtoSmR809AgcYboW+rcTNZ/8u/H v+GTrNI/AhqX2/kiQNxmgUPt/eJPs92Qclj0HnVyy9TnSvGkSDU7I5Px+TbO+88G4zipA2ps ZaWeEykgzClZlPz1FjTCkk77ZXp5cQYYexE6zeeN4/0OqqoAloFrjAF4o50YJafX8mnahjp3 I2Y2mkjhk0xQfhNqbzlLWPoT3m7j7U26u7zg6swjOq8hITYc3/np5tM5aVyu6t99p17bTbY7 +1RTWBviN9YJzK8HxzObXYWBf/L+VGOYNsQDTxAk0Hbvb1j6KjUhg7fO294F29QIhhmiNOr8 4JHoy+fNLpfvYc/Q9EtFOI5ISYgOxLk3nD/whbUe9rmEQXLp8MB933Ij474gwwCPUpwv9mj2 PMnXoc7mbrS22XUSeTwxCTP9bcmUdp4jmIoWfhQm7X9w/Zgddg+JZ/YnIHOwsGsaTUgj7fIv xqith7DoJC91WJ8Lce3CVJqb1XWeKIJ84F7YLXZN0oa7TktYgDdmQVxYkZo1c5noaDKH9Oq9 cbm/vOYRUM1cWcef20Wkyk5S/GFyyPJwG0fR1nRas3DqAf4cXxMiEKcff7PNa4M3RGTqH0pW R8p6EjCCBewwggTUoAMCAQICEHQDryTAYaEsgncP8aGW6o4wDQYJKoZIhvcNAQELBQAwgZcx CzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1Nh bGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNB IENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMB4XDTE4MDMwNDAw MDAwMFoXDTIxMDMwMzIzNTk1OVowgfoxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwUyMjE1MDEL MAkGA1UECBMCVkExFDASBgNVBAcTC1NwcmluZ2ZpZWxkMRowGAYDVQQJExE2OTE3IFJpZGdl d2F5IERyLjEVMBMGA1UEChMMSm9uIFQuIFJhZGVsMTIwMAYDVQQLEylJc3N1ZWQgdGhyb3Vn aCBKb24gVC4gUmFkZWwgRS1QS0kgTWFuYWdlcjEfMB0GA1UECxMWQ29ycG9yYXRlIFNlY3Vy ZSBFbWFpbDESMBAGA1UEAxMJSm9uIFJhZGVsMRwwGgYJKoZIhvcNAQkBFg1qb25AcmFkZWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/dFQxMTnVPcP1TI09m30v8 rSG/VWSFWfFvu/2jzPkNL+ivx6A4LNUbqw4CS73GIKcbp8IrpNQz2oQV6mTv+KVJzJMf8GjA y8EzZjhc2tAXL+Q57omCTuAc6cw2KDYFL0aNWX4CEe/LqfoBDKpJF7HCrwwus55+tTEkAY8j tRkQRMHf47YQVJjD/4pdC/h+7jjI0oSgh1npT7Q3K47g6IkVzjhiH8LCsCSVYaLzRZfgcl3s 0GLE858PV/84l5d/hUVD0u9J2EdKpf+hnFqZnA3qw9R0xFQIE6yOkUvhALw1zxXaiGj0047a gBE2Bhv2UIlj6Q0zPa5kRYDy9vBI6QIDAQABo4IBzTCCAckwHwYDVR0jBBgwFoAUgq9sjPjF /pZhfOgfPStxSF7Ei8AwHQYDVR0OBBYEFHS/Ewun4pYC9Lla5kkmj4zo7tKcMA4GA1UdDwEB /wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggrBgEFBQcDAjBG BgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBTArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3Vy ZS5jb21vZG8ubmV0L0NQUzBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FDbGllbnRBdXRoZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3Js MIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29t L0NPTU9ET1JTQUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kU2VjdXJlRW1haWxDQS5jcnQwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAYBgNVHREEETAPgQ1qb25AcmFk ZWwuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQBUNLBptNFZRBkOUPOCI9TPM6QauLK6jojtbxZO XWvZfKvq8ukWUZTPtaDS5UjsMhlxLf/Crv8HkiVXSzC36cVQyjNjl1u+u/Sbl/6q/TfQk+aK 5jzDd4onQVzlfE33ymtZJgh+4dMPWKuXjRS0OyMLzv3mYCvFO83l1G9rBiaCEfFJHKgVGY1z 3ZU/gsPCQ2a0xf3908lwl5H3SPB3ZzLWDf41o5zV70HXfsgP862KzxU9t46XBGZ8TRl/5fl+ Xj2KQdpyWlNZUS00/UHznxeFO5+bkNaOg24BjwfBOWi0D47CE+6BRWvtrmgciWxefUuYeeIy Qr58KK8DlBCkVF06MYIENTCCBDECAQEwgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJH cmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBD QSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBh bmQgU2VjdXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMA0GCWCGSAFlAwQCAQUAoIIC WTAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0yMDA4MTQxNzEz MTdaMC8GCSqGSIb3DQEJBDEiBCAFuJkLvNGsFRdNVXm67crQBKP5bYdfc2Ozu3hXb9E0szBs BgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcw DgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEo MIG9BgkrBgEEAYI3EAQxga8wgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVy IE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1p dGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2Vj dXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMIG/BgsqhkiG9w0BCRACCzGBr6CBrDCB lzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMH U2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPTA7BgNVBAMTNENPTU9ETyBS U0EgQ2xpZW50IEF1dGhlbnRpY2F0aW9uIGFuZCBTZWN1cmUgRW1haWwgQ0ECEHQDryTAYaEs gncP8aGW6o4wDQYJKoZIhvcNAQEBBQAEggEAZyN6SHX7s9BajQgJrCZ+XPFuhzbJTH2x6h9B uyRR0IdRTdK6OjB4cVQKxeTo6Nzo0LMHyaVjydw2pfEJYdXmlrHoARwB8RdZ3GneH7XJo6v7 OdR2pTX67jOzMMpwJ3gu34VdOHqjgLG2XAr1qhjVDv+kyYYcI8597lp+wR1iU44TX2SjmZ1e RCiehQ2vdWb7+xXNVGWjUGmxw9W7Y4aur1H5594yeNcy1nwuP4kP1dfBfQxZuWX+vuja6rnA lO3zbyIBKy0ch4J/6AsH1hszdCPxngofdh8seNCdhakM7F5ObZZbRP5mylDN5c6F7A9dFwwl PDVAgQy9Z8HEorC5EwAAAAAAAA== --------------ms070809010209080808000107-- From owner-freebsd-questions@freebsd.org Fri Aug 14 17:49:01 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C065D3C47EC for ; Fri, 14 Aug 2020 17:49:01 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from oceanview.tundraware.com (oceanview.tundraware.com [45.55.60.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailman.tundraware.com", Issuer "mailman.tundraware.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSrXX5166z3yd6 for ; Fri, 14 Aug 2020 17:49:00 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [192.168.0.2] (ozzie.tundraware.com [75.145.138.73]) (authenticated bits=0) by oceanview.tundraware.com (8.16.1/8.15.2) with ESMTPSA id 07EHlbkC029666 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Fri, 14 Aug 2020 12:47:37 -0500 (CDT) (envelope-from tundra@tundraware.com) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: freebsd-questions@freebsd.org References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> From: Tim Daneliuk Autocrypt: addr=tundra@tundraware.com; prefer-encrypt=mutual; keydata= xsFNBFlVgYoBEADIYD9W4mbKz5cEleX923hagDWkxyJl4kRiMJnz+dNAH71MItSdErMb0cFt CPxVncb4dR4R2ec0c0MjPcgVINNtbY1DMWsF7t31TKD8NG9ZjLqF6fZDFjgkRejqHytgjmCI UejrMSCf0UJsLtg+I3N1ZVVxd7ALj2bCvC/uc5S7j+YbNnhQvSoBbdFj/xOTjyOGGpk7WfB7 e42PGKq1NSgnI7tcY6HSaSH+LHeoc0yUpBb5A1ge+RhR1N9JTniEFe0qvOBi+HgUltEoxsk4 xb6IhpkDOTsxHvEg5h0ukfl8kG9cu+LrEBqwPaC8lPw3UmoTEAU+lXHanPE12JCF/54EtVCc rb4W0vqgGmLJzn5dRU/fWkar0FKPq4eoV0XMbGZKIC6pWQnMEsxEMpNvh7oefK6Kyn+LO+59 +sNYHbv1RImDJccmfHTOA6/jHdwOcnYy37U8UF7e+mGrwNs8GsMQx2AaQbR6VErakH3GBgft bMFOGQxiaRBkbzba7BZCQ060yhiC3/Mb/xHoVi7PBEmKig1SErTMA7Fh3CYPYIRDphNs6OSr tf9O4hbzUAsjbU3rxOfiWQjP3fSOM0KUBj4wpIWZlMrjAGnMIz2wHb211wsBiLqSaGiiO1LR 7RrcvbIFZvHQHiWe2tdRyuH3N/h7A316yoLfx+yy1gyP5weWsQARAQABzSRUaW0gRGFuZWxp dWsgPHR1bmRyYUB0dW5kcmF3YXJlLmNvbT7CwXcEEwEIACEFAllVgYoCGyMFCwkIBwIGFQgJ CgsCBBYCAwECHgECF4AACgkQdoOXo5EJFKntcA/9F9ags9Ik5C49N39iRq+yqBdn/Lr75rqv +Yg7JkjeVlwHpnQt1S6orTC7EaJc+AqY3szCEmhfuT0+E96Bw2k+G/XRnaedZ9SHSdImlmq0 RmOFpWLr67ScvlA9YG1tyR+QYraEFqK5EB6qhOWRJoz1BYtAAntK9b9gUTXt/277sT7lAWaj oPi4CDd4DofHc4E9VRsniMQNMLCWqc/ygAK07cWbK2Rh90tS2C4nK6OHFkNkK94zDilfxod1 NBFTUPPYfEU2CSa3eLlpfhYY3/2X7zNvmmCt+chHUnAhQLhldQ3WlqmTKP+ZK9LX002/bY1O M8Zk76WyA/A3EfsIUbnXBQvFyjwX6W4QEytlZWtp/yRIe64JOa3dZ8rkhragb2N4VgVLBVe3 jtZgfQ72pHrfNk/T0uT+hjFqInvIYiXkhxB2GiD7Ga28VuXojTmeoaW3GKcvoVxONSju7WzD XgyxWRmNpd5uifJcC3YU3tNNAosnQ0/5FW4wkducSEVwwqnAiSMQEMDDa/e6oP6GyOzes5SV LTNCRYdHWVKbxjetYU4SKm5RdLx9XuJo0qL9vO97mCNwdNkTM7gO2ycQ49qUiGbCZJOh2gpP ZRFrpJDxbloosAfOEB6IYjhb38u6jvbScJKK3bWA+a8TK4SrQpdRd1cAnW9sA8jCTV8ejZq0 CHnOwU0EWVWBigEQAJYuihAOOOe/kAn045Ayn+3is3S+6eV4IAgL6lJhoChkgUJJuFoRX9BY rd35z29+q2/UCoProzd4Mk66wXeWv6n4s5R79OUzjgMLCTVlVaMy4gjPL9NRDwMt7KYRF56g mnoKZwfPDi/oJ5toPPboW94FrMwonqbdqYM2Pyi/HPMe4e396WQ4TaA1CdhyzKHoFSpkGcjX zIQ5yQ5aaGS7wonRu/pg15dbu+8QOgxRNFa0bO+ntz/30u+VmxFqFVbExjuy3Or8fSBhJgx4 cfyrrunKLclpZ/52VeK3l53yWYpR8RaTZfzpu8Ih+ijAY4XLO5F8P1T6sEviMaTY2F0sbFRx ZJXsgFpiKeWPHUn7/LX7qcoFJYoFqG6b3n5km+qy39x6lMgJDuxKpeN6lYj//LB6xVzn0JI+ 4ZHPrEkFqxu8VkL7deCPTI67ZJik18jXjTH9sha1YBvgvxIPFMA7ZwXX2AwNu7PzdcCpWarS usOAHbjQBUsQ+ZPpI1oeFnsCPZ+8/mMcTjVRZyJxOPs3KnXZv2cXNuaa7lwkWS366gHzQI7O l6WdC8TyNjiOzR654cL8BgYQ/xNSW1vTXqPWSRU8/b/5IueY2tQJh0CKIvfoP0rk8976wa1R 8SRi08mwHX7+F5oSeXLRNHicQGpS1f0DywdRcQ0MFHyq/CV4dTltABEBAAHCwV8EGAEIAAkF AllVgYoCGwwACgkQdoOXo5EJFKkDNw//c8nailIVOV72l7Lze+2AuK9MYUCFb1i4qI1WTnG0 OHQlCAltPhdwZPAozJw/eNqIcuWQh8rZspve9ipj589wLSsVyaFRsuYXTiYZ9RlRsnJYa36h 2JML3ZGrRsSxaUEAggbiOKbwmw27JuOIPmC3Gln4tJuZ+nw6cfCgMI45bIzinVanxHwPLeLp BZKpaEYzAwtBykUfAXn3jDwrI95UlMJvhHDFuRgvb6uSyJIqmp5aR/BjnlSdEwICyWpRAVSt yqZeBMeHbCr1B97PIRzk/q0eHm9T+AoiZWwz1iVGGgkYdAaCfs2PBlNHmRm93cfgoEcaGvNb RbTXOe28niMJeYMQsnjOTy5AQIrhVKeP5E+qVs/oPK/inmLiTbjZcnrO2wR+uxpPGgmR6M/3 p8qyRdaOvT87HZXO+Wr+r9A4UnwhCPsfELwPlEo+TJQ/oE71Mlkx/ddQCWELcHjXrQF9YbzA Ml7g0zTkgHysh4DNkV5iYteOcmCwsWdOwn0H0yZfz6weyr8nEdPngyOjFNKMIpcTbeg8866c GxXAJj46dub4VdVwfvMRHfmmRJkjdId7YHWMgz2Kf7S7KPCROLis7WjlOdSS0q2m/7qy9WL/ ZW50YLS8ZZLMrnari5JxCyJX+8n6ZASo2AA93iTbKmYegK2LDwW1QLU1iAF3GyGOnSE= Message-ID: <5b94aeea-e244-1ba4-63f9-06a5a3f85705@tundraware.com> Date: Fri, 14 Aug 2020 12:47:31 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 8bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (oceanview.tundraware.com [45.55.60.57]); Fri, 14 Aug 2020 12:47:37 -0500 (CDT) X-TundraWare-MailScanner-Information: Please contact the ISP for more information X-TundraWare-MailScanner-ID: 07EHlbkC029666 X-TundraWare-MailScanner: Found to be clean X-TundraWare-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, timed out) X-TundraWare-MailScanner-From: tundra@tundraware.com X-Spam-Status: No X-Rspamd-Queue-Id: 4BSrXX5166z3yd6 X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of tundra@tundraware.com designates 45.55.60.57 as permitted sender) smtp.mailfrom=tundra@tundraware.com X-Spamd-Result: default: False [-1.86 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.82)[-0.822]; DMARC_NA(0.00)[tundraware.com]; NEURAL_SPAM_SHORT(0.12)[0.122]; NEURAL_HAM_MEDIUM(-0.86)[-0.856]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14061, ipnet:45.55.32.0/19, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 17:49:01 -0000 On 8/14/20 12:13 PM, Jon Radel wrote: > I'm a bit unclear on how a frank admission that the controls can be > circumvented translates, in your head at least, into a false sense of > security. > > The playground is a bit bigger than the technical sandbox where you > appear, and I most certainly am, most comfortable.  The CISO also has to > be comfortable hanging out with the compliance lawyers behind the shed > at the far end of playground, not to mention keeping HR happy. > > If you write a policy document, implement controls that make > "accidental" circumvention of the policy difficult, while still keeping > a close eye on what else the staff is doing, you can: > > 1.  Reduce the noise of having to track unthinking, largely innocent > violations and endless, tedious discussions about who deserves to be > fired.  > > 2.  Reduce the plausible deniability of the actual attempts to cause > harm to the company, now that actual "tricky" actions are required to > circumvent controls that give you big warnings in your browser, making > for much better confidence in making termination decisions and/or taking > legal action. > > None of this particularly has anything to do with the technology. Hear, hear. Unlike universities and government agencies, businesses do not have A) An essentially limitless line of credit and B) Huge immunity to legal action. Businesses therefore must act in way to limit risk, and said limitations cannot be avoided just because they are imperfect. The irony is that of much of this risk avoidance is inflicted at the hands of political agents and bureaucrats who themselves have no expertise in the technology nor any actual risk exposure themselves. This doesn't prevent them from writing law and regulations the force CIOs and CISOs to make unpleasant compromise decisions. The truth is that technical elegance and ease are the least important inputs into any CIO's calculus. They have exposure to far larger problems than whether or not you can tunnel ansible playbooks over an ssh session ... DAMHIT -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/ From owner-freebsd-questions@freebsd.org Fri Aug 14 17:49:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D39E53C47F2 for ; Fri, 14 Aug 2020 17:49:16 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2d.google.com (mail-io1-xd2d.google.com [IPv6:2607:f8b0:4864:20::d2d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSrXq6L63z3yZw for ; Fri, 14 Aug 2020 17:49:15 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2d.google.com with SMTP id g19so11553023ioh.8 for ; Fri, 14 Aug 2020 10:49:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=xeVwIM93AnbbDHGcP5xO748OUCjvsNMp/Lg7YWKApzg=; b=mfzoumbW9fFWRNnlfxMhZaVAsgbdkRoTShq8q9hw6tFZmVVB/D524zbtJoMRjznUiH NJBZitGwbvAPGMXNZS6uWie4XSfaiYN/qxUO5Uae4XabxcjGa9D3O9bwxR36qJVyBx23 vNA2nYskciCGkrbPq1Ft00IlECeSgBsXRzYILG7Ny9o7U5SyLjq1URSRHZdogRTJkIUa Kyp2gJuLB/VkB203WYYXKqIgR+yplPPFyrl4B1pTTsg3Gpo1465wbmeAlPmR3Ah4bT+O 8kBmt96I73Z9KQhM9ge+t1zE9nAKPE3wQ/234HwHACGUh5MetOoOdSMl0Zmg5cDwdFc/ g8Kw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=xeVwIM93AnbbDHGcP5xO748OUCjvsNMp/Lg7YWKApzg=; b=KUx5ZVnURMOQyhix7i0I7Q/vtMJ482FShgI6ARJMwC/wzrsPsQblakj4y8llDZE2hm bMkXV+o8eDXHkJGaBu7KNg2wax7IUBo86BLFxoVkt+2FL4YGl5YL+3hvETfZRB9F3yzl s42OvqRLOde6pzzNPLQ/bpdunAg2U43K4Tfe92e9D8IN2mzSz+xIXvNHwuEb5WEG+TKi U9NHGktpCkS1oUOl9A7DrdqjHgd7Xcx7XomEP6yKmQeJXjQW1m8F4CxA8gyJkfkIajeV 4S/IX7sHzBfUMPAZpsLPaFO/WokUXVXnsXsAiiX51Nz989ilN3h9fjiAVpbyaQyDuVDj vABA== X-Gm-Message-State: AOAM532JbAi+ZnsQJGdMipBg/Td2DAuks6zlr/AMIUR4dyEUTfTv58Mv nLv1eGxGWRo29ukLqMsKgLnH+jn1kHHwQjbHwm2pczWhPrE= X-Google-Smtp-Source: ABdhPJwm9dnqbGavjakdiYbhjaiVbKetlJWo8s2dlgc4xSHHI8QkPEi5/1CxjQZfckOexpHm5NS0sSNN/tfQJ71/CFo= X-Received: by 2002:a05:6602:220f:: with SMTP id n15mr3040535ion.103.1597427354908; Fri, 14 Aug 2020 10:49:14 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> In-Reply-To: From: Aryeh Friedman Date: Fri, 14 Aug 2020 13:49:02 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Jon Radel Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSrXq6L63z3yZw X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=mfzoumbW; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2d as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.35 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.06)[-1.057]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2d:from]; NEURAL_HAM_SHORT(-0.29)[-0.292]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 17:49:16 -0000 On Fri, Aug 14, 2020 at 1:13 PM Jon Radel wrote: > On 8/14/20 10:44, Aryeh Friedman wrote: > > On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: > > > >> On 8/14/20 09:48, Aryeh Friedman wrote: > >>> Unless it is 100% air gapped with no ability to plug in portable media > >>> and/or record the screen then nothing is 100% immune from such loss and > >>> thus not allowing it makes very little sense. If on the other hand > the > >>> idea is to limit the damage that malware/spyware can do then it makes > >>> sense (even if someone does in [accidentally] install malware/spyware > it can > >>> not send the results of its dirty work anywhere). > >>> > >> Untrue. As the CISO at my latest employer said to me (paraphrasing > >> some, as it's been a while): > >> > >> You and I know how to circumvent the restrictions, but the vast majority > >> of the staff hasn't a clue. This cuts down the noise I have to wade > >> through. > >> > > Oh great security by obfuscation! Sounds like the CSIO missed the first > > day of security 101. False sense of security is always a bad idea. > > > I'm a bit unclear on how a frank admission that the controls can be > circumvented translates, in your head at least, into a false sense of > security. > If the controls can be circumvented they are essentially useless and shouldn't be in place in the first place. Besides anyone who knows what RDP or SSH is would also know how to circumvent controls designed for non-technical people so that makes the blocking of them even more short sighted. This is what I meant by security by obfuscation (i.e. hiding obvious truths that everyone with any knowledge knows). > > The playground is a bit bigger than the technical sandbox where you > appear, and I most certainly am, most comfortable. The CISO also has to > be comfortable hanging out with the compliance lawyers behind the shed > at the far end of playground, not to mention keeping HR happy. > In our case it is also keeping a government agency happy. And yes we do deal with that level of decision making since we are the de facto IT dept. > If you write a policy document, implement controls that make > "accidental" circumvention of the policy difficult, while still keeping > a close eye on what else the staff is doing, you can: > > 1. Reduce the noise of having to track unthinking, largely innocent > violations and endless, tedious discussions about who deserves to be > fired. > The very idea that it is about who to fire instead of actually preventing the issue in the first place is a mindset failure (and one of the primary reasons why corporate America in general is screwed in the head). > 2. Reduce the plausible deniability of the actual attempts to cause > harm to the company, now that actual "tricky" actions are required to > circumvent controls that give you big warnings in your browser, making > for much better confidence in making termination decisions and/or taking > legal action. > Not the case with doctors who have staff that routinely break HIPAA (not our problem but there are stores everywhere on it). No level of "don't do this" coupled with very hefty government fines stops them. General response from doctors is: we don't care. > None of this particularly has anything to do with the technology. > > > >> Actually, better yet, you probably don't want to discuss that on a > >> public list...... > >> > > If *YOU* think it doesn't belong on the list just come out and say it. > > > > > You may be under the impression that our interests are aligned on this > one. Personally, I'd find blow-by-blow updates on how your lawyer > freaks on finding that you are discussing his/her strategy on the > Internet, tidbits on the suit against you claiming torturous > interference by the hosting provider you've been bad-mouthing for days > and have now named, and the general unraveling of your contract, amusing > reading. (Others here probably feel differently, but they can speak for > themselves--I suspect the sensible ones have already killed this > thread.) If you think that was a mealy mouthed way for me to say that > I'd prefer you'd stop discussing this, you'd be most mistaken. I was > just trying to suggest, given that I'm not malevolent enough to wish all > that on you solely for my amusement, that you consider how much of your > laundry, with some mighty amusing and suggestive stains showing, you > wish to air in public. That's all. > First there is no active lawsuit or even contemplation of legal action whatsoever currently from any of the parties (that we know of). I didn't say anything that is not already public knowledge (it might have been a little more detailed than normal but it is not anything secret). (If you cared enough to see that I checked my link in then you might want to do some research on me to see that none of this was not already public knowledge [the people that I didn't name were already named by other sources]). As to my clients strategy there is nothing I said that is not already in their marketing material (and I never named the client's company name, only one of the two vendors we are having issues with). -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 17:56:18 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5FA023C4D41 for ; Fri, 14 Aug 2020 17:56:18 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x12b.google.com (mail-il1-x12b.google.com [IPv6:2607:f8b0:4864:20::12b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSrhs6qDSz400x for ; Fri, 14 Aug 2020 17:56:13 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x12b.google.com with SMTP id k4so9150694ilr.12 for ; Fri, 14 Aug 2020 10:56:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Wl/NVaOZbPdRSRZFIp0f0biYNxM2i/BDb8DLzw7BYTI=; b=hi8H6A+3pSIU6cQ7QJB6zXLoiO2/gRwFWGmRGgrGV3wofndGSqmMoPIlHAHiDX27N2 KKTPJXIRIEP0Byv9B2KqDamWuWcpaILStVtxV7FTsy4rFZ+5P5uxU2CDbf8MauqnFegQ 29xjrlFygxcmphu87eMCXMZszQHEQ1x/6XswVn2vnEwr6v9CXAB4PkVjf4a3E0i9n/kW 8uMLJHdg8v4pKe1X5oONGMUZUC1Q3CeDp8N5W6wjm8BZdzRwV99D6nYEvFuk0eR7kcB4 1IUbhoAybQJpwNPh4BUyzKAZ6ib31WLe++L6keiPwMfV/qfD/VujfusfiTLKMETktMq/ eUQw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Wl/NVaOZbPdRSRZFIp0f0biYNxM2i/BDb8DLzw7BYTI=; b=joM/tp3Qyl+n+7fvBaqb5sLfhVHLAm3PQ7nTqYYedwLKF5DCTf1XIwq8N8e0CIBvem xqq3ELM4Asu3RtrZ1Be0gnbfsQgGtEfl6hB7GmHhAmjfFP1xN3JewG4HCbAWfXwi2soa U9BJbuGRfFlH75fzB1w4APTjM+uWg6hgj4hhZXIuqhwQg5ulfsRC4C8EFIRSz7OR3zPo NviQL9MTlwWNTG3PJWZa40xoz8NObIJ/x7OZoMK3GDw77kb15N3Tr7iZjmilSMsWEdTO 2svB1WuDbuDdszfb37BsBXyvne9+8/dLV/U09MMp0dCAw203nxmtqwiZ6GjbSIe1I1Nn PdVQ== X-Gm-Message-State: AOAM530xeHkH6Gvv0Zb4gHdSWZ3mnHNO2DMiWwB96U7TGh57kbNEJuyO F+8I+8Ot/ALismejsRRZeNzw2i/PkzD0cZ4y4zJLWJKf/nQ= X-Google-Smtp-Source: ABdhPJys1CaswYKjdFo+AfnwbVzuHbjQ15ObhIIUssJIxtamNXPb3MW4Tk2CRX7veR5Ze+MSnyGw1PHBxkSDsD/y9AM= X-Received: by 2002:a92:d20c:: with SMTP id y12mr3677683ily.81.1597427772848; Fri, 14 Aug 2020 10:56:12 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <5b94aeea-e244-1ba4-63f9-06a5a3f85705@tundraware.com> In-Reply-To: <5b94aeea-e244-1ba4-63f9-06a5a3f85705@tundraware.com> From: Aryeh Friedman Date: Fri, 14 Aug 2020 13:56:00 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Tim Daneliuk Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSrhs6qDSz400x X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=hi8H6A+3; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12b as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.35 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.06)[-1.058]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::12b:from]; NEURAL_HAM_SHORT(-0.29)[-0.291]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 17:56:18 -0000 On Fri, Aug 14, 2020 at 1:49 PM Tim Daneliuk wrote: > Hear, hear. Unlike universities and government agencies, businesses do > not have A) An essentially limitless line of credit and B) Huge immunity > to legal action. Actually universities (even public ones) have typically very limited access to credit (except for government bond issuing for public universities) and have zero immunity from legal action (they even have more legal exposure then many private companies due to laws like FERPA [education records privacy regulations], regulation on who they admit, etc.) -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 18:10:18 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 335533C4CEF for ; Fri, 14 Aug 2020 18:10:18 +0000 (UTC) (envelope-from jguojun@gmail.com) Received: from mail-qt1-x841.google.com (mail-qt1-x841.google.com [IPv6:2607:f8b0:4864:20::841]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSs142nSDz40RK for ; Fri, 14 Aug 2020 18:10:16 +0000 (UTC) (envelope-from jguojun@gmail.com) Received: by mail-qt1-x841.google.com with SMTP id h21so7569284qtp.11 for ; Fri, 14 Aug 2020 11:10:16 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=DdmAp+a7p9SvxtiR3ECLe075pLA8yjKhFcb6/BESLv4=; b=TOU8Xt6dHtXbQKEYglpsqfk4DtvBQtL32Vq8DYPcCndUU2SzKHD9U0F4nO4ftHagIa 8hqQa4ntSNow82TS3GrnGFT4E88VsXTo8VjqRiIAs4oI7Rby/ppqJirqR4qRz1nQm+9J fZJlXw8ffgupn1i34Hh3rm/lvTzfmlZwT8iJ2Pfz/DOHIRTssYZnHCmWQMN3qILJLQqU TgPdy5aEHEQScQTrZBbnrN2eR5x9KQ6G0NZsXVpiktqOB9dtrgtqP2OAizGN8SLtIrGi WqsgC2PgilL+E8uZypPA6EutJDIMRR+Cl02QF4VxUbQhtYdV4AxnaB86h3BEKcoe1lmn /cKA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=DdmAp+a7p9SvxtiR3ECLe075pLA8yjKhFcb6/BESLv4=; b=T/IVlzKDSqn7fj4JkwX6im/+XpoYyAeTXqqjJ2GsV0y0lzOwrPZFfFx4AbZhoin9qg Fm1shOSf+LxIbN3rBHFoCjFWmiSX+lk0AXc72Sqe8/P52fyY1JRVyPNi9fR1GZYpiKW6 5EBKtZoJWx2fV+20yie1PxjRLS3vKhEA5GzjefMTf7BEEHpQsbQoficXdnOMFbTt/+jd hPO/tMEJ4Y2aopZusnSbw4yR16WUko8l2env0A7L9A6Rhh6EXRKxRZ/wpXRu3zkvBckb pqGLzjUiGGKkfr1g0gCVz4VGP2zPvoyQXX0Kk+oUemO8AEGk5nhxeEfGcK/emPn0bskc TLVg== X-Gm-Message-State: AOAM530fk3HSiIpYMemOZoCx9DQtLRSM8TBdxUxdAsYJUyBVtoBx3bK2 JgV4TLS05d1a30oHs3NMK5lZBjAm/aZx X-Google-Smtp-Source: ABdhPJznQ+EEK4q/jh9o1Cg01Pvb3X4LY7NAx+tzk8Jvu8yBXWzdSDKPWQGRTgbUPWDAJEIb9WJwHA== X-Received: by 2002:aed:26a7:: with SMTP id q36mr3223078qtd.12.1597428615274; Fri, 14 Aug 2020 11:10:15 -0700 (PDT) Received: from [192.168.1.82] (162-239-0-170.lightspeed.sntcca.sbcglobal.net. [162.239.0.170]) by smtp.gmail.com with ESMTPSA id v58sm11739474qtj.56.2020.08.14.11.10.13 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 14 Aug 2020 11:10:14 -0700 (PDT) Subject: Re: 5.25" Floppy disk drive not recognized To: Tomasz CEDRO , Don Wilde Cc: FreeBSD Questions Mailing List , Christoph Kukulies , Steve O'Hara-Smith References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> From: "Jin Guojun[VFF]" Message-ID: Date: Fri, 14 Aug 2020 11:10:07 -0700 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Rspamd-Queue-Id: 4BSs142nSDz40RK X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=TOU8Xt6d; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of jguojun@gmail.com designates 2607:f8b0:4864:20::841 as permitted sender) smtp.mailfrom=jguojun@gmail.com X-Spamd-Result: default: False [-3.08 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCPT_COUNT_FIVE(0.00)[5]; RCVD_COUNT_THREE(0.00)[3]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.01)[-0.012]; FREEMAIL_TO(0.00)[cedro.info,gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.055]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.01)[-1.009]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::841:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:10:18 -0000 On 08/14/20 09:34, Tomasz CEDRO wrote: > On Fri, Aug 14, 2020 at 6:14 PM Don Wilde wrote: >> On 8/14/20 8:45 AM, Tomasz CEDRO wrote: >>> Is floppy drive still available? Was it supposed to be removed..? >> It's still in the GENERIC kernel configuration. Disk Doctors, if you >> have one local, should be able to tell you whether the diskette itself >> is readable and formatted. > Good news, thank you :-) There was a discussion somewhere around 2017 > to remove it.. I am glad floppies are still here and will stay here > :-) I am fan of retro computers and this may come handy :-) > > https://lists.freebsd.org/pipermail/freebsd-arch/2017-December/018681.html > We still have it :-) # mount_msdosfs -o ro /dev/fd0 /mnt # ll /mnt total 2131 drwxr-xr-x   1 root  wheel    7168 Dec 31  1979 ./ drwxr-xr-x  24 root  wheel    1024 Aug 14 10:50 ../ -rwxr-xr-x   1 root  wheel    6883 Dec 30  1993 ADDHELP.OV_* -rwxr-xr-x   1 root  wheel   28962 Dec 30  1993 DBLSPACE.BI_* -rwxr-xr-x   1 root  wheel     302 Dec 30  1993 DBLSPACE.SYS* -rwxr-xr-x   1 root  wheel     744 Dec 30  1993 DOSUMB.CO_* -rwxr-xr-x   1 root  wheel  175485 Dec 30  1993 IBMAVD.EX_* -rwxr-xr-x   1 root  wheel   78253 Dec 30  1993 IBMAVSP.EX_* ... # umount /mnt --- change to a bad floppy disk # dd if=/dev/zero of=/dev/fd0 bs=18k dd: /dev/fd0: Input/output error 1+0 records in 0+0 records out 0 bytes transferred in 3.943048 secs (0 bytes/sec) ^C # fdformat -f 1440 /dev/fd0 Format 1440K floppy `/dev/fd0'? (y/n): y Processing EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE done. Errors encountered: Cyl Head Sect   Error   0    0    1   no address mark in ID field   0    1    1   no address mark in ID field   1    0    1   no address mark in ID field   1    1    1   no address mark in ID field   2    0    1   no address mark in ID field   2    1    1   no address mark in ID field   3    0    1   no address mark in ID field   3    1    1   no address mark in ID field   4    0    1   no address mark in ID field   4    1    1   no address mark in ID field (Further errors not printed.) # uname -a FreeBSD f114 11.4-RELEASE FreeBSD 11.4-RELEASE #0: Sun Aug  9 23:48:49 PDT 2020     root@f114:/usr/src/sys/amd64/compile/MinMax  amd64 From owner-freebsd-questions@freebsd.org Fri Aug 14 18:19:57 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id DD3343C549A for ; Fri, 14 Aug 2020 18:19:57 +0000 (UTC) (envelope-from jguojun@gmail.com) Received: from mail-qv1-xf43.google.com (mail-qv1-xf43.google.com [IPv6:2607:f8b0:4864:20::f43]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSsDD3PVrz40sX for ; Fri, 14 Aug 2020 18:19:56 +0000 (UTC) (envelope-from jguojun@gmail.com) Received: by mail-qv1-xf43.google.com with SMTP id w2so4689056qvh.12 for ; Fri, 14 Aug 2020 11:19:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:from:to:cc:references:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=3SgT9tgIAHXsdzHc6tlMft0CrSFiNFlNgzkXstDoRus=; b=okw8FH+WCNtvgLP8y2LBhKCuwJ1/zz5fWvEyIfxYFFEENC9RErVwWXfuY8oHMUWSMN vl7iJWjNnJcc8X43eopw418GlwAVivFCIrDFeBZqGa/KI0KiIBSUwgGHB1+iiPji4M3/ 8x+PcMYTEQyGYye1vS2jdLA90vMIdRCYTwnzYyOK82pgcJnDn/Dr+T8/91AoRaU0q5NY x+AodGNx09MUXb0leLXxZP1ufml3PXJ8Uxz3WFmmjE2gCJ863tqs3mrq8fcZUOoYFyLd 5xvyC7Yc0RarJgp/pF62AvoT0TYyg/eZBgTPm4omgtzEKTVsEc/m+pFh4VUAM31p8ejp UE0g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:from:to:cc:references:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=3SgT9tgIAHXsdzHc6tlMft0CrSFiNFlNgzkXstDoRus=; b=MW0+MSy2mul4oWoty51GKfmGLk31EU9CXqBB2CTQUeLBjrOqxZT2GIcKihWNbIqLVa L6MCfEu82/eTIqXXPl7wfO+BjE7+jsTsM6379uvebTWZw/LQS9yBRiB7wnZcXTW3Fsxk N5tDHhKoSXgFgQdFcWUyu9g4xDTghAn0wm1ElCcqoBRloj8nta1KN7pSgdtFAy3m10tJ U+X8oSLdvs/qaLwE+m/yKdv95jVGrKEM2NPuSbqwZ87VnRrOYuih1PsLKZUTp6H0+gDN QMcqZeJU6q/DcXC8b4HkZIRAc91sAN6WYRe6IDf6ki/0sUAf/IRRhZV7T5ZC+SmioLUw VeYg== X-Gm-Message-State: AOAM531OzWsBXmsRD+gGquQb5oD9zZK9x+tvuf1zKxspgkq2GGiJ4LOg uHFMWkn+LX3IzEJ4l6YhfQ== X-Google-Smtp-Source: ABdhPJy5fsd0jhFT01BOxuRzH1N8B7PIOpafrpaXknCo7qLX9ILUM1QJoEH4i+DxeICAZz1N52AsJw== X-Received: by 2002:a0c:e8c9:: with SMTP id m9mr3941911qvo.178.1597429195422; Fri, 14 Aug 2020 11:19:55 -0700 (PDT) Received: from [192.168.1.82] (162-239-0-170.lightspeed.sntcca.sbcglobal.net. [162.239.0.170]) by smtp.gmail.com with ESMTPSA id u37sm11351341qtj.47.2020.08.14.11.19.51 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 14 Aug 2020 11:19:53 -0700 (PDT) Subject: Re: 5.25" Floppy disk drive not recognized From: "Jin Guojun[VFF]" To: Tomasz CEDRO , Don Wilde Cc: FreeBSD Questions Mailing List , Christoph Kukulies , Steve O'Hara-Smith References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> Message-ID: Date: Fri, 14 Aug 2020 11:19:50 -0700 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Rspamd-Queue-Id: 4BSsDD3PVrz40sX X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=okw8FH+W; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of jguojun@gmail.com designates 2607:f8b0:4864:20::f43 as permitted sender) smtp.mailfrom=jguojun@gmail.com X-Spamd-Result: default: False [-3.08 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; RCPT_COUNT_FIVE(0.00)[5]; RCVD_COUNT_THREE(0.00)[3]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.01)[-0.015]; FREEMAIL_TO(0.00)[cedro.info,gmail.com]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.053]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.01)[-1.008]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::f43:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:19:57 -0000 On 08/14/20 11:10, Jin Guojun[VFF] wrote: > On 08/14/20 09:34, Tomasz CEDRO wrote: >> On Fri, Aug 14, 2020 at 6:14 PM Don Wilde wrote: >>> On 8/14/20 8:45 AM, Tomasz CEDRO wrote: >>>> Is floppy drive still available? Was it supposed to be removed..? >>> It's still in the GENERIC kernel configuration. Disk Doctors, if you >>> have one local, should be able to tell you whether the diskette itself >>> is readable and formatted. >> Good news, thank you :-) There was a discussion somewhere around 2017 >> to remove it.. I am glad floppies are still here and will stay here >> :-) I am fan of retro computers and this may come handy :-) >> >> https://lists.freebsd.org/pipermail/freebsd-arch/2017-December/018681.html >> >> > We still have it :-) > > # mount_msdosfs -o ro /dev/fd0 /mnt > # ll /mnt > total 2131 > drwxr-xr-x   1 root  wheel    7168 Dec 31  1979 ./ > drwxr-xr-x  24 root  wheel    1024 Aug 14 10:50 ../ > -rwxr-xr-x   1 root  wheel    6883 Dec 30  1993 ADDHELP.OV_* > -rwxr-xr-x   1 root  wheel   28962 Dec 30  1993 DBLSPACE.BI_* > -rwxr-xr-x   1 root  wheel     302 Dec 30  1993 DBLSPACE.SYS* > -rwxr-xr-x   1 root  wheel     744 Dec 30  1993 DOSUMB.CO_* > -rwxr-xr-x   1 root  wheel  175485 Dec 30  1993 IBMAVD.EX_* > -rwxr-xr-x   1 root  wheel   78253 Dec 30  1993 IBMAVSP.EX_* > ... > # umount /mnt > > --- change to a bad floppy disk > > # dd if=/dev/zero of=/dev/fd0 bs=18k > dd: /dev/fd0: Input/output error > 1+0 records in > 0+0 records out > 0 bytes transferred in 3.943048 secs (0 bytes/sec) > ^C > # fdformat -f 1440 /dev/fd0 > Format 1440K floppy `/dev/fd0'? (y/n): y > Processing EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE done. > Errors encountered: > Cyl Head Sect   Error >   0    0    1   no address mark in ID field >   0    1    1   no address mark in ID field >   1    0    1   no address mark in ID field >   1    1    1   no address mark in ID field >   2    0    1   no address mark in ID field >   2    1    1   no address mark in ID field >   3    0    1   no address mark in ID field >   3    1    1   no address mark in ID field >   4    0    1   no address mark in ID field >   4    1    1   no address mark in ID field > (Further errors not printed.) > > # uname -a > FreeBSD f114 11.4-RELEASE FreeBSD 11.4-RELEASE #0: Sun Aug  9 23:48:49 > PDT 2020 >     root@f114:/usr/src/sys/amd64/compile/MinMax  amd64 > reFormating it to lower density make the floppy has some useful. The floppy disk does not last long. Event leave it in a box without use, the media will age. # fdformat -f 720 /dev/fd0 Format 720K floppy `/dev/fd0'? (y/n): y Processing VVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVEE done. Errors encountered: Cyl Head Sect   Error  76    1    2   CRC error in data field  78    1    2   CRC error in data field  79    1    2   CRC error in data field # dd if=/dev/zero of=/dev/fd0 bs=18k count=10k dd: /dev/fd0: end of device 41+0 records in 40+0 records out 737280 bytes transferred in 48.023818 secs (15352 bytes/sec) From owner-freebsd-questions@freebsd.org Fri Aug 14 18:30:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id AD0593C58B4 for ; Fri, 14 Aug 2020 18:30:45 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (mx32.harte-lyne.ca [216.185.71.32]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mx32.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSsSj03K6z418G for ; Fri, 14 Aug 2020 18:30:44 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from mx32.harte-lyne.ca (localhost [127.0.32.1]) by mx32.harte-lyne.ca (Postfix) with ESMTP id 5C0D056FA2 for ; Fri, 14 Aug 2020 14:30:43 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from mx32.harte-lyne.ca ([127.0.32.1]) by mx32.harte-lyne.ca (mx32.harte-lyne.ca [127.0.32.1]) (amavisd-new, port 10024) with ESMTP id 9LHizRDF_W2y for ; Fri, 14 Aug 2020 14:30:41 -0400 (EDT) Received: from webmail.harte-lyne.ca (webmail.hamilton.harte-lyne.ca [216.185.71.106]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mx32.harte-lyne.ca (Postfix) with ESMTPSA id 780D956F97 for ; Fri, 14 Aug 2020 14:30:41 -0400 (EDT) Received: from 192.168.8.73 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Fri, 14 Aug 2020 14:30:41 -0400 Message-ID: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> Date: Fri, 14 Aug 2020 14:30:41 -0400 Subject: Nvidia on FreeBSD From: "James B. Byrne" To: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.23 [SVN] MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-Rspamd-Queue-Id: 4BSsSj03K6z418G X-Spamd-Bar: ----- X-Spamd-Result: default: False [-5.44 / 15.00]; HAS_REPLYTO(0.00)[byrnejb@harte-lyne.ca]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:216.185.71.0/26]; REPLYTO_ADDR_EQ_FROM(0.00)[]; TO_DN_NONE(0.00)[]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; RCVD_IN_DNSWL_MED(-0.20)[216.185.71.32:from]; DKIM_TRACE(0.00)[harte-lyne.ca:+]; HAS_X_PRIO_THREE(0.00)[3]; NEURAL_HAM_SHORT(-0.67)[-0.665]; DMARC_POLICY_ALLOW(-0.50)[harte-lyne.ca,quarantine]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_TLS_LAST(0.00)[]; ASN(0.00)[asn:12021, ipnet:216.185.64.0/20, country:CA]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.037]; RCVD_COUNT_FIVE(0.00)[5]; R_DKIM_ALLOW(-0.20)[harte-lyne.ca:s=dkim_hll]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.03)[-1.033]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; DWL_DNSWL_LOW(-1.00)[harte-lyne.ca:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:30:45 -0000 FreeBSD-12.1p8 I am forced to configure a new workstation (WS) due to an unrecoverable hardware error on my old (c.2009) one. The new WS has only basic VGA on the motherboard and has an Nvidia card as its primary video i/f. I have two monitors both connected to the card. Each works independently of the other but when both are connected only one display is used. I have the Mate desktop installed and working. However when I try to configure the monitors the display dialogue window only shows one, unknown, display and the detect monitor button is not active. I also get a message stating that the mate-settings-daemon cannot start. I need some help getting this sorted out. If someone could guide me through this I would appreciate it very much. -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Unencrypted messages have no legal claim to privacy Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 From owner-freebsd-questions@freebsd.org Fri Aug 14 18:36:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 52BB53C5C83 for ; Fri, 14 Aug 2020 18:36:28 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSsbH36sHz4230 for ; Fri, 14 Aug 2020 18:36:27 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from point.uchicago.edu (point.uchicago.edu [128.135.52.6]) (Authenticated sender: galtsev) by kicp.uchicago.edu (Postfix) with ESMTPSA id BD1AF4E677 for ; Fri, 14 Aug 2020 13:36:21 -0500 (CDT) Subject: Re: Complete idiots guide to virtualize Android with bhyve To: freebsd-questions@freebsd.org References: <2FpLnblcS8dY17rDqJi-ACKQ4qXa5A6M7LZjQ2xv79zjqXLj9-jCTMZes_SU1glRZmJ8BtpIp5IJDT0dBNBq5fWf_6vBDexQ_UqivFWS7Hk=@dstev.xyz> <20200805091331.4b52af5c@archlinux> From: Valeri Galtsev Message-ID: <558de385-08de-935d-4bce-2ef8d19cd77b@kicp.uchicago.edu> Date: Fri, 14 Aug 2020 13:36:21 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 8bit X-Rspamd-Queue-Id: 4BSsbH36sHz4230 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=uchicago.edu (policy=none); spf=none (mx1.freebsd.org: domain of galtsev@kicp.uchicago.edu has no SPF policy when checking 128.135.20.70) smtp.mailfrom=galtsev@kicp.uchicago.edu X-Spamd-Result: default: False [-0.47 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.35)[-0.350]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.30)[-0.300]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_SPAM_SHORT(0.08)[0.080]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:160, ipnet:128.135.0.0/16, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[]; DMARC_POLICY_SOFTFAIL(0.10)[uchicago.edu : No valid SPF, No valid DKIM,none] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:36:28 -0000 On 2020-08-14 11:01, Andrea Venturoli wrote: > On 2020-08-05 09:13, Ralf Mardorf wrote: > >> it doesn't make sense to install an operating system that doesn't >> fit the users needs and then to emulate a mobile phone on that >> operating system, to run the required applications. That is the most >> worst mismanagement possible in the first place. > > Well, I think there are situation in which virtualizing Android does > make sense. > I need a desktop system 99% of the time, but I have an Android app (*) > that I'd need to run occasionally. > > (*) Not Zoom. It's an app that shouldn't probably exist in the first > place, but so it is. > > > > >> You are using an operating system not providing what you actually >> need, > > No, I'm using an operating system which gives me 99% of what I need. > > > >> so to workaround the wrong choice done in the first place, you >> consider to use a virtual machine, but not to run the most useful guest >> for your purpose, instead you consider to try the most freakish >> "solution". > > No again. > Really. > Unfortunately that app is available for Android and iOS, so it's not a > matter of "freak". > > > >> Why not running iOS or iPadOS as virtualbox guest? > > Licensing issues, I guess. > Is it possible to run those OSes freely? > You are absolutely correct. Apple allows to run their OSes on Apple hardware only. Period. Valeri > > > > > To come up with something costructive, I've never run Android on bhyve, > but I have on VirtualBox: performance is horrible, there are no guest > additions, but it works for an occasional use. > > > >  bye >     av. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++ From owner-freebsd-questions@freebsd.org Fri Aug 14 18:42:41 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 07CCF3C5C75 for ; Fri, 14 Aug 2020 18:42:41 +0000 (UTC) (envelope-from moridin@mm.st) Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSskR6vlkz42JW for ; Fri, 14 Aug 2020 18:42:39 +0000 (UTC) (envelope-from moridin@mm.st) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id 1A7C65C00A5 for ; Fri, 14 Aug 2020 14:42:39 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Fri, 14 Aug 2020 14:42:39 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mm.st; h=subject :to:references:from:message-id:date:mime-version:in-reply-to :content-type:content-transfer-encoding; s=fm1; bh=l3xEUGSupOulx k5NgFuDNwmyAr7xWenO7p+c+5spXQE=; b=TZ/OIKQ79UNcNj7B1ChxrLKtkOHtf Ug+xhkpv+uFqZLKQKb4/A8mV7rve+JhF5QlmDPx689d7Et4MLCYKBiTvBX0w9SwQ xT2nTtn7DmLyZL3adjjaRsrrY+PPbzEnxZqyLbp+s4kVJjMrJAicqzsmEW/8R+A5 H2usiYauJUTfXhhipMCz1XRS5yAaMUe82vuor/8XwzTvcYKRg0g8qxCIr8ungsF1 7033yVGC3zZG9xdp2ZhoOuO+Shkl6V7pSHLRHEHu+GcvWIAivmGbuDHlv7I6Y+jD TxZof452qZ5WXyMNhZgZoaxLS8UUF3E6ajr03B9x1kLLckD/J5gcoartQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=l3xEUGSupOulxk5NgFuDNwmyAr7xWenO7p+c+5spX QE=; b=MOPBQE11WAhzjLqhJ/d4cj30fXXD0oQFf6+ozVTEaJpsqnL+WYeCq6G+W YBpNsi6uI8BLhmt/SNHf7fz6sMDWrw1RVXH6H4jBHs8CCMUkzKTtOpR4WWkVgFCT J9gUQQHSSobNbh1Z+xAHWED1z1iH5QaxnqjmmfNX6cUr6EL8hFhu/EfLlq+NHKSo LjwH3R5NuqY6EmZkpi6iJCwsZwpvLKbwBwEvWy2/S/9GifJiWGK+saECPVHHYgVI iNMdlY7kEOvFclCDZEreo//UFq+ZTBvEjuEZ/v6emeld4yI2/x+2aD5APhmrWIlz biTwff/PqbDBrpH8wA7Uj+s9cxqLQ== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrleejgdduvdefucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefuvfhfhffkffgfgggjtgfgsehtje ertddtfeejnecuhfhrohhmpehmohhrihguihhnsehmmhdrshhtnecuggftrfgrthhtvghr nhepfeeffeekiefgteevgfeuudejleffgeeigfdttdffveduffefjeehfeejkeeitddune cukfhppeeluddrvdegtddruddvgedrudegfeenucevlhhushhtvghrufhiiigvpedtnecu rfgrrhgrmhepmhgrihhlfhhrohhmpehmohhrihguihhnsehmmhdrshht X-ME-Proxy: Received: from [192.168.1.6] (unknown [91.240.124.143]) by mail.messagingengine.com (Postfix) with ESMTPA id 5E1A030600A3 for ; Fri, 14 Aug 2020 14:42:38 -0400 (EDT) Subject: Re: Nvidia on FreeBSD To: freebsd-questions@freebsd.org References: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> From: moridin@mm.st Message-ID: <683be1ac-ee0d-5b98-d8bd-50de4811e92b@mm.st> Date: Fri, 14 Aug 2020 21:42:12 +0300 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.1.1 MIME-Version: 1.0 In-Reply-To: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSskR6vlkz42JW X-Spamd-Bar: +++++++++++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=mm.st header.s=fm1 header.b=TZ/OIKQ7; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=MOPBQE11; dmarc=pass (policy=none) header.from=mm.st; spf=pass (mx1.freebsd.org: domain of moridin@mm.st designates 66.111.4.26 as permitted sender) smtp.mailfrom=moridin@mm.st X-Spamd-Result: default: False [11.62 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[66.111.4.26:from]; FREEMAIL_FROM(0.00)[mm.st]; R_SPF_ALLOW(0.00)[+ip4:66.111.4.26]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[mm.st:+,messagingengine.com:+]; DMARC_POLICY_ALLOW(0.00)[mm.st,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[mm.st]; ASN(0.00)[asn:11403, ipnet:66.111.4.0/24, country:US]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[66.111.4.26:from]; ARC_NA(0.00)[]; RECEIVED_SPAMHAUS_XBL(5.00)[91.240.124.143:received]; R_DKIM_ALLOW(0.00)[mm.st:s=fm1,messagingengine.com:s=fm3]; RECEIVED_SPAMHAUS_CSS(4.00)[91.240.124.143:received]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.85)[0.850]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_SPAM_MEDIUM(0.97)[0.974]; RCPT_COUNT_ONE(0.00)[1]; BAD_REP_POLICIES(0.10)[]; NEURAL_SPAM_LONG(0.89)[0.892]; FROM_NO_DN(0.00)[]; GREYLIST(0.00)[pass,meta] X-Spam: Yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:42:41 -0000 James B. Byrne via freebsd-questions wrote: > FreeBSD-12.1p8 > > I am forced to configure a new workstation (WS) due to an unrecoverable > hardware error on my old (c.2009) one. The new WS has only basic VGA on the > motherboard and has an Nvidia card as its primary video i/f. > > I have two monitors both connected to the card. Each works independently of > the other but when both are connected only one display is used. > > I have the Mate desktop installed and working. However when I try to configure > the monitors the display dialogue window only shows one, unknown, display and > the detect monitor button is not active. I also get a message stating that the > mate-settings-daemon cannot start. > > I need some help getting this sorted out. If someone could guide me through > this I would appreciate it very much. I know nothing about mate and its settings, but I remember running X on dual-monitor setup with nvidia. What you need is to get the output names from Xorg.log in /var/log (e.g. DFP-0, DFP-2) and add relevant config line to your /usr/local/etc/X11/xorg.conf.d/.conf, e.g.: Section "Device" Identifier "Something here" Driver "nvidia" MetaModes "DFP-0:3840x2160,DFP-2:3840x2160" EndSection Check the documentation shipped with nvidia-driver for more options. From owner-freebsd-questions@freebsd.org Fri Aug 14 18:48:06 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 220993C5DC3 for ; Fri, 14 Aug 2020 18:48:06 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from oceanview.tundraware.com (oceanview.tundraware.com [45.55.60.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mailman.tundraware.com", Issuer "mailman.tundraware.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSsrj0D9gz42Zy for ; Fri, 14 Aug 2020 18:48:04 +0000 (UTC) (envelope-from tundra@tundraware.com) Received: from [192.168.0.2] (ozzie.tundraware.com [75.145.138.73]) (authenticated bits=0) by oceanview.tundraware.com (8.16.1/8.15.2) with ESMTPSA id 07EIlvWu030608 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Fri, 14 Aug 2020 13:47:57 -0500 (CDT) (envelope-from tundra@tundraware.com) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> To: FreeBSD Mailing List From: Tim Daneliuk Autocrypt: addr=tundra@tundraware.com; prefer-encrypt=mutual; keydata= xsFNBFlVgYoBEADIYD9W4mbKz5cEleX923hagDWkxyJl4kRiMJnz+dNAH71MItSdErMb0cFt CPxVncb4dR4R2ec0c0MjPcgVINNtbY1DMWsF7t31TKD8NG9ZjLqF6fZDFjgkRejqHytgjmCI UejrMSCf0UJsLtg+I3N1ZVVxd7ALj2bCvC/uc5S7j+YbNnhQvSoBbdFj/xOTjyOGGpk7WfB7 e42PGKq1NSgnI7tcY6HSaSH+LHeoc0yUpBb5A1ge+RhR1N9JTniEFe0qvOBi+HgUltEoxsk4 xb6IhpkDOTsxHvEg5h0ukfl8kG9cu+LrEBqwPaC8lPw3UmoTEAU+lXHanPE12JCF/54EtVCc rb4W0vqgGmLJzn5dRU/fWkar0FKPq4eoV0XMbGZKIC6pWQnMEsxEMpNvh7oefK6Kyn+LO+59 +sNYHbv1RImDJccmfHTOA6/jHdwOcnYy37U8UF7e+mGrwNs8GsMQx2AaQbR6VErakH3GBgft bMFOGQxiaRBkbzba7BZCQ060yhiC3/Mb/xHoVi7PBEmKig1SErTMA7Fh3CYPYIRDphNs6OSr tf9O4hbzUAsjbU3rxOfiWQjP3fSOM0KUBj4wpIWZlMrjAGnMIz2wHb211wsBiLqSaGiiO1LR 7RrcvbIFZvHQHiWe2tdRyuH3N/h7A316yoLfx+yy1gyP5weWsQARAQABzSRUaW0gRGFuZWxp dWsgPHR1bmRyYUB0dW5kcmF3YXJlLmNvbT7CwXcEEwEIACEFAllVgYoCGyMFCwkIBwIGFQgJ CgsCBBYCAwECHgECF4AACgkQdoOXo5EJFKntcA/9F9ags9Ik5C49N39iRq+yqBdn/Lr75rqv +Yg7JkjeVlwHpnQt1S6orTC7EaJc+AqY3szCEmhfuT0+E96Bw2k+G/XRnaedZ9SHSdImlmq0 RmOFpWLr67ScvlA9YG1tyR+QYraEFqK5EB6qhOWRJoz1BYtAAntK9b9gUTXt/277sT7lAWaj oPi4CDd4DofHc4E9VRsniMQNMLCWqc/ygAK07cWbK2Rh90tS2C4nK6OHFkNkK94zDilfxod1 NBFTUPPYfEU2CSa3eLlpfhYY3/2X7zNvmmCt+chHUnAhQLhldQ3WlqmTKP+ZK9LX002/bY1O M8Zk76WyA/A3EfsIUbnXBQvFyjwX6W4QEytlZWtp/yRIe64JOa3dZ8rkhragb2N4VgVLBVe3 jtZgfQ72pHrfNk/T0uT+hjFqInvIYiXkhxB2GiD7Ga28VuXojTmeoaW3GKcvoVxONSju7WzD XgyxWRmNpd5uifJcC3YU3tNNAosnQ0/5FW4wkducSEVwwqnAiSMQEMDDa/e6oP6GyOzes5SV LTNCRYdHWVKbxjetYU4SKm5RdLx9XuJo0qL9vO97mCNwdNkTM7gO2ycQ49qUiGbCZJOh2gpP ZRFrpJDxbloosAfOEB6IYjhb38u6jvbScJKK3bWA+a8TK4SrQpdRd1cAnW9sA8jCTV8ejZq0 CHnOwU0EWVWBigEQAJYuihAOOOe/kAn045Ayn+3is3S+6eV4IAgL6lJhoChkgUJJuFoRX9BY rd35z29+q2/UCoProzd4Mk66wXeWv6n4s5R79OUzjgMLCTVlVaMy4gjPL9NRDwMt7KYRF56g mnoKZwfPDi/oJ5toPPboW94FrMwonqbdqYM2Pyi/HPMe4e396WQ4TaA1CdhyzKHoFSpkGcjX zIQ5yQ5aaGS7wonRu/pg15dbu+8QOgxRNFa0bO+ntz/30u+VmxFqFVbExjuy3Or8fSBhJgx4 cfyrrunKLclpZ/52VeK3l53yWYpR8RaTZfzpu8Ih+ijAY4XLO5F8P1T6sEviMaTY2F0sbFRx ZJXsgFpiKeWPHUn7/LX7qcoFJYoFqG6b3n5km+qy39x6lMgJDuxKpeN6lYj//LB6xVzn0JI+ 4ZHPrEkFqxu8VkL7deCPTI67ZJik18jXjTH9sha1YBvgvxIPFMA7ZwXX2AwNu7PzdcCpWarS usOAHbjQBUsQ+ZPpI1oeFnsCPZ+8/mMcTjVRZyJxOPs3KnXZv2cXNuaa7lwkWS366gHzQI7O l6WdC8TyNjiOzR654cL8BgYQ/xNSW1vTXqPWSRU8/b/5IueY2tQJh0CKIvfoP0rk8976wa1R 8SRi08mwHX7+F5oSeXLRNHicQGpS1f0DywdRcQ0MFHyq/CV4dTltABEBAAHCwV8EGAEIAAkF AllVgYoCGwwACgkQdoOXo5EJFKkDNw//c8nailIVOV72l7Lze+2AuK9MYUCFb1i4qI1WTnG0 OHQlCAltPhdwZPAozJw/eNqIcuWQh8rZspve9ipj589wLSsVyaFRsuYXTiYZ9RlRsnJYa36h 2JML3ZGrRsSxaUEAggbiOKbwmw27JuOIPmC3Gln4tJuZ+nw6cfCgMI45bIzinVanxHwPLeLp BZKpaEYzAwtBykUfAXn3jDwrI95UlMJvhHDFuRgvb6uSyJIqmp5aR/BjnlSdEwICyWpRAVSt yqZeBMeHbCr1B97PIRzk/q0eHm9T+AoiZWwz1iVGGgkYdAaCfs2PBlNHmRm93cfgoEcaGvNb RbTXOe28niMJeYMQsnjOTy5AQIrhVKeP5E+qVs/oPK/inmLiTbjZcnrO2wR+uxpPGgmR6M/3 p8qyRdaOvT87HZXO+Wr+r9A4UnwhCPsfELwPlEo+TJQ/oE71Mlkx/ddQCWELcHjXrQF9YbzA Ml7g0zTkgHysh4DNkV5iYteOcmCwsWdOwn0H0yZfz6weyr8nEdPngyOjFNKMIpcTbeg8866c GxXAJj46dub4VdVwfvMRHfmmRJkjdId7YHWMgz2Kf7S7KPCROLis7WjlOdSS0q2m/7qy9WL/ ZW50YLS8ZZLMrnari5JxCyJX+8n6ZASo2AA93iTbKmYegK2LDwW1QLU1iAF3GyGOnSE= Message-ID: <97fd6d35-ef35-8583-5ef2-3ea761c36c12@tundraware.com> Date: Fri, 14 Aug 2020 13:47:52 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-US Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.6.2 (oceanview.tundraware.com [45.55.60.57]); Fri, 14 Aug 2020 13:47:57 -0500 (CDT) X-TundraWare-MailScanner-Information: Please contact the ISP for more information X-TundraWare-MailScanner-ID: 07EIlvWu030608 X-TundraWare-MailScanner: Found to be clean X-TundraWare-MailScanner-SpamCheck: not spam (whitelisted), SpamAssassin (not cached, score=-2.145, required 1, autolearn=not spam, ALL_TRUSTED -1.00, AWL 0.76, BAYES_00 -1.90, NICE_REPLY_A -0.00) X-TundraWare-MailScanner-From: tundra@tundraware.com X-Spam-Status: No X-Rspamd-Queue-Id: 4BSsrj0D9gz42Zy X-Spamd-Bar: - Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of tundra@tundraware.com designates 45.55.60.57 as permitted sender) smtp.mailfrom=tundra@tundraware.com X-Spamd-Result: default: False [-1.89 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[tundraware.com]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.88)[-0.878]; NEURAL_HAM_MEDIUM(-0.85)[-0.848]; TO_DN_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.13)[0.134]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:14061, ipnet:45.55.32.0/19, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:48:06 -0000 On 8/14/20 12:49 PM, Aryeh Friedman wrote: > If the controls can be circumvented they are essentially useless and > shouldn't be in place in the first place. Besides anyone who knows what > RDP or SSH is would also know how to circumvent controls designed for > non-technical people so that makes the blocking of them even more short > sighted. This is what I meant by security by obfuscation (i.e. hiding > obvious truths that everyone with any knowledge knows). I am not taking a position on whether or not blocking ssh is always good, bad, or irrelevant. However, I pretty fundamentally disagree with the position above as written. It is absolutely possible to dramatically reduce the technical attack surface by limiting what ports can be accessed on a given machine. For example, suppose I have some batch process that ingests data and produces some sort of results. Assume that I only permit the inbound data and outbound results to be made available over a single mechanism - let's use an MQ system if you like. No other ports of any kind are open beyond the TCP/IP interface to the MQ system. Let's further suppose that access to the MQ system, in- or outbound, is narrowly limited in time with dynamic firewalling/network rules. And let's harden this even more by making those inbound- and outbound payloads encrypted using one-time pad asymmetric keys. Can that system NEVER be compromised? Of course it can, but the compromise has to happen either at the physical server (or, by proxy, the hosting entity's console interface... OR it has to happens somewhere *outside* the server itself. Think about what an attack on this system would entail: - Hacking access into the private network where all this runs. - Figuring out how to compromise access to the MQ system at the moments in time it was handling traffic to/from the server AND showing up as a legitimate subscriber to those topics. - Figuring out how to crack into an one-time pad encoded payload - something known to be computationally impossible in reasonable time for a sufficiently good key - at least until quantum cell phones are available. Is the risk zero? No. And certainly the same set of concerns have to be extended to the surrounding infrastructure (network, MQ series, key management and distribution system ...) But the system as described above, and built with proper rigor and skill, is really, really, REALLY hard to break into, in large part because the only place where the plain data lives is in a server that has only very brief connection with anything and then only over a very narrow mechanism. My point is that the "principle of least privilege" is very much a proper construct for designing security hardened systems. So not allowing ssh on a system with a web server isn't security by obscurity. It's just limiting the attack surface ... a very reasonable decision for some applications. In general, security has to be seen as a risk management activity, not a technical one. The amount of security focus on, say, the nuclear launch codes, had jolly well be exponential greater than protecting the grocery list on your cell phone. But *if* you need great protection, reduction of access is entirely legit. The truth is that the single greatest weakness in the design above has nothing to do with the technology at all. It has to do with the recipient of the report generated by our mythical server. If that recipient is a person, the risk is that they will "leak" the report outside the organization in a stupid or malevolent manner. THAT is what Data Loss Prevention systems are supposedly addressing (often poorly in my experience). Most companies try to materially reduce this particular threat by turning off USB access on laptops, eliminating any form of remote access outside their own networks, dividing their networks into separate, hardened subnets, doing deep scans and audits on email traffic, and so forth. And yet, even when done with almost infinite money and endless security paranoia, this remains one of the most intractable problems in information security. Two words: Edward Snowden -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/ From owner-freebsd-questions@freebsd.org Fri Aug 14 18:59:30 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 217D43C6405 for ; Fri, 14 Aug 2020 18:59:30 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: from mail-ed1-x534.google.com (mail-ed1-x534.google.com [IPv6:2a00:1450:4864:20::534]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSt5r3Qxhz42rY for ; Fri, 14 Aug 2020 18:59:28 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: by mail-ed1-x534.google.com with SMTP id l23so7561628edv.11 for ; Fri, 14 Aug 2020 11:59:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:cc:subject:in-reply-to:message-id:references :user-agent:mime-version; bh=VctVKYlToc8APzQaTs3l4bUlqRzKfQFDBDIX/MHi5O4=; b=SJdvWUTnbSMJei+bKd3MeI1WRfwC9qK+CWSK+qDptrqz/E9VEF5n8xmSDs1LcYPO8Z Y2Ymow0wmF7F1LccI/J1ra78TAi+Ilsg/fAO4kQmDrGKjABc9XqWTw1uJ9nRnocFHsQS NypsN0KKFcFFDMm6rZ6jSWGHdsQSlqbGK7CZxYA9G1qZ4OUYLPFbyRgL39ImO2NNOg0/ 3+iZw/PC0aSrwyY4T1Pz1G/h2yEOEHv+uztIaK+M9u14NSVbId+l2v2I7XxvzjFzUVKH ckWwV4xmPRnUEDKvzYtOerGhSpIX3FOO/b+SDTYO2tu6gGt4TBGsI+z/hiF/LjjdXtfC o+WQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:in-reply-to:message-id :references:user-agent:mime-version; bh=VctVKYlToc8APzQaTs3l4bUlqRzKfQFDBDIX/MHi5O4=; b=Rsh63BT+wuZm/GniCbQzkm5BDGvCCP087ymmIWeoEJVAyWTIl9zA/mtLoG0FaleJlz 2wXfvmKVxJSV/C7CeJ+fB6DAGHSQtXoruXtHzcbQAsJYSrbnN3hYsqWAHeAXLknnAsIQ OcDBf7SxeLb7SMiXuXTW5M6iPLL/Qjyir2keD4/rfCi8eCNUWX7a5hdNT66Q32+uinNW M7++eBWX9kTkNd1Hxw5Yet9JkFsy3SJWYzj+TbB/L3eiVsb+36F39AjaCQj4eSuT4DTu EWFBWXBGMdQ70eA3apeHnvfGnGamLRtsFGDkDeqHzWkMD9DcElLCn5SCySa+asSzVwsO Vvjg== X-Gm-Message-State: AOAM5320lbMIuiJdxw5erMNOwD0SQ3C6DBpi8qhKPyMs+fgZfz1YWl58 K3rL0Jyr5uNpPSVJ+84CQJs= X-Google-Smtp-Source: ABdhPJxSlGDwI0RK1ksThPd/SgFqT5+eWgE9feliNuIq8x/YivfhVXjW1QHvlL/r5XyVLfUKPfeKsw== X-Received: by 2002:aa7:db44:: with SMTP id n4mr3701456edt.158.1597431566450; Fri, 14 Aug 2020 11:59:26 -0700 (PDT) Received: from [192.168.178.26] (dslb-092-078-051-020.092.078.pools.vodafone-ip.de. [92.78.51.20]) by smtp.gmail.com with ESMTPSA id bx22sm7365738ejc.18.2020.08.14.11.59.25 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 14 Aug 2020 11:59:25 -0700 (PDT) Date: Fri, 14 Aug 2020 18:59:05 +0000 (UTC) From: Roderick To: Christoph Kukulies cc: User Questions Subject: Re: 5.25" Floppy disk drive not recognized In-Reply-To: <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> Message-ID: References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> User-Agent: Alpine 2.23 (BSF 453 2020-06-18) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Rspamd-Queue-Id: 4BSt5r3Qxhz42rY X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=SJdvWUTn; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of hruodr@gmail.com designates 2a00:1450:4864:20::534 as permitted sender) smtp.mailfrom=hruodr@gmail.com X-Spamd-Result: default: False [-3.22 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; RECEIVED_SPAMHAUS_PBL(0.00)[92.78.51.20:received]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.02)[-1.020]; RCVD_COUNT_THREE(0.00)[3]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::534:from]; NEURAL_HAM_MEDIUM(-1.05)[-1.052]; NEURAL_HAM_SHORT(-0.15)[-0.145]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_TLS_ALL(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 18:59:30 -0000 On Fri, 14 Aug 2020, Christoph Kukulies wrote: > dd: /dev/fd0: Device not configured > 0+0 records in > 0+0 records out > 0 bytes transferred in 0.000262 secs (0 bytes/sec) > > > Also # cat /dev/fd0 >dump > cat: /dev/fd0: Device not configured > > Why? With low level formatting I mean the way the blocks are separated and the bits are represented in the disc. With old floppies it was not standard. The prblem may be hardware and software, I do not know what FreeBSD does. Rod. From owner-freebsd-questions@freebsd.org Fri Aug 14 19:13:09 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 47EC33C62E2 for ; Fri, 14 Aug 2020 19:13:09 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BStPc0zvXz43b5 for ; Fri, 14 Aug 2020 19:13:07 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPA (Nemesis) id 1MPaQU-1kJG2l0zYY-00MgPi; Fri, 14 Aug 2020 21:13:05 +0200 Date: Fri, 14 Aug 2020 21:13:04 +0200 From: Polytropon To: Christoph Kukulies Cc: Ruben via freebsd-questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814211304.a1975610.freebsd@edvax.de> In-Reply-To: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:X7B08fxKaWHF4sbgZyPfrmLKjEiCyPgKTq0EiB/k6ci/S0ZKgKy hj0BHrDWIm6mbLEVg9AlHAJpV6NiJKHnSvZlb8F1+yacS1ok91dGJ4ERzPS6ROr6GQau+RC 48zL/bjDN0EDIvjfMTF2P2/72mSAe3Z8pMpNl2zCXFt18Ya2WFvLe2qF66GdCNhBCxNPerv 6lVAMvJwhdjOPsGNpYjyQ== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:xD1Z5whFgA0=:kSe95hkjc2aDx2CYzA2dA8 gf40lWISmC6TnJSZAx0MxPMKchAeFdMxn15+BeW+SbdyTTd4OFqaXshsq73v2kpdjicesMWuv WmL8WrWbVNTNJ4uoaMZzdQN1uC2cNz4ohLy6jzzZaVQLbpccngC/y18rX58MwvMeAKqzv9hmz Ltmbb1D2uuPf610TRNumStSZhXU3FZ4Qtphl2lRVXtXSmLbdpom56mu/05/vn1+l6UWs/MhXQ BWgESjnIYQCCw+7h6kMbKlmcx0KajnoIczjYU/g/c7gBC5rmI7/MsFM/ww2d7WwPpqwiCJTQF gDMaphdjfRdgKCK6m5s07C14cpVwnxSkqCYCFfk1xfDHqmN67l9QGU6VXYZwmwREPPGwlaJiI IQneiXh1y/hs2piLh/X6mtvd1JObGPg5K7f/WYkDcNBAtwfUwXgqL8zQZkD3Dln7d67nmib8C PR8a+Gr3FnJ3E3YZaNkVepKFJYtigg01cEKat+Sq0MfMDKtXHpht/r08p7eKwuQut2Ho2oHhR XfjLnEmaML2JVPELPwwP54S2YhoInQ/ktf79T9d+TC6TJo1BrCv90NJA5pJw2Wq8ahuy7tJdF uWPbY0RT4oIGWsAAaR0KfMBOzQzv+kyMFy29uKjhJo+f5lUpEQJgaKPeeoTrXLpihlUTeR6pG tPEqoL22TSA7hwUkcX+qaXxD37rNwIee2sln6UhOGjVSV9sA+EDQNLLdWOtHEyrOpWSchQNLH 6552ANjblCzbiKSLMaPtuWrUT97nQQL2DiEdPRWi78q5MCmL2L+srWyytPY0NEE2zGALOzE0g lVd5cP72SCqjQjVpTmd/tMjmx2WHiopAOrVT5t5Ln/jy2lY9f4TwghLqCorCyftYKqrHKEQ X-Rspamd-Queue-Id: 4BStPc0zvXz43b5 X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.134) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.69 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.11)[0.112]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.76)[0.760]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.42)[0.419]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.134:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.134:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:13:09 -0000 On Fri, 14 Aug 2020 09:42:34 +0200, Christoph Kukulies wrote: > I’m trying to access a 5.25“ floppy disk drive if anyone here > knowing what a „floppy“ disk drive is. :) > > MB is a ASRock939A790GMH > > I see the drive in the BIOS although I’m not sure if it is > really „connected“. > > Anyway, the FreeBSD (12.1) boot doesn’t see the hardware at all. You should see two significant entries in dmesg output: First is the floppy drive controller, second is the drive itself. On OS startup, a short "brrt" from the drive should be heared, with the activity light on during the sound. Example: % dmesg | grep ^fd fdc0: port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on acpi0 fdc0: [FILTER] fd0: <1440-KB 3.5" drive> on fdc0 drive 0 Yes, this is a real floppy drive. :-) Verify correct connection - important! The cable has two positions, "first drive" and "second drive", and two connectors on each position. BIOS settings should match to what you have actually connected where. A common setting is to have a 3.5" floppy as A:, the first drive, connected at the end of the cable, after the "cable twist", and a 5.25" floppy as B:, the second drove, before the "twist". If you change that order, make sure BIOS settings match it. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:20:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D1B0F3C66CF for ; Fri, 14 Aug 2020 19:20:28 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.187]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BStZ34MP2z442N for ; Fri, 14 Aug 2020 19:20:26 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue011 [212.227.15.167]) with ESMTPA (Nemesis) id 1MIdNt-1jscsW1fVN-00EhlQ; Fri, 14 Aug 2020 21:20:25 +0200 Date: Fri, 14 Aug 2020 21:20:25 +0200 From: Polytropon To: Christoph Kukulies Cc: Ruben via freebsd-questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814212025.de2ba2f0.freebsd@edvax.de> In-Reply-To: References: Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:MUxJvDcxEfddEMK1i2N67PFvboXNdVXFLzowUNlnlfvAQcez6pe psf7cjYaE/BeOiisWgcY2l0fBUl+gec1mJrAiC6LCM9POJgIzt4eD3LoGo9saeNZmxE7+XK k4KMd4FfOHqaWcgoPtvPEC484q3XN/anyGhLQh8Gf99ThMSRSB0l9oitoDpoMeibcxLw1dI JZlggWTDyPVwqnrD7ItDw== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:HVqIo36zwQ4=:ywP+xY7FyUhAZyJ+iW5D7G Ht8sEQnDusG67uzSyffa4yWGEJxnXuZ7oU7wp3mslvnv3s3G6tiBLj7VMfrhg+jkEqHrY7Sau /VRUStl5pxXO0MmXGtzCOon+ipvZ5K+DD6QgK+7jKRI72eqyCXoTn53YiYQpqD65fDcTo4bza 7T0isBuBq02gSIJt61ytkcFGMQfrcR8rLaKP7PS8LE6g6PKNwGg3ZEozt8ccRfCXzfPXHidOL PIsorBTRMq23uir+yJXf/bdghh7yfZr/H3Yq58P+P6sJXMksliviwsaJ+U3zshZDKPCSYq/iH qegPFsbq7PTXxK6J5sWHx5Y1WiT8VyA3AqHKxdFlzdZWBoOWwzPzt9x05UFhobfNCyAH+h2es 03rxwQcXd/cGfm+0pcNsZ6lWcjOu5n2CpQFitbW+fyW5YsGEd2gNcRPfqni3Q9+MqWmh55qtI 5MyAql4NXCbK2CuoOzny0AXWfZ0X9+xtXsnWklJkefYr+f9r1Rw3WXUtjTttLTmDW4XZTJIm/ dIanQdg+2iDm1L0bNjO3tXO7gK+AFk1FaZ9n8f1ha54DDl5/TyLqwq+O3LVlvIn5DSqnSKaNu uqm69Qlo/vA+ihFlob/FMJOA0rw36D67iSJVm4Wky74haMM0EjCnIa3aJ5VFUepjHi51Au0M4 1uhbmBnc6ItdBlx2gCFUMVnQGnwY5ZroeW0NSs5Jg1ZkUAIdXza5EY/2Q8Fcdo2tfds/wHlK3 VP4Sozu+a0PGeRiPJ5dHso62G0xMDaEBkpfuG/kwdQDj9x6UMQxlDqsuVi0i7oVSPgPbtyMuZ z5oAZ3YcAaT6NlQaYPeE9zPgy2AMw5dgWgVT/sLpwrhdKzB3+HF9wkPOmFxIXn43cMqHaCP X-Rspamd-Queue-Id: 4BStZ34MP2z442N X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.187) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.66 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.09)[0.089]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.76)[0.760]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.41)[0.408]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.187:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.187:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:20:28 -0000 On Fri, 14 Aug 2020 12:50:50 +0200, Christoph Kukulies wrote: > First problem was to recognize the 5.25“ drive from the BIOS. > This MB seems to only support one floppydrive. It comes with an ASUS branded point to point cable (one connector only). > > At least I managed that FBSD now recognizes the drive: > > fdc0: port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on acpi0 > fd0: <1200-KB 5.25" drive> on fdc0 drive 0 > > But when I’m trying to > d# dd if=/dev/fd0 of=fd_dump > dd: /dev/fd0: Device not configured > 0+0 records in > 0+0 records out > 0 bytes transferred in 0.000252 secs (0 bytes/sec) > # > > > Do I have to specify special blocksize? Try bs=512, that is a typical block size for floppy access. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:30:15 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 31D393C6AEC for ; Fri, 14 Aug 2020 19:30:15 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.187]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BStnL1XR3z448D for ; Fri, 14 Aug 2020 19:30:13 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue011 [212.227.15.167]) with ESMTPA (Nemesis) id 1MFKX3-1jvw2n1qMT-00FndH; Fri, 14 Aug 2020 21:30:12 +0200 Date: Fri, 14 Aug 2020 21:30:12 +0200 From: Polytropon To: Christoph Kukulies Cc: User Questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814213012.94e94a14.freebsd@edvax.de> In-Reply-To: <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:OCjarh4+rdFW48S2Apz6lVJQkANm+TXqOiJsHA6+jH3kCG8DlOw cz0Tg/vdtcZ+dzhrF6dhHwvtgYLNcglrXHgXC9J6ffU45E2WvHyViVnYDjcluFjI2d653G7 0jXkMf9Bj5fGp9tWBRDMnIW6YWxbT01KeUUVJLtbkzGNyRqgaa6KhqIiw8oPhdLzzso8yzl LIkESdkmvAF/jciNwthzA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:nNn7FMkP46w=:A94F+xs4b4CqaCnCq8Xla8 G743ZG5tFJsSaX9+fNjlXHZ2Gfz72vq5O5xU6FWCyVQ3LCHO2RN9n48riqoBtwicrPsMLrsUs T+gQEXySxVVXh+jZzY+vyy/IWLOkWb5sR96/dVOpb0hCueKQA9HiQ0L3yE2pDs1n3iM+IFopY UIjH4UGflqWRj+FeXO47OjofqaSQZbk6IBNG6P5Ed4b24a4JEQK2QD3q9rfL22hYjRep1luxW CQdIXnGVdOUqtclyOIdIqCQXmjscAJ9kcnM25CLMlM2hNdDK7YkoFxg6GH5kgvHOIp56VTrfR qbawdh84SAI3V2rpZFZXNocjSLLRNa2VOcIngp6GuAhZccYOcKpotaOvKY03tvlB4cjuVbw96 /+tnjFNLLLWskPzEq23uZ6/XP8KbOKuiqhP6r6Mu7/oNxchD/386/bYg8YyAdJ5qCGS3MwLNB uFFknTtLY4aw447LVlL9tL0ybUkk2SyMjFZcjOzr5VduyQltAvmad9Z+zJ0FPtM2cTAhyV4B8 IsDZDa/wPsWlc7uvgB5DPf7EYfY6mvqdPNomKGyWulwLT5RFA2rTIG+pXZoqmDGhdQe7wsxvq jBb0aEjkSOH0RlRt0dMfI+xHHfTbklqifmb5fuHEjdCrTe6cn348/Epp/b9SzH1oVQmp30/Ok T2/XghiKRV+5eqvRPoxviZ8J1/jchM1IfygibpyucRw82ZUEYnSGYktFsSZBgbCz4nK2CLoPo n70bfVHEWHmJ8UTFLCcS93VO4KTpESwaUv68KmvuauJM53ygvjEx1sdoLe7yHl1MgDVJ/cXBU npFbgmb5RdNwAzhvKfGsAK5LfgSh6KU0x8Dl0XCd+rIdoHZOUrLNX2O6PgFUuu6OUuNHig5 X-Rspamd-Queue-Id: 4BStnL1XR3z448D X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.187) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.65 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.09)[0.090]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.75)[0.755]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.41)[0.408]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.187:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.187:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:30:15 -0000 On Fri, 14 Aug 2020 15:40:54 +0200, Christoph Kukulies wrote: > Fine. There may be many solutions. Actually I’m trying to use the tools I have nd not buy extra hard- and software. > > I might also buy a used ISA-bus computer with a VGA Monitor :) > > FreeBSD always has been a good platform to experiment at low level. > > Meanwhile I’ve proceeded a bit as can be seen in a previous post. Only this is a riddle to me: > > # dd if=/dev/fd0 of=fd_dump > dd: /dev/fd0: Device not configured > 0+0 records in > 0+0 records out > 0 bytes transferred in 0.000262 secs (0 bytes/sec) Try with bs=512. > Also # cat /dev/fd0 >dump > cat: /dev/fd0: Device not configured > > Why? That seems to be a problem with hardware formatting: The drive does not correctly respond to drive commands, or the medium doesn't suit the drive. As there are many possible combinations: It looks like you are using a "PC drive", a 5.25" 1.2 MB drive. What kind of disks do you try to read? I suspect some kind of incomatibility here... > I recall there were devices like > > fd.360 > fd.1200 > fd.1440 > > or some such in earlier times where you could choose the right device. Yes, those were present on Linux, if I remember correctly, such as /dev/fd0.h1440 (the typical HD, high density, DS, double sided, 3.5" disk drive). > Also using mtools gives me similar messages: > > # mdir > plain_io: Device not configured > init A: could not read boot sector > Cannot initialize 'A:' Is the disk in the drive a MS-DOS formatted (FAT) disk? % mdir Volume in drive A has no label Volume Serial Number is 2483-A8C1 Directory for A:/ drvspace bin 65479 1996-09-05 11:11 command com 96324 1996-09-05 11:11 format com 51111 1997-05-01 12:14 sys com 19143 1996-09-05 11:11 [...] debug exe 21162 1996-09-05 11:11 chkdsk exe 28976 1996-09-05 11:11 uninstal exe 76896 1996-09-05 11:11 22 files 993 649 bytes 242 176 bytes free If everything works correctly, you should be able to see something like this. Furthermore, using mount_msdosfs should work (note: for reading disks, always use -r to avoid any kind of writing attempt). % sudo mount -t msdosfs -o ro /dev/fd0 /media/floppy % mount | grep floppy /dev/fd0 on /media/floppy (msdosfs, local, read-only) % df -h /media/floppy/ Filesystem Size Used Avail Capacity Mounted on /dev/fd0 1.4M 1.2M 236k 83% /media/floppy % sudo umount /media/floppy -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:37:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 76E8F3C6DBE for ; Fri, 14 Aug 2020 19:37:16 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BStxQ41tgz450f for ; Fri, 14 Aug 2020 19:37:14 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1Mnq4Q-1kUAUT0p3q-00pJAt; Fri, 14 Aug 2020 21:37:07 +0200 Date: Fri, 14 Aug 2020 21:37:06 +0200 From: Polytropon To: Aryeh Friedman Cc: Jon Radel , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-Id: <20200814213706.18eb16b9.freebsd@edvax.de> In-Reply-To: References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:W7/6icrFrjufhearSF0xyN7Tc2bySvvpjixHoofKMe0qXLy9wlf IHXCAQ/N8MSihNDo0Z8aqo98zZBS95NBNGEJbQxvu17A7FUYqbFYbTmBUmt5fW4fAJPliJg 6mYJTmcVtuHuVVhh0KYBybUz/R61IzYqnyP4RIpsL5YiEEHdiTXvFS8wWSSO89VDi2k/t6p eY+5VME7L30ojlte7IJiA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:Ml+P6ED/vz4=:iD7rDhcGgPkA9aaenlUjLX ViqmyQda9CLR7yOU67aJRYkWbHM7ELKGe/SKmjEjzPpWkJu1m3gRyhPVNp+dKNNXEZgPm0QNN eTsPrI9YQ+VA0kDCGLesQtvYHwkk81ZXkdTWE+ElBNzLFGtDaQOgUzAHCyBFA5Uuub4YCAf2a SzJz63AUc8mcXfosXhHv/AKyl1bkGi8lKL/Uup4r7mg2me9h1CY9OUEhgVXfzezJfq0/RXy4w cZQeDG25rUP9ceywynV01m3CgjRhi2z2JAGetBvOoJhUNgZ11cAmuujyDKiALedZ/64VawgCV ttVCavnuIqmGdZhrH+opx8srtLqhDKRGUOtb4gCu5gaphtd05AIF7nmbxVP3Pl5cvbMq9KpRj 2VuzZFLystWj+2Y4dlJ/yYQEhpTRIhrtFu9G0j5s+v1JH8MUY+Dl80ZoqQ/lxNt6mEEnXKxl6 AmxX87P6dVlNPxa6PKSYouQvHvQ+sU6ncp8JqjDBGvYouuOk40FGmMFbuQcpWd3MTvF4FkSF7 vb7jselIrfgu1aY+aUa5OHzqCzd2LRKKu/MpzU/omjWn+BUXtgA/IitM3nGueRSluK9p+wq8V Wn/oU+s8xlKYwF0u8xzXczBw67XBmi9XuJ2agD4uFsfqGHrcbgVXVcamwelYEo+Pa+5dKmQWM l6K46BVviqBoPVL2w0ZOPxbUs6G9zZAVghZM8ShvixXJG+Hlka6OZHRYVqODozPqsWUdw+/qz V02G0Biph39qoDyoMbnBbifeNcpk0lDnU28TyX6GCr0lAAZkYaW9ERyhsARuveJbpfQ7ZeBn3 5qaJ+n2ZIBKaJObf6lQs+cW/ZXEweeu1/RKzuLmVVvIvzns5A/UDg3UbIFNnN9XvUAb8wRY X-Rspamd-Queue-Id: 4BStxQ41tgz450f X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.134) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [4.12 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.12)[0.117]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.86)[0.861]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.74)[0.741]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.134:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.134:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:37:16 -0000 On Fri, 14 Aug 2020 10:44:35 -0400, Aryeh Friedman wrote: > On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: > > > On 8/14/20 09:48, Aryeh Friedman wrote: > > > On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk > > wrote: > > > > > >> On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" > > >> wrote > > >> > > >> Again many corporate firewalls don't allow ssh out (or in directly) > > >>> because tunnelling bypasses the firewalls. And again it seems odd for a > > >>> hosting company. > > >>> > > >> > > >> ssh out is typically prohibited to lower the risk of employee transfer > > of > > >> sensitive data to external destinations - So called Data Loss > > Prevention. > > >> This, along with email scanning and man in the middle cert management is > > >> pretty common. > > >> > > > Unless it is 100% air gapped with no ability to plug in portable media > > > and/or record the screen then nothing is 100% immune from such loss and > > > thus not allowing it makes very little sense. If on the other hand the > > > idea is to limit the damage that malware/spyware can do then it makes > > sense > > > (even if someone does in [accidentally] install malware/spyware it can > > not > > > send the results of its dirty work anywhere). > > > > > Untrue. As the CISO at my latest employer said to me (paraphrasing > > some, as it's been a while): > > > > You and I know how to circumvent the restrictions, but the vast majority > > of the staff hasn't a clue. This cuts down the noise I have to wade > > through. > > > > Oh great security by obfuscation! Sounds like the CSIO missed the first > day of security 101. False sense of security is always a bad idea. But but but we are ISO-9660 certified! And we have that expensive snake oil sprinkled everywhere! ;-) There are measures that do not "add security", but can help to limit the line noise. A typical example is moving SSH to some non-standard port: That doesn't prevent anyone to perform a port scan and connect to that non-standard port, but it limits the fun for skript kiddies that connect as "Administrator" on the default SSH port. Those who _want_ to extract data will find a way. As it has been mentioned, a screen capture send per e-mail, or a screen photo taken with the private smartphone will work. There are so many possibilities of data extraction that you cannot stop with a firewall rule... > > And back to the main topic of this thread: What does your lawyer say > > about your client that is huffing and puffing threats over your > > inability to perform magic to paper over their unwise contracting > > actions in regard to a different vendor? Seems to me that you left the > > land of technology a ways back on this one. > > > > Actually the client has signed the one piece of paper we needed to move > forward which is a waiver of liability for stuff we said was inherently > risky (in writing) before we started the work. It should also be noted > that due to lack of competance by the hosting company and by the equipment > supplier we have become the client's defecto IT dept. Even though we were > originally hired as programmers only (this means when push comes to shove > the client almost always trusts us over anyone else and for the most part > "I will find someone else '' is just his lack of social graces and not an > actual threat). Tell them you're "devops" now. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:40:15 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 9F93E3C70B1 for ; Fri, 14 Aug 2020 19:40:15 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.187]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSv0t1fMSz451Z for ; Fri, 14 Aug 2020 19:40:14 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPA (Nemesis) id 1MLAZe-1kNeTm0UNu-00IGXU; Fri, 14 Aug 2020 21:40:12 +0200 Date: Fri, 14 Aug 2020 21:40:11 +0200 From: Polytropon To: Don Wilde Cc: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814214011.0f975fd5.freebsd@edvax.de> In-Reply-To: <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <4db32149-6ddb-e70f-c36a-a2acc8bc0e9c@gmail.com> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:ndrwxFx3hN/uj/gG5kPN4Lg1N7RGRTJkyi/Wazn0v7A8/BgCwBw hbKCuF13kTGa6CTuTDf6NHKNASQybvH1Ux0brUUb6xROp1v7jH5paGx4pqUiiIettLFDpY7 mg3T18vpKxH3jLXGE3mue5HDz/QK7aIZMpweE08nlvlxHMa6fwfMtfRcGkdGaRJgkfG7J9y iho7BWKceqY1Ejks4dIjA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:vD2FVuib/to=:pQGg+0Ak1v+rRDMhGC2kIt UK1BXFA9HEftr2spyPZnfaxLqInyogsNE4BBTqFg176tz75Auw7747K8J4j4wbb/VD/7NjEi0 OPV4MNfMDYLJVIR1mrOclvwFteaj7Dgjwy+HA+m5+xTQHwPLC/8tpWZTzRyuRpmTLluQm/UW+ ZMH0mZXx+CYKJmZSzy8ToxFfI0EX3YeByFJXuXkNczsbSaWyMkaz0j+xVbSneypQSmngioo/H rrkjVdwLbZjfiu7GHjCPlXnp6MPvNPPY8pxn/27dTEndeLEgXlSWMBMHc4fW+xSPn2i77wGQY y4SXKPtbGIqvWMIp58q/XRmKTfc+Bc+R2Ss5zunbMR4I0idlBSf7O4nilVKMzDjpQdjwVxdFS CrNjiJsDWPDTzBs8L/IVwPbcsy7jGnG0k07y0oYgPbDtcWPuoppvxBUaVE+HKJFGZWiqUIBF4 ffSYfBqvt+U7Gn+rgioQ8IFoMHuHoQuXXe+PkXlZPrH+TYy++8rlGAq0LduFeOkyzQDI3cFMi 7X1jUUbgNuL6osag0VbZBM4DwV6jVj4ErQaqgemiKkYqkOVBKAsOKirpXEoh2nNNWHC0Iq53e IJWj7fGR1RALIL3AHcT8s6EKCkL6pcNM95dDD0Lmqr9a8svgoY+T4KB/tXY1q7NMecmDHYzK3 p3ZLYztf1OiEYo85jyIo9waGxdaU1Cp85r5I6bhv16APGDfOj86n4DKYNgzod3BZ6+6avDY+1 TcQpKxmNfrZVw7HiJglO+hRDTWRjsR5aW5i7TdjyGzTSo1UrmyXJEA7L1KDMdOyL46l4+dA6h YMTLELsZza6LSAGumQchkTDXB+NTmOBoYW7E/cl2Pce2I6qPvnh52re5tQhXJFZ7ZrFIEXz X-Rspamd-Queue-Id: 4BSv0t1fMSz451Z X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.187) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.72 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.09)[0.093]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.82)[0.819]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.40)[0.403]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.187:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.187:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:40:15 -0000 On Fri, 14 Aug 2020 09:14:05 -0700, Don Wilde wrote: > It's still in the GENERIC kernel configuration. Disk Doctors, if you > have one local, should be able to tell you whether the diskette itself > is readable and formatted. A still working DOS PC will do so, too, if it's a DOS (FAT) disk. Use a C64 or a C32 if it belongs to a different platform. :-) (Yes, I'm saying this as a living museum.) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:46:45 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 86E7C3C704B for ; Fri, 14 Aug 2020 19:46:45 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd2c.google.com (mail-io1-xd2c.google.com [IPv6:2607:f8b0:4864:20::d2c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSv8N1KZRz45G9 for ; Fri, 14 Aug 2020 19:46:43 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd2c.google.com with SMTP id g19so11881798ioh.8 for ; Fri, 14 Aug 2020 12:46:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aLB8T8dZFNRxU7hbH3iR1e378jcfe1/tHU34U10p5RM=; b=LI70sovCgScMSWqZJbckFuUvYUhXASrHZguKb7Huuqfqr3GGIjoaTydxaj9hnvNn2z vbXJpdqkDc9I7LULxugkeyecTGzGTmlidbpK9dX5bUyh0rkgKIkDhyNVCnjom2v5AYVo HQbd+BqgACMp8bCSuavfgEKvKzOb7d+IBImLkL7vF7ZhMZ5sNUmuicZ+Y6TOpXJZkj/S QVuG2nAnYDjjAacIGswR9fr7iclgBu4iYJf+wcmCyxcC4GMEFPNuk08QiML7tQXn/Qe/ 2qqE9PNeDillh9Q69pic39CcLvFbJLc4XhkS4UFiMbEp1xykbrSlwmlCoU/THW2ECMAR Coqw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aLB8T8dZFNRxU7hbH3iR1e378jcfe1/tHU34U10p5RM=; b=WCJICkDwNdeQOTb8XGJCyz4dTqquzh+MKsceABHTjbeRQ23lEgHif7Z5UKLo9kUA0m TQMvr11dl0QnhykgX59KzLOJG6vsesaI+8IFkFn6aA97x0ovduyZzQxNUIPJMpiFRahE TKojGLeoD5W/rxYPC7/aulJFDS6bSC4M7xqJTbOu8HyT7dKkE3qMxni798ok75hyddpD znVtanL8STSpfd50NLNq0LtHRejoyil2QgP2iTIAOkkRJH3QPPrV6cPYTGbCcocTul/J n+uimL2FIM1bOkDireCacWf5xnK8Q3rdS9PAlVkarSSpVioH64j+aTVohGznY7GV+qxQ w3/A== X-Gm-Message-State: AOAM5333/KbiwWz3hfltsV3TN7ORi07qL6LvbI2eS1dmYcNXymTxDMkV u5AGzQ0kAsWrXX+JV66TZ78DwfCLELfVMk+VGWjxWJ4xaJQ= X-Google-Smtp-Source: ABdhPJwVMAHD9u20nZzDi07VU3vUDy9MSQn5aqy12eh+Qo3+7xTlFGLX+D8T5i96Fr9sS25Vng201RsUbIJSUwOr/Cs= X-Received: by 2002:a6b:b4c8:: with SMTP id d191mr3357359iof.174.1597434402908; Fri, 14 Aug 2020 12:46:42 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <97fd6d35-ef35-8583-5ef2-3ea761c36c12@tundraware.com> In-Reply-To: <97fd6d35-ef35-8583-5ef2-3ea761c36c12@tundraware.com> From: Aryeh Friedman Date: Fri, 14 Aug 2020 15:46:31 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: Tim Daneliuk Cc: FreeBSD Mailing List X-Rspamd-Queue-Id: 4BSv8N1KZRz45G9 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=LI70sovC; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d2c as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.22 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.057]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.006]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d2c:from]; NEURAL_HAM_SHORT(-0.15)[-0.153]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:46:45 -0000 On Fri, Aug 14, 2020 at 2:48 PM Tim Daneliuk wrote: > On 8/14/20 12:49 PM, Aryeh Friedman wrote: > > If the controls can be circumvented they are essentially useless and > > shouldn't be in place in the first place. Besides anyone who knows what > > RDP or SSH is would also know how to circumvent controls designed for > > non-technical people so that makes the blocking of them even more short > > sighted. This is what I meant by security by obfuscation (i.e. hiding > > obvious truths that everyone with any knowledge knows). > > I am not taking a position on whether or not blocking ssh is always good, > bad, or irrelevant. However, I pretty fundamentally disagree with the > position above as written. It is absolutely possible to dramatically > reduce the technical attack surface by limiting what ports can be accessed > on a > given machine. > The question was not about blocking incoming ports, it was about blocking outgoing ones. > For example, suppose I have some batch process that ingests data and > produces some sort of results. Assume that I only permit the inbound > data and outbound results to be made available over a single mechanism - > let's use an MQ system if you like. No other ports of any kind are open > beyond the TCP/IP interface to the MQ system. > The issue was not the very idea of limiting ports in general (which I agree can be useful up to a point), but rather the fact that the hosting company's *NEW* policy is to limit ports to what *THEY* think you need, not what you actually need, and then refuse to open what you actually need. Also, IMO, the only reason outbound ports should be blocked is to prevent malware/spyware automatically/invisibly sending stuff. I *DO NOT* agree or support the idea that humans should be blocked from doing anything (anybody who really wants to get this will find some way, even if it is just what is between their ears). BTW, message queues are a fundamentally flawed assumption in many application domains such as the one I am dealing with. The reason why this is bad is it makes it impossible for third party applications to be developed that interface directly to the DB which is not avoidable if your magic message queue is closed source and only works with a set configuration (which is the case in many such areas). It gives a false sense of solving the concurrency issues when there is no such solution in place (the only way to solve them is with true record locking). And it gives the developers of any system the false impression they don't need to worry about concurrency at all. This is the *ROOT CAUSE* of why all the issues with the hosting came up in the first place -- the other vendor I only mentioned in passing made just such a system and due to high turn over no one in their org has any idea of what concurrency issues, if any, exist in their app, thus we need to get paranoid with backups, and this is what caused all the flaws with the hosting provider to become obvious and major hurdles. Every other system I have seen based on message queues, like OpenStack, are disasters waiting to happen (OpenStack even admits it when they say the worst possible disaster for a cloud is a power failure?!?!?!?!?). > Let's further suppose that access to the MQ system, in- or outbound, > is narrowly limited in time with dynamic firewalling/network rules. > And let's harden this even more by making those inbound- and outbound > payloads encrypted using one-time pad asymmetric keys. > That's the very system the law requires for us and I can tell you from first hand experience it is nowhere near secure and anyone who says it is has never attempted to actually use such a system. The exception is the one-time pad since there is no such thing in practice (not even this idiotic idea the hosting company has of useing TOTP). > Can that system NEVER be compromised? Of course it can, but the > compromise has to happen either at the physical server (or, by proxy, > the hosting entity's console interface... OR it has to happens somewhere > *outside* the server itself. > > Think about what an attack on this system would entail: > > - Hacking access into the private network where all this runs. > Which, in a datacenter that has public components, is so much easier than you think. > - Figuring out how to compromise access to the MQ system at the moments > in time it was handling traffic to/from the server AND showing up > as a legitimate subscriber to those topics. > Completely trivial on most message queues. The fact you're even holding the message makes it vulnerable. > - Figuring out how to crack into an one-time pad encoded payload - > something known to be computationally impossible in reasonable time > for a sufficiently good key - at least until quantum cell phones are > available. > Relying on too many moving parts is always less secure then fewer and better designed ones. This solution has far too many moving parts and is frankly the main source of idiocy of the hosting provider this thread is asking about. (See other replies in the thread beyond mine to see why). > > Is the risk zero? No. And certainly the same set of concerns have to be > extended > to the surrounding infrastructure (network, MQ series, key management and > distribution > system ...) But the system as described above, and built with proper > rigor and skill, > is really, really, REALLY hard to break into, in large part because the > only place > where the plain data lives is in a server that has only very brief > connection with > anything and then only over a very narrow mechanism. > The system above increases (not reduces) your attack surface exponsionally. > My point is that the "principle of least privilege" is very much a proper > construct > for designing security hardened systems. So not allowing ssh on a system > with a web server isn't security by obscurity. It's just limiting the > attack > surface ... a very reasonable decision for some applications. > Yes the principle is sound but not the application you're making of it, nor is any attempt to externally limit what can be done and what can't be done (except for passive firewalls). > > In general, security has to be seen as a risk management activity, not > a technical one. The amount of security focus on, say, the nuclear launch > codes, had jolly well be exponential greater than protecting the grocery > list > on your cell phone. But *if* you need great protection, reduction of > access > is entirely legit. > Security first and foremost is a technical issue and it is a huge mistake to say it is not. If you can't afford and/or the right security makes the system unusable and you need to loosen it up for that reason, that is when it becomes non-technical in that you need to decide where to compromise. > The truth is that the single greatest weakness in the design above has > nothing > to do with the technology at all. It has to do with the recipient of the > The technical aspects of it *ARE* it's single biggest weakness because the technical aspects are fundamentally flawed starting with the mindset behind them (i.e. the mindset of -- "I know better than the mere mortals who actually have to use it because they are all idiots"). It makes it impossible to secure stuff with the only thing in the data universe that is 100% secure which is what is between my ears [it is impossible to force someone who would rather die than give out their password to ever give it, but once you write it down you have lost this last line of defense]. This assumes that they have had proper training in not falling for social engineering (which no truly paranoid person would do anyways). > report generated by our mythical server. If that recipient is a person, > the > risk is that they will "leak" the report outside the organization in a > stupid > or malevolent manner. THAT is what Data Loss Prevention systems are > supposedly > If you don't trust someone to do stuff right in the first place *DON'T* hire them once you hire someone you don't trust they no amount of safeguards will prevent data loss (if nothing else there is always what's between their ears) > addressing (often poorly in my experience). Most companies try to > materially > reduce this particular threat by turning off USB access on laptops, > eliminating > any form of remote access outside their own networks, dividing their > networks into > separate, hardened subnets, doing deep scans and audits on email traffic, > and so > forth. And yet, even when done with almost infinite money and endless > security > paranoia, this remains one of the most intractable problems in information > security. Two words: Edward Snowden > Like I said if you don't trust someone don't hire them and if your management can't be trusted to not piss off its employees so much that they might turn against your org then it is an organizational and not security problem. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Fri Aug 14 19:48:02 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4C2543C752A for ; Fri, 14 Aug 2020 19:48:02 +0000 (UTC) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from be-well.ilk.org (be-well.ilk.org [23.30.133.173]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSv9s35wSz45XZ for ; Fri, 14 Aug 2020 19:48:01 +0000 (UTC) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from lowell-desk.be-well.ilk.org (router.lan [172.30.250.2]) by be-well.ilk.org (Postfix) with ESMTP id D903833C2A; Fri, 14 Aug 2020 15:47:49 -0400 (EDT) Received: by lowell-desk.be-well.ilk.org (Postfix, from userid 1147) id 637121632B6B; Fri, 14 Aug 2020 15:47:47 -0400 (EDT) From: Lowell Gilbert To: Christoph Kukulies Cc: User Questions Subject: Re: 5.25" Floppy disk drive not recognized References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> Reply-To: User Questions Date: Fri, 14 Aug 2020 15:47:47 -0400 In-Reply-To: <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> (Christoph Kukulies's message of "Fri, 14 Aug 2020 15:40:54 +0200") Message-ID: <44imdl80ws.fsf@be-well.ilk.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable X-Rspamd-Queue-Id: 4BSv9s35wSz45XZ X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd-questions-local@be-well.ilk.org has no SPF policy when checking 23.30.133.173) smtp.mailfrom=freebsd-questions-local@be-well.ilk.org X-Spamd-Result: default: False [1.89 / 15.00]; HAS_REPLYTO(0.00)[freebsd-questions@freebsd.org]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.02)[0.024]; MIME_GOOD(-0.10)[text/plain]; REPLYTO_DOM_NEQ_FROM_DOM(0.00)[]; DMARC_NA(0.00)[ilk.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.58)[0.581]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; NEURAL_SPAM_LONG(0.29)[0.288]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:7922, ipnet:23.30.0.0/15, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:48:02 -0000 Christoph Kukulies writes: > Fine. There may be many solutions. Actually I=92m trying to use the > tools I have nd not buy extra hard- and software. > > I might also buy a used ISA-bus computer with a VGA Monitor :) > > FreeBSD always has been a good platform to experiment at low level. > > Meanwhile I=92ve proceeded a bit as can be seen in a previous post. Only = this is a riddle to me: > > # dd if=3D/dev/fd0 of=3Dfd_dump > dd: /dev/fd0: Device not configured > 0+0 records in > 0+0 records out > 0 bytes transferred in 0.000262 secs (0 bytes/sec) Yeah, that won't work. When floppy drives were common, they were (typically) strictly ISA devices and so sometimes required configuration at the driver level. See fdc(4), although generally I remember being able to do all of the magic through fdcontrol(8). Because your media are old, they are likely to be troublesome, and fdread(1) may save you time in getting the maximum amount of data off the floppies. Be careful with the disks that have your precious data by experimenting with ones you're willing to sacrifice, and don't read or write the important ones any more than necessary. > Also # cat /dev/fd0 >dump > cat: /dev/fd0: Device not configured > > Why? Did that ever work? Looking at the driver, I'm not clear that a normal read or write device operation was typical; it may be that you had to use ioctl functions instead. > Also using mtools gives me similar messages: > > # mdir > plain_io: Device not configured > init A: could not read boot sector > Cannot initialize 'A:' The documentation for the .mtoolsrc goes over some of the incantations that can be needed depending on the hardware. Also bear in mind that the cables involved can be touchy (in my experience, because the sheathing gets brittle) and that old magnetic media will often de-adhere from the substrate, potentially ruining the drive heads as well as the floppy medium itself. Good luck. From owner-freebsd-questions@freebsd.org Fri Aug 14 19:49:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D68DB3C7615 for ; Fri, 14 Aug 2020 19:49:28 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.135]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSvCW24DBz45Y1 for ; Fri, 14 Aug 2020 19:49:26 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue012 [212.227.15.167]) with ESMTPA (Nemesis) id 1MP2zs-1kKuly1EPU-00PPxv; Fri, 14 Aug 2020 21:49:22 +0200 Date: Fri, 14 Aug 2020 21:49:21 +0200 From: Polytropon To: moridin@mm.st Cc: freebsd-questions@freebsd.org Subject: Re: Nvidia on FreeBSD Message-Id: <20200814214921.fd0fda9b.freebsd@edvax.de> In-Reply-To: <683be1ac-ee0d-5b98-d8bd-50de4811e92b@mm.st> References: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> <683be1ac-ee0d-5b98-d8bd-50de4811e92b@mm.st> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:/ckTsJJ7N7IQpr30Ze4XRlDy1Q47COiBWsmaYc0/nlM2smICcC6 rYI+jAfg+Cp/Uak0PCTwm8CAA0PUWwRaJkAdQcq7x/OQxhz3S0SXVblWOpzMMar11u5JBf9 CKrlUyV6URZIfjbgCxd5PCn/KlJ4gge5yF5+bQpJrdz3hPTJu7HE3o9YbsMEUNjqz97+PAP 4+7Sf/1HxYrp3E+D8BKcg== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:Or1nZXj0log=:1T+DJv+J13H2t2GDLljB7X y3tuQp96fb1hwm+CRfkNEnqg+009a10Q/E8eNB4T13XML3Uu7qFFBk9KElBu+tbyhOjaV1Ui1 ScFLPKSq/YETx8bpvromY0u4wuWO4nNA3r4paV+eQWgRJ2usVQaAstuT/RvORRMa1Ek1uO0bz zGsqxL49P9rFEtk6Mmjk7yGO8dX07MX7xt24dRq174ndsVpM5jG1ehCEd656Vs4rSi7MaApxU JiddDaXtzi6nF+jnsbX/eYKPiYIDYCez/mhCpNk1ulR6IeP31MWet2fk2zthFIFSOK9mPGvnh Q+qI6dlMhAz8D6F2NcEpowQf+EIhBHuJuIad9VU3EBP1tEiPCp2DI6ohyf0WFsKey7ivc+1wz QdwYQbtgWhxbI2+vJgBM0IeKPS82FF67Ath1BFjqWTdXbWur/R7pbt2ua+6OC5Bb8pbPhoxiS +kAnyPkl4f/QHHyT355WNPQy4KQ/8kwOjqZMf+rZNgjEp3M+JTwJ05/JJHeSrwg0+ewUh/qGq 1XPYWHbmiPom6gwDvi0bJogYF9fWemrzzZyW8aFVmXi5aLDvQ3yo2NjjWno4sGYjITJ+r6srx OBzM5ez+VT/DiZjUDjYGJNXU1G+tiLgZ5Y/ehBKnFY+18BxgJTySHGcglvT9oPMgeOh85sQpc 9F6gfwUf3v5o+q9gLrhsiSnTpOSB99QUxRBhqIk8WUxE6Y7+iIQhkXf8u+Psc/SYseyEFAZtT MS3e16PnZE3pekw3bZoC99O2FR/KwqOYLRPoZIAYyFbcxEyqA8ko7QCQJEgV72oB8k4t6jLWK chXqqtS7fAYqfaL8RwbGGCUiH2iESpATmcQFLvtJaeneR8suvwezeZlVXSBoZTMWm97VKSH X-Rspamd-Queue-Id: 4BSvCW24DBz45Y1 X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.135) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [4.38 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; TO_DN_NONE(0.00)[]; HAS_ORG_HEADER(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[mm.st]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.36)[0.358]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.85)[0.854]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.76)[0.764]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.135:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.135:from]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_LAST(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:49:28 -0000 On Fri, 14 Aug 2020 21:42:12 +0300, moridin@mm.st wrote: > James B. Byrne via freebsd-questions wrote: > > FreeBSD-12.1p8 > > > > I am forced to configure a new workstation (WS) due to an unrecoverable > > hardware error on my old (c.2009) one. The new WS has only basic VGA on the > > motherboard and has an Nvidia card as its primary video i/f. > > > > I have two monitors both connected to the card. Each works independently of > > the other but when both are connected only one display is used. > > > > I have the Mate desktop installed and working. However when I try to configure > > the monitors the display dialogue window only shows one, unknown, display and > > the detect monitor button is not active. I also get a message stating that the > > mate-settings-daemon cannot start. > > > > I need some help getting this sorted out. If someone could guide me through > > this I would appreciate it very much. > > I know nothing about mate and its settings, but I remember running X on > dual-monitor setup with nvidia. What you need is to get the output > names from Xorg.log in /var/log (e.g. DFP-0, DFP-2) and add relevant > config line to your /usr/local/etc/X11/xorg.conf.d/.conf, e.g.: > > Section "Device" > Identifier "Something here" > Driver "nvidia" > MetaModes "DFP-0:3840x2160,DFP-2:3840x2160" > EndSection > > Check the documentation shipped with nvidia-driver for more options. I have been using a dual-head system with nVidia card + driver in the past (one connected to DVI, the other one connected to VGA), and the whole thing was configured independently from any window manager or desktop environment simply in xorg.conf. If I remember correctly, there were two Section "Monitor", each one with an Option "PreferredMode" and Option "Position" (this one was different!), and it worked. I got the example code from the nVidia documentation. Maybe this is still possible? -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 19:56:59 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 783183C791D for ; Fri, 14 Aug 2020 19:56:59 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSvN966Lkz467B for ; Fri, 14 Aug 2020 19:56:57 +0000 (UTC) (envelope-from doug@safeport.com) Received: from bucksport.safeport.com (bucksport.safeport.com [198.74.231.101]) by bucksport.safeport.com (8.14.5/8.14.5) with ESMTP id 07EJup7j086223 for ; Fri, 14 Aug 2020 15:56:51 -0400 (EDT) (envelope-from doug@safeport.com) Date: Fri, 14 Aug 2020 15:56:51 -0400 (EDT) From: Doug Denault To: freebsd-questions@FreeBSD.ORG Subject: System will not boot to single user mode Message-ID: User-Agent: Alpine 2.00 (BSF 1167 2008-08-23) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; format=flowed; charset=US-ASCII X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.4.3 (bucksport.safeport.com [198.74.231.101]); Fri, 14 Aug 2020 15:56:51 -0400 (EDT) X-Rspamd-Queue-Id: 4BSvN966Lkz467B X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of doug@safeport.com designates 198.74.231.101 as permitted sender) smtp.mailfrom=doug@safeport.com X-Spamd-Result: default: False [-2.17 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.97)[-0.966]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:198.74.231.101]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.83)[-0.827]; DMARC_NA(0.00)[safeport.com]; NEURAL_HAM_SHORT(-0.27)[-0.273]; RCVD_COUNT_ONE(0.00)[1]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:11288, ipnet:198.74.228.0/22, country:US]; ONCE_RECEIVED(0.10)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 19:56:59 -0000 First, this is almost certainly self-induced. I can easily reinstall 12.1 using a USB image. My goal is to learn a bit more about zfs and booting. So the question will be what did I break? I had some things I did not understand about the differences going from 11.1 --> 12.1 so I ran freebsd-update going forward and rolling back 2-3 times. The problem in hand is, I think, at the point I should get the "hit enter to use sh" message the system hangs. The boot matches so the point shown below: : uhub5 on uhub1 uhub5: on usbus0 uhub5: 4 ports with 3 removable, self powered Root mount waiting for: usbus0 ugen0.4: at usbus0 ukbd1 on uhub5 ukbd1: on usbus0 kbd3 at ukbd1 --- single user boot hangs here --- lo0: link state changed to UP igb0: link state changed to UP : Because I have not figured out a way to log the single user boot and that scroll lock does not work on the IPMI I do not have the entire single user boot. I look "normal" the messages I can match all do althougth the order is not the same. gpart show => 63 1953525105 ada0 MBR (932G) 63 1 - free - (512B) 64 1953525096 1 freebsd [active] (932G) 1953525160 8 - free - (4.0K) => 0 1953525096 ada0s1 BSD (932G) 0 4194304 1 freebsd-zfs (2.0G) 4194304 4194304 2 freebsd-swap (2.0G) 8388608 1945136480 4 freebsd-zfs (928G) 1953525088 8 - free - (4.0K) => 63 1953525105 ada1 MBR (932G) 63 1 - free - (512B) 64 1953525096 1 freebsd [active] (932G) 1953525160 8 - free - (4.0K) => 0 1953525096 ada1s1 BSD (932G) 0 4194304 1 freebsd-zfs (2.0G) 4194304 4194304 2 freebsd-swap (2.0G) 8388608 1945136480 4 freebsd-zfs (928G) 1953525088 8 - free - (4.0K) zpool list NAME SIZE ALLOC FREE CKPOINT EXPANDSZ FRAG CAP DEDUP HEALTH ALTROOT bootpool 1.98G 183M 1.81G - - 11% 9% 1.00x ONLINE - zroot 920G 8.12G 912G - - 0% 0% 1.00x ONLINE - zfs list NAME USED AVAIL REFER MOUNTPOINT bootpool 183M 1.68G 180M /bootpool zroot 8.12G 883G 96K /zroot zroot/ROOT 5.34G 883G 96K none zroot/ROOT/default 5.34G 883G 5.34G / zroot/tmp 168K 883G 168K /tmp zroot/usr 2.75G 883G 96K /usr zroot/usr/home 827M 883G 827M /usr/home zroot/usr/ports 742M 883G 742M /usr/ports zroot/usr/src 1.22G 883G 1.22G /usr/src zroot/var 12.6M 883G 96K /var zroot/var/audit 96K 883G 96K /var/audit zroot/var/crash 96K 883G 96K /var/crash zroot/var/log 660K 883G 660K /var/log zroot/var/mail 11.5M 883G 11.5M /var/mail zroot/var/tmp 96K 883G 96K /var/tmp Following advise I got here and some testing: ls -l /boot lrwxr-xr-x 1 root wheel 14 Aug 2 02:07 /boot@ -> bootpool/boot/ At the end of all my updating I think I did not have /boot, The system would boot but freebsd-update said /boot was missing. I would really like to know what I broke. I am not sure what else to show. _____ Douglas Denault http://www.safeport.com doug@safeport.com Voice: 301-217-9220 Fax: 301-217-9277 From owner-freebsd-questions@freebsd.org Fri Aug 14 20:00:57 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 10DC33C76F2 for ; Fri, 14 Aug 2020 20:00:57 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.134]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSvSm2t0Dz468B for ; Fri, 14 Aug 2020 20:00:56 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1MaIrN-1kA9pL2Z41-00WGye; Fri, 14 Aug 2020 22:00:54 +0200 Date: Fri, 14 Aug 2020 22:00:54 +0200 From: Polytropon To: User Questions Cc: Lowell Gilbert , Christoph Kukulies Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814220054.9d10cb7e.freebsd@edvax.de> In-Reply-To: <44imdl80ws.fsf@be-well.ilk.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <44imdl80ws.fsf@be-well.ilk.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable X-Provags-ID: V03:K1:D7GHuOgjBEEv13LAF5uyW6cgil0iNUlPm+6Ih17E5wBoceqNSg2 fSgNmAjCNuUjqIVLTgwbZ4aoMNaEixFWmY2OfdwTLkc1NjDm8AuyMKK34NO6c5kK+BKPkkp EqUmOC+e5i5iBCvsgV5UzVZb6Z3K2RFWKVsk7rVSVIOC+6Zxa6eP0jhaOksA8ORVhrGK9Sq hK9bpXymGPECO2F/gePTg== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:sVWAPsg3Xa8=:DQIFQ76/DoRE13vWy+dxZh KFYcQLX7v3DgzMPlKHyI8smbu/qPU+KWUe15dkw/hcteRzZsnfEDUhGbaqG8wm7dHz8XkjuQD z3OknFyh7PBoM2bbGaNmmUk1hmQTbHNOtd8v7+X+Pd8251FzZZMfPuBzqZluGaaodX7Mq6RL4 Yz1PjxsKFfkWVQqeVBTfmGu0CQ5xVPZSKll3VbGH6ybkuN1Qfkvu2VcpOsH+tg2NptExWDIzR xLU+Vqlz/fUfEJwTZ/yrn/GPMELb/Hj45ZPPmLeBQm8vksm20UMrMD0i1nkEslT6qnvsy8VZi 5Bka/lpM0DheuC5EZYbzP5Ah+z0xYh0kbNtnxaE68zFCWxjtz755SAVBpEMcOXZDoLy50v6mk CJcbvkn6di97yLLbJNEyERAl7duDLxEcgWqhWHi1Zu4SAuoVRoTPiA2u2uX2eku5wgLsYr8oj +PEU9mVuFON28izdVYlwjAPczdhCv3vN+9D3ETZj+ladZbPlyC01cvi6TDrXk+IYJtpMKLzM4 Fobc3WmEnFLkIuFpImR18fCCaigVKsimoFbcvptrF2lN0Vxt/AJPbI8pG4y50E2tNrrI2oaKF G0ogeOK9cr29jWVMnJ1DiYMJxybKEIh5sHj/a/dxKEQL5j1UttS4UttNclG9tRVTFaJzvqrAu z0fvEvtVTIZ7rwxmnIWFwKcVFb8lTvXQRbwYXCr9ttNB2hSlcwiDHXGNwQAYC5uDlnD7FK4bL IPxDx64LG/waTO/T5P4y8OjBKKujYdpVDfqL9UAxRL4xVQTBKkFXCQkZ3vw4/x6tzmQwD++E5 ssDorK5Cj5sES0uqp1IwDZlf9EZdDviPPGM8kjouoa7mgXzOWo1R9vxVN2ObAhJn8oZGle3 X-Rspamd-Queue-Id: 4BSvSm2t0Dz468B X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.134) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.83 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_SPAM_SHORT(0.04)[0.039]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.78)[0.780]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.61)[0.613]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.134:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.134:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:00:57 -0000 On Fri, 14 Aug 2020 15:47:47 -0400, Lowell Gilbert wrote: > When floppy drives were common, they were > (typically) strictly ISA devices and so sometimes required configuration > at the driver level. See fdc(4), although generally I remember being > able to do all of the magic through fdcontrol(8). The use of fdcontrol is very important if the disk in question is not what the drive thinks it should be. :-) > Because your media are old, they are likely to be troublesome, and > fdread(1) may save you time in getting the maximum amount of data off > the floppies. There are also forensic tools like ddrescue (or dd_rescue?) that can adjust retries and read block size (default from 512 bytes down to 1 byte per try) if it needs to be. > Be careful with the disks that have your precious data by > experimenting with ones you're willing to sacrifice, and don't read or > write the important ones any more than necessary. Also make sure the drive is clean, the head is undamaged. > > Also # cat /dev/fd0 >dump > > cat: /dev/fd0: Device not configured > > > > Why? >=20 > Did that ever work? More or less (in this case, less, which is more, couldn't resist): % less -f /dev/fd0 =EB<<90>MSWIN4.1^@^B^A^A^@^B=E0^@@^K=F0 ^@^R^@^B^@^@^@^@^@^@^@^@^@^@^@)=C1=A8<83> $ FAT12 =FA3 [...] And so on. You can use cat with something like this: % cat /dev/fd0 | xxd 0000000: eb3c 904d 5357 494e 342e 3100 0201 0100 .<.MSWIN4.1..... 0000010: 02e0 0040 0bf0 0900 1200 0200 0000 0000 ...@............ 0000020: 0000 0000 0000 29c1 a883 2420 2020 2020 ......)...$ =20 0000030: 2020 2020 2020 4641 5431 3220 2020 fa33 FAT12 .3 0000040: c98e d1bc fc7b 1607 bd78 00c5 7600 1e56 .....{...x..v..V [...] In the past, I've even used tar directly with floppies, with aliases called "flop " and "unflop"... :-) --=20 Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 20:28:05 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 5111F378203 for ; Fri, 14 Aug 2020 20:28:05 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSw4425JQz479n for ; Fri, 14 Aug 2020 20:28:04 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 5816010276A; Fri, 14 Aug 2020 22:28:03 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Brhu51WeHUDi; Fri, 14 Aug 2020 22:28:03 +0200 (CEST) Received: from christophs-mbp.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id DA978102769; Fri, 14 Aug 2020 22:28:02 +0200 (CEST) From: Christoph Kukulies Message-Id: <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> Content-Type: multipart/signed; boundary="Apple-Mail=_3EBAEF15-CEC5-465B-9AC5-3F1D08FCB754"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 22:28:02 +0200 In-Reply-To: <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> Cc: Steve O'Hara-Smith , User Questions To: Tomasz CEDRO References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSw4425JQz479n X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [0.57 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; MV_CASE(0.50)[]; SIGNED_SMIME(-2.00)[]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; HAS_ATTACHMENT(0.00)[]; DMARC_NA(0.00)[kukulies.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.60)[0.598]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.03)[-0.034]; NEURAL_SPAM_LONG(0.11)[0.106]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:28:05 -0000 --Apple-Mail=_3EBAEF15-CEC5-465B-9AC5-3F1D08FCB754 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Ah, I see what you mean. :) floppy drive in FreeBSD. There is fdc(4) and fdccontrol and I read about devices (as I recalled = myself) named /dev/fdX.NNNN. Could be kind of tricky to figure that out. ARe these device nodes to be = generated by fdcontrol? The once was /dev/MAKEDEV for this. I=E2=80=99ll be two days off net now. See you on Monday. =E2=80=94 Christoph > Am 14.08.2020 um 18:26 schrieb Christoph Kukulies : >=20 > What do you mean by =E2=80=9Efloppy drive still available=E2=80=9C? >=20 > Yes, floppy is in the drive. The select light goes lit when I issue = the dd command. >=20 > I don=E2=80=99t have any other place to test it, unless I buy me an = old PC. >=20 >=20 >> Am 14.08.2020 um 17:45 schrieb Tomasz CEDRO : >>=20 >> Is floppy drive still available? Was it supposed to be removed..? >=20 >=20 > removed? >=20 >>=20 >> -- >> CeDeROM, SQ7MHZ, http://www.tomek.cedro.info >=20 > =E2=80=94 > Christoph >=20 >=20 --Apple-Mail=_3EBAEF15-CEC5-465B-9AC5-3F1D08FCB754 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MjAyODAyWjAvBgkqhkiG9w0BCQQxIgQgcHUUnrD/xi5O +0qeK252yZY5PTDY1jgOvhpe/FRfgKUwgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQB5lZB3GMDNaq9lX2n3srIRUfzlNhRUEFOYIC2LaLh+QVSS BfRwMttGvgvX0JI4/hs5vXY3bujuVNiZeFUirJpooyeZObClwsk4Ak0NQmvyhBctFUMy9j3z4ctk 9AIdELQdD1dAbVtJofrLoc9x+epQQKpwArk5aB5w0e0QyXiI90uBmwR+RNIazb7z9PvE3ssH3bVU mFaDfAqanNP2oblol8yx7M6iL13VgRM7vqlKw/tPjyLeCP/aUFjWOgPmuBwEiudhe5VogjEbl9BZ zl9eVmRSbrWm9fdFLD9TfFL6Zyp/pX99WGBDZWwetgZXrVjA0tWyTUkB0jPBiCcv4YW/AAAAAAAA --Apple-Mail=_3EBAEF15-CEC5-465B-9AC5-3F1D08FCB754-- From owner-freebsd-questions@freebsd.org Fri Aug 14 20:29:51 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C18A4378241 for ; Fri, 14 Aug 2020 20:29:51 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSw671F4bz46rK for ; Fri, 14 Aug 2020 20:29:50 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 6F48210276A; Fri, 14 Aug 2020 22:29:50 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W8JcPptZXgnk; Fri, 14 Aug 2020 22:29:50 +0200 (CEST) Received: from christophs-mbp.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id D87C0102769; Fri, 14 Aug 2020 22:29:49 +0200 (CEST) From: Christoph Kukulies Message-Id: <27EF055A-8B21-4B3E-98D1-925BF5BD5F1B@kukulies.org> Content-Type: multipart/signed; boundary="Apple-Mail=_9C330342-F5D7-41A4-B70C-2724465ECF3C"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 22:29:49 +0200 In-Reply-To: <20200814212025.de2ba2f0.freebsd@edvax.de> Cc: Ruben via freebsd-questions To: Polytropon References: <20200814212025.de2ba2f0.freebsd@edvax.de> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSw671F4bz46rK X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [0.08 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; MV_CASE(0.50)[]; NEURAL_HAM_LONG(-0.12)[-0.124]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; HAS_ATTACHMENT(0.00)[]; DMARC_NA(0.00)[kukulies.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.55)[0.554]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.25)[-0.254]; RCPT_COUNT_TWO(0.00)[2]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:29:51 -0000 --Apple-Mail=_9C330342-F5D7-41A4-B70C-2724465ECF3C Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 No. 512 is the default bs anyway and it doesn=E2=80=99t work. =E2=80=94 Christoph > Am 14.08.2020 um 21:20 schrieb Polytropon : >=20 > On Fri, 14 Aug 2020 12:50:50 +0200, Christoph Kukulies wrote: >> First problem was to recognize the 5.25=E2=80=9C drive from the BIOS. >> This MB seems to only support one floppydrive. It comes with an ASUS = branded point to point cable (one connector only). >>=20 >> At least I managed that FBSD now recognizes the drive: >>=20 >> fdc0: port 0x3f0-0x3f5,0x3f7 irq 6 = drq 2 on acpi0 >> fd0: <1200-KB 5.25" drive> on fdc0 drive 0 >>=20 >> But when I=E2=80=99m trying to >> d# dd if=3D/dev/fd0 of=3Dfd_dump=20 >> dd: /dev/fd0: Device not configured >> 0+0 records in >> 0+0 records out >> 0 bytes transferred in 0.000252 secs (0 bytes/sec) >> #=20 >>=20 >>=20 >> Do I have to specify special blocksize? >=20 > Try bs=3D512, that is a typical block size for floppy access. >=20 >=20 --Apple-Mail=_9C330342-F5D7-41A4-B70C-2724465ECF3C Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MjAyOTQ5WjAvBgkqhkiG9w0BCQQxIgQgL+WoQvoZTlXI xvvld5j2OzwoxYd0HLwXba5NZqpPk/0wgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQAb2NVUINckPtK5rfYFUCogMLoPYXDckk4SUMT/qr3vVRCT W9aqFyYIin3bPfgN1n1Wq2FnA0dh7X7rsUIxCvl9DLAkbm72cOK/jXj73znMR+LVHY5BaT3Eie15 DUIMpavkBO83wvB4KYZ48fWLEZriJJ1O9ZNvRmzjEAD7UWjV/v3NYvv60XhuFM9T5f1qbifomplJ TaCTjF+MEd/abyG69RNHFYZsCEPYKhMMj6jtleNJmP0132vccCTfO9+X8YHxDotFK3e53StTWGFh 8OPFW/QVmxq9r83vC1+h9IHhTDEahL1ijx0KT437sLOsLzesUF7p3luEVbaKW3BOwpxIAAAAAAAA --Apple-Mail=_9C330342-F5D7-41A4-B70C-2724465ECF3C-- From owner-freebsd-questions@freebsd.org Fri Aug 14 20:32:15 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 03561378266 for ; Fri, 14 Aug 2020 20:32:15 +0000 (UTC) (envelope-from gobble.wa@gmail.com) Received: from mail-ej1-x632.google.com (mail-ej1-x632.google.com [IPv6:2a00:1450:4864:20::632]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSw8t0XL2z47kt for ; Fri, 14 Aug 2020 20:32:13 +0000 (UTC) (envelope-from gobble.wa@gmail.com) Received: by mail-ej1-x632.google.com with SMTP id jp10so11260421ejb.0 for ; Fri, 14 Aug 2020 13:32:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=e+bAPzqbDiaGD0wqWgc5d+fB/Ye8gwCGGzoDIFAb45k=; b=mpiS0+ga9gWy/w/3BWeSk41JYG4TmXwyVg0hWtUCx+lQpxePPn0lXA6En98n9iwW8M wZ9c72mmy5wICiULbK6QBFSXofl8KDhpnQqw/0HfO7ZWp9ZkGhSw+MY6F/5VRSEhGq4r YLp7AB6jObiQgpDaHWY91w3+94kCQ2TJ6MmLuyFTfMfrpU3kxlTMnh5qxX8+f1Nsum9f 6a1zowlrLdlldVgWIRZQgnOnZ7VJEpZHH5wZwcUPXteQXpfnHdNGl5KpY2DzXOOmelOO P351IlGa1gynvgqC9/PrlY7kvHvaQGL1krgz4ox9tJ/0xsdhXL1h3WkbHYWeiHe3pn8g ODVQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=e+bAPzqbDiaGD0wqWgc5d+fB/Ye8gwCGGzoDIFAb45k=; b=tk7oiD3yyPf7r/x+xNptuRFOuTjWd1tX5ckTc+muMvgI7wK2Gzt3Vdw2kbrjFVFd+c ZKXyoqECWZnBgVuOyKlBKTffoYl23pIfpfagPLMf2Lr8h5HPhkecuYVmG9xV22MeX3qz 97Mo9QkjUTlV59LBHy4wjCd3U8T/RUjyzS+nsUBSCC7lHy3xpi+fC7WPLhyg1s4Q39ai d4MZSAe0/6stDT3chRdN2RF336nqrYPFbXuthuAfNYpa6OBKbeKS9dnqBhD1yggGeEx3 78tfmuCrm7JSli4f798zJKnB1bmwLvS2vVqFtAvIBW15VjlmXy1WjfSThTZMTGvPKg0G gqmg== X-Gm-Message-State: AOAM533NEenwI8MpPfh3nNsnc3fvD7T6rZNSayZJA4ykFJ49LLeVvVsu i2DkPA+k6kSQYUgDEuj59H2ERrNbBA9RB/SFcBlIo3wcHFaniw== X-Google-Smtp-Source: ABdhPJw2IsTs9IGJ5IGHSUfw/c9u/ftUErpHmzHDmAwg7OUZqwqM9RnII5njj0DCnUlNBaUSumkWqLtmtSCo9ItO6zw= X-Received: by 2002:a17:907:72c8:: with SMTP id du8mr3961273ejc.237.1597437132166; Fri, 14 Aug 2020 13:32:12 -0700 (PDT) MIME-Version: 1.0 References: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> <683be1ac-ee0d-5b98-d8bd-50de4811e92b@mm.st> <20200814214921.fd0fda9b.freebsd@edvax.de> In-Reply-To: <20200814214921.fd0fda9b.freebsd@edvax.de> From: Waitman Gobble Date: Fri, 14 Aug 2020 16:32:00 -0400 Message-ID: Subject: Re: Nvidia on FreeBSD To: FreeBSD Content-Type: text/plain; charset="UTF-8" X-Rspamd-Queue-Id: 4BSw8t0XL2z47kt X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=mpiS0+ga; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of gobblewa@gmail.com designates 2a00:1450:4864:20::632 as permitted sender) smtp.mailfrom=gobblewa@gmail.com X-Spamd-Result: default: False [-3.73 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.039]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.01)[-1.008]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::632:from]; NEURAL_HAM_SHORT(-0.68)[-0.684]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:32:15 -0000 On Fri, Aug 14, 2020 at 3:49 PM Polytropon wrote: > > On Fri, 14 Aug 2020 21:42:12 +0300, moridin@mm.st wrote: > > James B. Byrne via freebsd-questions wrote: > > > FreeBSD-12.1p8 > > > > > > I am forced to configure a new workstation (WS) due to an unrecoverable > > > hardware error on my old (c.2009) one. The new WS has only basic VGA on the > > > motherboard and has an Nvidia card as its primary video i/f. > > > > > > I have two monitors both connected to the card. Each works independently of > > > the other but when both are connected only one display is used. > > > > > > I have the Mate desktop installed and working. However when I try to configure > > > the monitors the display dialogue window only shows one, unknown, display and > > > the detect monitor button is not active. I also get a message stating that the > > > mate-settings-daemon cannot start. > > > > > > I need some help getting this sorted out. If someone could guide me through > > > this I would appreciate it very much. > > > > I know nothing about mate and its settings, but I remember running X on > > dual-monitor setup with nvidia. What you need is to get the output > > names from Xorg.log in /var/log (e.g. DFP-0, DFP-2) and add relevant > > config line to your /usr/local/etc/X11/xorg.conf.d/.conf, e.g.: > > > > Section "Device" > > Identifier "Something here" > > Driver "nvidia" > > MetaModes "DFP-0:3840x2160,DFP-2:3840x2160" > > EndSection > > > > Check the documentation shipped with nvidia-driver for more options. > > I have been using a dual-head system with nVidia card + driver in > the past (one connected to DVI, the other one connected to VGA), > and the whole thing was configured independently from any window > manager or desktop environment simply in xorg.conf. If I remember > correctly, there were two Section "Monitor", each one with an > Option "PreferredMode" and Option "Position" (this one was > different!), and it worked. I got the example code from the > nVidia documentation. Maybe this is still possible? > > > > > -- > Polytropon > Magdeburg, Germany > Happy FreeBSD user since 4.0 > Andra moi ennepe, Mousa, ... > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" I use nVidia on FreeBSD with two monitors. Driver 440.100 Quadro K2100M on a Dell M4800 *Every* time I boot, I always have to open "NVIDIA X Server Settings" and change "Underscan" under "X Server Display Configuration" So when it boots it's at 1920x1080, changing underscan to "2" changes the monitor resolution to 1916x1077. and then the screen starts working. I found out by hard-coding the smaller size (1916x1077) in Xorg.conf, after a boot I can then change underscan to "0" and get 1920x1080. and the screen starts working. Of course it sounds weird, I know, but without changing the underscan setting, then the screen attached to the laptop does not show anything (Blank). [But the laptop screen does work without a second monitor plugged in.] -- Waitman Gobble From owner-freebsd-questions@freebsd.org Fri Aug 14 20:35:12 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 537593786A5 for ; Fri, 14 Aug 2020 20:35:12 +0000 (UTC) (envelope-from tomek@cedro.info) Received: from mail-wr1-x42b.google.com (mail-wr1-x42b.google.com [IPv6:2a00:1450:4864:20::42b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSwDH2xSrz47WL for ; Fri, 14 Aug 2020 20:35:10 +0000 (UTC) (envelope-from tomek@cedro.info) Received: by mail-wr1-x42b.google.com with SMTP id r2so9411898wrs.8 for ; Fri, 14 Aug 2020 13:35:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cedro.info; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=M9+/wrCPG6m4eExD1A5MeqDX5Wp4pGKjmpJGYkZJv7s=; b=YZTM+f2V1VhPO6C4ZteDCpzpu37JC5r277+qSpPIX46AhA3CnaDDRc6l5YAzC7eqCh KypcOdkNaTulv3bfCaG7NFjuDUWDruNRqHT1ZldKcejcxrMckw9wmqQE0qF2nVpvrYKp GMBCY2jJ13QfSw2AzTTF4VolfLMVuVnZvrfJi7pVVN4mq9rNrum40U6YrONoqx9Jwown mR/yOqc37tbZCDIGC/hseNZFWccj92xspjXzz73/0dqO6Hog5fKvQ8OaummveouYRHx/ oZC8T2sYylwGg8OGEwsWMb+ZchAt0YZlGHH0AlgRm5R9419pg0QsVKmSixRdJ5tOXT4/ mEag== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=M9+/wrCPG6m4eExD1A5MeqDX5Wp4pGKjmpJGYkZJv7s=; b=PwwspOvNT/pBb923uShaAxf4jArljiQzX3goxpomzkw8f1c2bJiZBS/qraB+bklnK6 jYDxfedNcEnYal2b2eAFHGkLIxiljXMB4iTGFRanLhiU4L1V47ujxYcXRrpwf9BlIlmC /gpA/og2df51+73On2vfDpsdmwjKKQELKm2Qjt6e6OZ9Xg3lVoHTRtbkYQeJz+cyD6kr I1P0N9uvjZEoULLert3qgsdjF7vU3xRJYP8qt/9cXRgWFU9nIIzzBxhJy9TSkUCSOW6V rqPxSTvoUPwjWtXfUck6wv4rtGihvqg2bs+dN3efi+hpO6drvsLbIvjPh1VerWClZzOf W8yA== X-Gm-Message-State: AOAM532e1WO8iV3oryfidgbxl2bfC73zJ/uCfJ3mSNZxZ4lnHSPyVEkj XBZzLcqQAQRob6aY410C9/Yt9HQeCB5vagd+PPFRJzthNtY= X-Google-Smtp-Source: ABdhPJzm5jtjCSmwx1aW24DsPZsEpw40VbTg1juTk1we13yRng1K64bsIhrPfvupBuy7qO6vCK0J3ydwyiAXpSZgOYQ= X-Received: by 2002:adf:9487:: with SMTP id 7mr3994286wrr.133.1597437309441; Fri, 14 Aug 2020 13:35:09 -0700 (PDT) MIME-Version: 1.0 References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> In-Reply-To: <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> From: Tomasz CEDRO Date: Fri, 14 Aug 2020 22:34:57 +0200 Message-ID: Subject: Re: 5.25" Floppy disk drive not recognized To: Christoph Kukulies Cc: User Questions X-Rspamd-Queue-Id: 4BSwDH2xSrz47WL X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=cedro.info header.s=google header.b=YZTM+f2V; dmarc=none; spf=none (mx1.freebsd.org: domain of tomek@cedro.info has no SPF policy when checking 2a00:1450:4864:20::42b) smtp.mailfrom=tomek@cedro.info X-Spamd-Result: default: False [-2.79 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.02)[-1.024]; R_DKIM_ALLOW(-0.20)[cedro.info:s=google]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-0.997]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[cedro.info]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[cedro.info:+]; RCPT_COUNT_TWO(0.00)[2]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::42b:from]; NEURAL_HAM_SHORT(-0.47)[-0.474]; R_SPF_NA(0.00)[no SPF record]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:35:12 -0000 Catch some inspiration for the weekend Chris :-) https://youtu.be/iT1l8Dcjb1Y He is using "some noname generic usb 3.5inch floppy drive" maybe that could work with your machine to get a comparison :-) -- CeDeROM, SQ7MHZ, http://www.tomek.cedro.info From owner-freebsd-questions@freebsd.org Fri Aug 14 20:38:08 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1A56E37845A for ; Fri, 14 Aug 2020 20:38:08 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from mail.kukulies.org (mail.kukulies.org [116.203.115.43]) by mx1.freebsd.org (Postfix) with ESMTP id 4BSwHg1kRwz47b1 for ; Fri, 14 Aug 2020 20:38:06 +0000 (UTC) (envelope-from kuku@kukulies.org) Received: from localhost (localhost [127.0.0.1]) by mail.kukulies.org (Postfix) with ESMTP id 36FA610276A; Fri, 14 Aug 2020 22:38:06 +0200 (CEST) Received: from mail.kukulies.org ([127.0.0.1]) by localhost (mail.kukulies.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EFcB3Kgbe_Lv; Fri, 14 Aug 2020 22:38:05 +0200 (CEST) Received: from christophs-mbp.fritz.box (p57b45204.dip0.t-ipconnect.de [87.180.82.4]) by mail.kukulies.org (Postfix) with ESMTPSA id B0DF5102769; Fri, 14 Aug 2020 22:38:05 +0200 (CEST) From: Christoph Kukulies Message-Id: <7CF88C86-6E81-498D-A383-B160D77D8134@kukulies.org> Content-Type: multipart/signed; boundary="Apple-Mail=_C2F59622-6D42-4958-BEFE-48A824E90102"; protocol="application/pkcs7-signature"; micalg=sha-256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: 5.25" Floppy disk drive not recognized Date: Fri, 14 Aug 2020 22:38:05 +0200 In-Reply-To: <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> Cc: Steve O'Hara-Smith , User Questions To: Tomasz CEDRO References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> X-Mailer: Apple Mail (2.3608.120.23.2.1) X-Rspamd-Queue-Id: 4BSwHg1kRwz47b1 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of kuku@kukulies.org has no SPF policy when checking 116.203.115.43) smtp.mailfrom=kuku@kukulies.org X-Spamd-Result: default: False [0.57 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; SUBJECT_ENDS_SPACES(0.50)[]; ARC_NA(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; MV_CASE(0.50)[]; SIGNED_SMIME(-2.00)[]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; HAS_ATTACHMENT(0.00)[]; DMARC_NA(0.00)[kukulies.org]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.60)[0.597]; RCVD_COUNT_THREE(0.00)[4]; TO_MATCH_ENVRCPT_SOME(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.03)[-0.034]; NEURAL_SPAM_LONG(0.11)[0.108]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; ASN(0.00)[asn:24940, ipnet:116.203.0.0/16, country:DE]; MID_RHS_MATCH_FROM(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[87.180.82.4:received] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:38:08 -0000 --Apple-Mail=_C2F59622-6D42-4958-BEFE-48A824E90102 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 neither less or cat works. I cannot totally exclude that the media = don=E2=80=99t fit. The ones in questions here are CP/M 68k format. They are DD-DT. But I won=E2=80=99t get at the problem over the weekend to eventually = test other media from which I know they are definitely MSDOS. OTOH, dd normally used to work on this kind of devices, didn=E2=80=99t = it? I=E2=80=99m getting doubts. =E2=80=94 Christoph > Am 14.08.2020 um 22:28 schrieb Christoph Kukulies : >=20 > Ah, I see what you mean. :) floppy drive in FreeBSD. >=20 > There is fdc(4) and fdccontrol and I read about devices (as I recalled = myself) named /dev/fdX.NNNN. >=20 > Could be kind of tricky to figure that out. ARe these device nodes to = be generated by fdcontrol? >=20 > The once was /dev/MAKEDEV for this. >=20 > I=E2=80=99ll be two days off net now. See you on Monday. >=20 > =E2=80=94 > Christoph >=20 >=20 >> Am 14.08.2020 um 18:26 schrieb Christoph Kukulies = : >>=20 >> What do you mean by =E2=80=9Efloppy drive still available=E2=80=9C? >>=20 >> Yes, floppy is in the drive. The select light goes lit when I issue = the dd command. >>=20 >> I don=E2=80=99t have any other place to test it, unless I buy me an = old PC. >>=20 >>=20 >>> Am 14.08.2020 um 17:45 schrieb Tomasz CEDRO : >>>=20 >>> Is floppy drive still available? Was it supposed to be removed..? >>=20 >>=20 >> removed? >>=20 >>>=20 >>> -- >>> CeDeROM, SQ7MHZ, http://www.tomek.cedro.info >>=20 >> =E2=80=94 >> Christoph >>=20 >>=20 >=20 --Apple-Mail=_C2F59622-6D42-4958-BEFE-48A824E90102 Content-Disposition: attachment; filename=smime.p7s Content-Type: application/pkcs7-signature; name=smime.p7s Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCCc0w ggSQMIIDeKADAgECAggYVYMhomAL1zANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJERTEzMDEG A1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQD DBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOMB4XDTIwMDUxNjE1Mjc1OVoXDTIxMDUxNjE1Mjc1 OVowbzELMAkGA1UEBhMCREUxITAfBgNVBAUTGDQwMDAwMDAwNWVjMDA4ZGQzNzNhZDhlYzEbMBkG A1UEAwwSQ2hyaXN0b3BoIEt1a3VsaWVzMSAwHgYJKoZIhvcNAQkBFhFrdWt1QGt1a3VsaWVzLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKug1655hQWRmOtGAShZLbMwDtrm7rAH 7p1oPtE/5KpTpJZe8LHPxxvW0EAd2JcLtEhdvAi7smhZ/giJ3IBK7OYmdaCvuQ6MFvJpkmLkQ9TO 4+RLW+PkBk8nFIUe+PQG+VurpWc8pbU4IRsWS3pEUgov9+LF6VtyYBHKD2HZwe46YBwUq7l0EHxc aa98ewCMO43XznlqjE+oKxwaS2nl1rL/SPVlfGmKqHkdSKEKl6yR1LCcI3J3HP56kqmIrvtySr7q UZVsibA+D6vArqklO99WKQmt0b4IX6TXouvAA6bNoF1FhYUyihm4omMWZkdTs7Gv5rr1fzPWXcev cMfJdtUCAwEAAaOCATcwggEzMB0GA1UdDgQWBBSQh9N17gCH/igJy5ftrVaJNm6SCTAMBgNVHRMB Af8EAjAAMB8GA1UdIwQYMBaAFOnGk9HVDwZkcupqlj66EPJUVLJ5MFYGA1UdIARPME0wSwYMKwYB BAH7KwIBAwIIMDswOQYIKwYBBQUHAgEWLWh0dHA6Ly9zZWM1LmRnbnNlcnZpY2UuZGUvcG9saWNp ZXMvaW5kZXguaHRtbDA+BgNVHR8ENzA1MDOgMaAvhi1odHRwOi8vc2VjNS5kZ25zZXJ2aWNlLmRl L2NybC9jcmwyLXR5cGUtZS5jcmwwDgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDBDAcBgNVHREEFTATgRFrdWt1QGt1a3VsaWVzLm9yZzANBgkqhkiG9w0BAQsFAAOC AQEALUBRNzLAUiPi29LLATqWmrUlyacMVAtjdROQMd/AVPj0mUqTMoDO+YoWICOSEn/nEyb2Lrrz JNGqC6KO0CNROaWcEhFadKx4qtp9t26Qe/EkO0XbXexIfBxFl1ynQA54D0qtPb/SUZvTy0tq8oBt FdsIU+cXAzigEz2Z9nziHBMqThoKzAZSrk/sPvxT6MNMC/BMGlHGl0DV//wwI5vlzJiKS8iXFyxf 5VrN1IwgRyqXD8JsgF1BuEqcloSJ3JnWUGQCTURFasZDJlP0f/KJS8odUpEWDKnn6tt0RjBk0jUN i7z42ozzPn/o154AgXC2cNmROxC0gnvd+V/yIuAryDCCBTUwggQdoAMCAQICCFUcStdmrSX2MA0G CSqGSIb3DQEBCwUAMGExCzAJBgNVBAYTAkRFMTMwMQYDVQQKDCpER04gRGV1dHNjaGVzIEdlc3Vu ZGhlaXRzbmV0eiBTZXJ2aWNlIEdtYkgxHTAbBgNVBAMMFGRnbnNlcnZpY2UgUm9vdCA3OlBOMB4X DTE2MTAyNjA5MjI0MVoXDTI0MTAyNjA5MjI0MVowZjELMAkGA1UEBhMCREUxMzAxBgNVBAoMKkRH TiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAGA1UEAwwZZGduc2Vy dmljZSBDQSAyIFR5cGUgRTpQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANyl8pQ/ dMejR9KXZs5ro81tFwNhloThlXe8sat79Tjjk6xFqE5E94//0vifJxMrp9RrCkNOo5oPG1djGOgk 0L0ucpHFUH9SQF/SHbm83QvWJXgqEJpjxOKZXTPbJRKVvY25niB0FTr2omRqypiP4A/w5xA6jSJ2 P02vV6WgcPfaLQkM+SEGPxV/pzpvuY3KfzJ9li9mXPNXaJD9y+jqIUvHbCAbuYKQ5nwEAcYMXDpP RQgDQGTrRiFExHEjsZeMzEFADZj9deg/h29AMO0w2YrSvkNReh/zvDZutdy25DZvjE3AUgStWgBC 7x+2ddOb2I61o6xbIsxlfq/mzNpAGoECAwEAAaOCAeowggHmMBIGA1UdEwEB/wQIMAYBAf8CAQAw HwYDVR0jBBgwFoAUAQwWG3Ry0zwU7iZ3t0kUU9j7ixswWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUF BzABhj9odHRwOi8vcm9jc3AtZGduLmRnbnNlcnZpY2UuZGU6ODA4MC9lamJjYS9wdWJsaWN3ZWIv c3RhdHVzL29jc3AwagYDVR0gBGMwYTBfBgwrBgEEAfsrAgEEAgEwTzBNBggrBgEFBQcCARZBaHR0 cDovL3d3dy5kZ25zZXJ2aWNlLmRlL3RydXN0Y2VudGVyL3B1YmxpYy9kZ25zZXJ2aWNlL2luZGV4 Lmh0bWwwgZkGA1UdHwSBkTCBjjCBi6CBiKCBhYaBgmxkYXA6Ly9sZGFwLmRnbnNlcnZpY2UuZGU6 Mzg5L0NOPUNSTC0xLE89REdOJTIwU2VydmljZSUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwHQYDVR0OBBYE FOnGk9HVDwZkcupqlj66EPJUVLJ5MA4GA1UdDwEB/wQEAwIBBjAbBgkrBgEEAcBtAwUEDjAMBgor BgEEAcBtAwUBMA0GCSqGSIb3DQEBCwUAA4IBAQCrvDn6Rcn7/FNq3SOJNfgYNfkdR5CiGoC4sZ+i 0dypCqqMXwbpRQjSriLS2eEe2V2Fms0E4SuBOEaxOg1nVjYafQVGtytRT0ueFIzB3VcnQl7oRFJ0 SHi9d/xjElAZkk8I8lytuWG57SabA72duEp7AaCWG3lVZIdNLy+rkNrfNvEUbqUh0TrZXgqpwwCL JjYF8vyC4I+xxNaXm3EmuNvgQ2j2dGp3Oxc0QbfLLOCbK/rOdDikaBN7kTqpfHls7pcIOhQrgrPV LzY/NHqG9zEpmjuQora63YHdu7BTzGp/DvcQwfyKa/gtb9LHn3AoSUqOKOMd02sUb/AxGhsNjMzJ MYIDFDCCAxACAQEwcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1 bmRoZWl0c25ldHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBF OlBOAggYVYMhomAL1zANBglghkgBZQMEAgEFAKCCAXMwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEH ATAcBgkqhkiG9w0BCQUxDxcNMjAwODE0MjAzODA1WjAvBgkqhkiG9w0BCQQxIgQgQUVoORhrN6lM yyFl+t2PnwtSgd5PcD4ENzTAvdY3J5swgYEGCSsGAQQBgjcQBDF0MHIwZjELMAkGA1UEBhMCREUx MzAxBgNVBAoMKkRHTiBEZXV0c2NoZXMgR2VzdW5kaGVpdHNuZXR6IFNlcnZpY2UgR21iSDEiMCAG A1UEAwwZZGduc2VydmljZSBDQSAyIFR5cGUgRTpQTgIIGFWDIaJgC9cwgYMGCyqGSIb3DQEJEAIL MXSgcjBmMQswCQYDVQQGEwJERTEzMDEGA1UECgwqREdOIERldXRzY2hlcyBHZXN1bmRoZWl0c25l dHogU2VydmljZSBHbWJIMSIwIAYDVQQDDBlkZ25zZXJ2aWNlIENBIDIgVHlwZSBFOlBOAggYVYMh omAL1zANBgkqhkiG9w0BAQEFAASCAQBIdToUehCH7oh1RobqUAWhrnrLK5hLIOAqwDGq/6EZxF/L 9BgGI1/fnTqPcqn5NM6Pd5N3zJxhiNIQ0/q6effd3sJe/QrbzllmZ6qvIDn/GRp1EanHG0DgA6v3 Dh8KDLEyccAn+0sNdw28Je8ky6Hi3qq3kIxVJGw+u5fJH3fBHhPa4A7BnVrD5+zAFNEQQaoMPwMz 7BXTf057LSHCKm9L92VZJ3Ce9poTTvC3hIhdz+dO0cnyRHZRtoLQK2KNbJV+OlP5Kyp3zXO+b/4t IClOjqqXHAXcz6x/3Wol8ueN+71tOVs/6iPluRAo89nL2NMcvyVC7eOJQ91bqV2Da+TcAAAAAAAA --Apple-Mail=_C2F59622-6D42-4958-BEFE-48A824E90102-- From owner-freebsd-questions@freebsd.org Fri Aug 14 20:40:50 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C027E378856 for ; Fri, 14 Aug 2020 20:40:50 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.17.10]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSwLn4L8pz47s2 for ; Fri, 14 Aug 2020 20:40:49 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue108 [212.227.15.183]) with ESMTPA (Nemesis) id 1MuUrM-1kwipI1EyA-00rYEr; Fri, 14 Aug 2020 22:40:46 +0200 Date: Fri, 14 Aug 2020 22:40:45 +0200 From: Polytropon To: Christoph Kukulies Cc: Tomasz CEDRO , "Steve O'Hara-Smith" , User Questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814224045.75a1070e.freebsd@edvax.de> In-Reply-To: <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:y3ljLXVenUD05rBvftonphN9xGXDgZVtRINEe2gJzVdUM117SPY Yem+RAn3Su9abzVzWGWPBbOu6luGjVOGYF3w5RHTPKEpVsMsmK6pWNjElJ7ogBoD0+oGlwx PnZsoiKRg2fmt2ofjI+6v36cjHkzcnT7mT6Pg5F+NlHezqxCodWWyQwyNog4dQ2FjOsKnAU RAbEobpc4XJTj2eMNI46g== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:mYYqUZv0obE=:/3LMI9xMix+2XYZ8z0n6ro DNBxPF2xZCyf+9TGzV14ngashVGm/rWwpGcKsaZeeORNgXFJmlN9yB5c0hS+U/NrE9bhYtBPo 43FH8vH28pjWNlwY2SaHoWgJHA7krZpX8WQdrMRrnCVBfJP3Kxdo4+OpR4xLdopsIiOBW2hTT TELXZuhUud6gs07ShwQUOpFeBWD+QPKNmq9bBnLSZrPToiLAa4yJDs+Hrjkdq/s7u9QPy6OTb +eIfmH0+bgjkpSsQcapHWGp3sV/2mZ5nMw8lYwhFlFPZFeXnkw7EQTCDv4S+xgnzo8J96/7WI MSx9eFnLNAmntTtrAdh1NXLhQL4AjoTfz/zWWjDd64/KkyA/tU43Ie5gElhWaEKh7v4SVKmhS UEYRD0e8GdFs2J+FHPL0bqdCXpFzYNgMhS3z6rDb6OzOeVwCbkpBuzJc5UXH1xhhtfSQ8BP6W mxWg4DCOgkbHYyTy2gCbtwtHmG3h2mXWCExNKgZgkIKl8pSX2mD3T4cNdvqvGL3U93jlJp6dz B9qr1kXJtkEtU3WGQBBE0/tPhzlWZldeqowPnElE3HquC8k+y3HA60kMqlgT7u5VASo/jNFSE UUxaXiVTZ2hWisE1V5TPGomNrpJKYg62eRO68YwlbhTemH282EaUmsJxc2EUhlQzqedtF/i91 bcMMxBluzqs8DuXCH1J/iw+z5hJE433E0++JV0ENvsiRwky6ozvRqhHlUXrhQCobAp46Ey6GN Rcxwb68sHz4A22cgxIGXCqHnf1rkGglT78qTCG4Rk0cqf6YrG1LNKJILFewQ4PQay9NI/6D3Y kXE3Dhiw4o7TNIDBk4UKcxtZ91m5JQLDynDD3HZNkd6TuZUcXCh8EAXU2jPwz+fvKdP3W+P X-Rspamd-Queue-Id: 4BSwLn4L8pz47s2 X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.17.10) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.80 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.01)[-0.009]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.78)[0.784]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.62)[0.624]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.17.10:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.17.10:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:40:50 -0000 On Fri, 14 Aug 2020 22:28:02 +0200, Christoph Kukulies wrote: > Ah, I see what you mean. :) floppy drive in FreeBSD. > > There is fdc(4) and fdccontrol and I read about devices > (as I recalled myself) named /dev/fdX.NNNN. Those were Linux-specific; /dev/fd0.h1440 was a typical entry for the "A: drive". :-) > Could be kind of tricky to figure that out. ARe these device nodes > to be generated by fdcontrol? No, the existing device node /dev/fd0 can be configured using fdcontrol, especially the -s flag is to be mentioned. It's just important that the setting applies to something the controller and the drive can actually implement (like an FM-encoded disk in a MFM-only capable drive). The EXAMPLES section of "man fdcontrol" has a nice summary. > The once was /dev/MAKEDEV for this. FreeBSD since... I think somewhere in v5... started generating device nodes dynamically, so MAKEDEV is no longer needed. > I’ll be two days off net now. See you on Monday. Have a nice weekend! -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 20:46:50 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 55282378B42 for ; Fri, 14 Aug 2020 20:46:50 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.17.10]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSwTj16mpz48FC for ; Fri, 14 Aug 2020 20:46:48 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.5.225.79]) by mrelayeu.kundenserver.de (mreue108 [212.227.15.183]) with ESMTPA (Nemesis) id 1Mi2Fj-1kbbd93KHx-00e7rl; Fri, 14 Aug 2020 22:46:46 +0200 Date: Fri, 14 Aug 2020 22:46:46 +0200 From: Polytropon To: Christoph Kukulies Cc: Tomasz CEDRO , "Steve O'Hara-Smith" , User Questions Subject: Re: 5.25" Floppy disk drive not recognized Message-Id: <20200814224646.0c1432d9.freebsd@edvax.de> In-Reply-To: <7CF88C86-6E81-498D-A383-B160D77D8134@kukulies.org> References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> <7CF88C86-6E81-498D-A383-B160D77D8134@kukulies.org> Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:oPhAuatdjCFye7zMfRfLV6ecAWA63EsLY/05lMPFqQAoTc0bWFf Yr9/qQZMhSr2GM50cQWoG4QQGie1rfEGUgbOeA+4bhAeIZGcmIPQGTYe6pP7ZiqhIUfj2AV 6ioXc5K5Ysz1U40FtpkvTtCmI5OBQK6310PvanecHv5XR3NT3nkZXasgSltxqub70y/MN8b P8yKrxd+tG7jKhgtVYSww== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:sVUqBJpH2pE=:SXh0D1qTt2+tHZ+FKcW0Tj CQlb2lRM/KfLFBurmy5Y9GIHkYVCmipn+aLJZvCey6AKX2Rz2n3q25YQbezBMulcCCCc8vBUG cIUfGVxSn2aUDgstwgSgO/lwqXkb2VXksp1rZf0E1q3M1iVq0Y4g91d3ArH8Ap2JXmVYbvyLU KwPT3RQG4TF4+LdpD1pWfNGsajPoeQCXsWBYXWrQ1g1hJide2kICNUQX1NDVLqh17FTI4ud8C pOraCCw8uPUwPgJXGnK18swQrlzUW0L+Pxu0DbvN6s+r8r3AD1imCm9Do1PtEJTQ10iikl35H mAVz/IfmGiu0QbgQP1KCvUw4wKJiiNBf9/3OJj3QBzz/AUHggop+hsU4wKoxqc+DubOFReKYL QTZ8lQR5SEOsNKBrzi33eG90uwIBYu+uvfbz7dVBci66ahTHtzruV8wZCEv8VVC4xaf/5+vR5 BGWOMzVEjrNK0lp3ISeYlV1hPOiwu3w5VqhR4AKgnYQhUGHHKI7s80zMxnCtXNIyELFnVh5Sb j0VF1KqnQiKXY6tGWDSuDCQ1Dx1aYXyM+z/v4Q8AvP3pjFxtpXmimvIn7v3WmfvjEtFfF/mOM 1aB62NZ/Cn3Ii5g940/ObUbllcGs71yggLJqckzWQj4maWqpFIcqv7+kTl6Tu1zBO+H81I5Aj byaEk0Q8omZNsrOU+WA6+JmrXZ2yYwYMAOmV0tCO6K4LYjHiwiian0/G/aLqCn1zDajbhWJiA z0WBtKh8O9CsJ8wzJrsFSUES0Y4AiqOA7FZTIYqqdDS6yVQgGdFoqJf3nUQ8bzYcSjLbwivAk F88mqAhCGsmAQHEY4dg9h7fcBgXFkM5ZogvNUQFD4XyBYfISLlNRpRKuhzugZ4TyLrHgn9X X-Rspamd-Queue-Id: 4BSwTj16mpz48FC X-Spamd-Bar: +++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.17.10) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [3.80 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; MV_CASE(0.50)[]; HAS_ORG_HEADER(0.00)[]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.01)[-0.007]; RECEIVED_SPAMHAUS_PBL(0.00)[178.5.225.79:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[4]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.78)[0.784]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.62)[0.625]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.17.10:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.17.10:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:46:50 -0000 On Fri, 14 Aug 2020 22:38:05 +0200, Christoph Kukulies wrote: > neither less or cat works. I cannot totally exclude that the media don’t fit. > The ones in questions here are CP/M 68k format. They are DD-DT. In this case, using fdcontrol to change the drive's settings is probably the correct way to go. Use the command % fdcontrol -F -v /dev/fd0 to see what drive and disk can tell about themselves. If that is not correct, use fdcontrol's -s option to change the drive's view. > OTOH, dd normally used to work on this kind of devices, didn’t it? If the (hardware) formatting deviates too much from what the drive's settings expect, it will only result in read errors. This where something within the chain "OS - controller - drive - medium" does not match the expectations. This is where fdcontrol can be used to change those expectations. :-) -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Fri Aug 14 20:50:27 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 645DB378F8A for ; Fri, 14 Aug 2020 20:50:27 +0000 (UTC) (envelope-from moridin@mm.st) Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSwYt0Yzhz48DL for ; Fri, 14 Aug 2020 20:50:25 +0000 (UTC) (envelope-from moridin@mm.st) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id EF82F5C00CC for ; Fri, 14 Aug 2020 16:50:24 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Fri, 14 Aug 2020 16:50:24 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mm.st; h=subject :to:references:from:message-id:date:mime-version:in-reply-to :content-type:content-transfer-encoding; s=fm1; bh=V/+fFjuhvQKsM /AclpNpyQgJwveRMKrP2fOFZQ4mzwc=; b=FhlU1jcNpgZ9T/ilIIEiDu52tSiA6 0IGH5Zyv8+yebbj5Ikford+wAPKuUqBWtjBA+BHRTJmpRUy2JgJds2LaIePMXk2W Pg1tDfR5PMUZp5P5Woyz/prP3aO8opi+R6JQRPAaHcXI4Vhx0tSAgL/LDcvxmO6g JBAbiihFMyU01ofg4Zj7h6wBjZpfnNIZCNGdbhMppB6yPt9TKnB5ipWV4lfU8IW3 JxQIxbQj4upmxNyMUAVodHl7SNnx5H6/K73PkPRnbr2epnUDm9c/Kb6EQ5HHhwTf rOHm9XAuvQ2L4RaTSaDdHS0hQsgabCbdL3HEDX38OtMYPJWrmB2qZRQaw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=V/+fFjuhvQKsM/AclpNpyQgJwveRMKrP2fOFZQ4mz wc=; b=XCD4hJWwJP3SzJvXjuCM2pKWrZpoK7Xcuvv0D0fRgL1Me87WQ6K2gQxAz vVOie3CaG2U08ZkTTQjjC9w5NAz14DkpCZlhC1ZWgqXde8BYclp8B/cKd/bqA/EQ Nn6HKCPWUTtIecTFzX7LwMJGr79dItzNoCaC8+LDR7oApCJ3C2/wxxhHoEAaBX2c ZQ9SYhk7I7TZaZH4Cmmjr3f0u/J0AZZ/RhldxqmQD6QbqMhYoOZQ5FQKiC6lnlJt 5onTIa3KIWxXnk0TDiXs2aW6blGJ+/uOmIJ1MCpSj660L/YzwzfJblr96PE9S1nL 8qmWiYNHbba2WoMqjsoJtFZ457hTw== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrleejgddugeelucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefuvfhfhffkffgfgggjtgfgsehtje ertddtfeejnecuhfhrohhmpehmohhrihguihhnuceomhhorhhiughinhesmhhmrdhstheq necuggftrfgrthhtvghrnhepfeeitddvudeludekfffhueeikeffffektdeujeduiefgud ejiedtieegkeduudejnecukfhppeeluddrvdegtddruddvgedrudegfeenucevlhhushht vghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmohhrihguihhnsehmmh drshht X-ME-Proxy: Received: from mercury.lan (unknown [91.240.124.143]) by mail.messagingengine.com (Postfix) with ESMTPA id 55F4A30600A3 for ; Fri, 14 Aug 2020 16:50:24 -0400 (EDT) Subject: Re: Nvidia on FreeBSD To: freebsd-questions@freebsd.org References: <4be32bee4c39525d22592eb43f7abec8.squirrel@webmail.harte-lyne.ca> <683be1ac-ee0d-5b98-d8bd-50de4811e92b@mm.st> <20200814214921.fd0fda9b.freebsd@edvax.de> From: moridin Message-ID: <20b534ed-c4ae-410c-4367-1eca87bcbda7@mm.st> Date: Fri, 14 Aug 2020 23:50:20 +0300 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: <20200814214921.fd0fda9b.freebsd@edvax.de> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSwYt0Yzhz48DL X-Spamd-Bar: +++++++++++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=mm.st header.s=fm1 header.b=FhlU1jcN; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=XCD4hJWw; dmarc=pass (policy=none) header.from=mm.st; spf=pass (mx1.freebsd.org: domain of moridin@mm.st designates 66.111.4.26 as permitted sender) smtp.mailfrom=moridin@mm.st X-Spamd-Result: default: False [11.62 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[66.111.4.26:from]; FREEMAIL_FROM(0.00)[mm.st]; R_SPF_ALLOW(0.00)[+ip4:66.111.4.26]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; DKIM_TRACE(0.00)[mm.st:+,messagingengine.com:+]; DMARC_POLICY_ALLOW(0.00)[mm.st,none]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[mm.st]; ASN(0.00)[asn:11403, ipnet:66.111.4.0/24, country:US]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[66.111.4.26:from]; ARC_NA(0.00)[]; RECEIVED_SPAMHAUS_XBL(5.00)[91.240.124.143:received]; RECEIVED_SPAMHAUS_CSS(4.00)[91.240.124.143:received]; R_DKIM_ALLOW(0.00)[mm.st:s=fm1,messagingengine.com:s=fm3]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.79)[0.788]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_SPAM_MEDIUM(0.95)[0.954]; RCPT_COUNT_ONE(0.00)[1]; BAD_REP_POLICIES(0.10)[]; NEURAL_SPAM_LONG(0.97)[0.974]; GREYLIST(0.00)[pass,meta] X-Spam: Yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:50:27 -0000 Polytropon wrote: > On Fri, 14 Aug 2020 21:42:12 +0300, moridin@mm.st wrote: >> James B. Byrne via freebsd-questions wrote: >>> FreeBSD-12.1p8 >>> >>> I am forced to configure a new workstation (WS) due to an unrecoverable >>> hardware error on my old (c.2009) one. The new WS has only basic VGA on the >>> motherboard and has an Nvidia card as its primary video i/f. >>> >>> I have two monitors both connected to the card. Each works independently of >>> the other but when both are connected only one display is used. >>> >>> I have the Mate desktop installed and working. However when I try to configure >>> the monitors the display dialogue window only shows one, unknown, display and >>> the detect monitor button is not active. I also get a message stating that the >>> mate-settings-daemon cannot start. >>> >>> I need some help getting this sorted out. If someone could guide me through >>> this I would appreciate it very much. >> >> I know nothing about mate and its settings, but I remember running X on >> dual-monitor setup with nvidia. What you need is to get the output >> names from Xorg.log in /var/log (e.g. DFP-0, DFP-2) and add relevant >> config line to your /usr/local/etc/X11/xorg.conf.d/.conf, e.g.: >> >> Section "Device" >> Identifier "Something here" >> Driver "nvidia" >> MetaModes "DFP-0:3840x2160,DFP-2:3840x2160" >> EndSection >> >> Check the documentation shipped with nvidia-driver for more options. > > I have been using a dual-head system with nVidia card + driver in > the past (one connected to DVI, the other one connected to VGA), > and the whole thing was configured independently from any window > manager or desktop environment simply in xorg.conf. If I remember > correctly, there were two Section "Monitor", each one with an > Option "PreferredMode" and Option "Position" (this one was > different!), and it worked. I got the example code from the > nVidia documentation. Maybe this is still possible? I believe this is only required if you are really running dual-head setup -- that is, 2 cards and 2 monitors, so you can specify which monitor goes where; or if you need to use Xinerama for some reason. With the latter being obsolete (IMO) and everything using xrandr nowadays, there's no real need to specify separate monitor entries in xorg.conf. Hopefully, mate stuff uses xrandr (it should) and helping it by providing the entries via MetaModes should work. From owner-freebsd-questions@freebsd.org Fri Aug 14 20:59:08 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3754D3790F9 for ; Fri, 14 Aug 2020 20:59:08 +0000 (UTC) (envelope-from dpchrist@holgerdanske.com) Received: from holgerdanske.com (holgerdanske.com [184.105.128.27]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "www.holgerdanske.com", Issuer "www.holgerdanske.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BSwlv2ywQz48qV for ; Fri, 14 Aug 2020 20:59:07 +0000 (UTC) (envelope-from dpchrist@holgerdanske.com) Received: from 99.100.19.101 ([99.100.19.101]) by holgerdanske.com with ESMTPSA (TLS_AES_128_GCM_SHA256:TLSv1.3:Kx=any:Au=any:Enc=AESGCM(128):Mac=AEAD) (SMTP-AUTH username dpchrist@holgerdanske.com, mechanism PLAIN) for ; Fri, 14 Aug 2020 13:59:00 -0700 Subject: Re: smartd reports Currently unreadable sectors To: freebsd-questions@freebsd.org References: <818E85E7-D327-4444-8BA8-E7C06CC1C5E6@kukulies.org> From: David Christensen Message-ID: <708a7f45-76ce-bbc0-8d56-435e3079a7ae@holgerdanske.com> Date: Fri, 14 Aug 2020 13:59:00 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0 MIME-Version: 1.0 In-Reply-To: <818E85E7-D327-4444-8BA8-E7C06CC1C5E6@kukulies.org> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BSwlv2ywQz48qV X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of dpchrist@holgerdanske.com has no SPF policy when checking 184.105.128.27) smtp.mailfrom=dpchrist@holgerdanske.com X-Spamd-Result: default: False [2.56 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_SPAM_SHORT(0.01)[0.011]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; AUTH_NA(1.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_SPAM_MEDIUM(0.84)[0.835]; DMARC_NA(0.00)[holgerdanske.com]; NEURAL_SPAM_LONG(0.82)[0.818]; RCVD_IN_DNSWL_NONE(0.00)[184.105.128.27:from]; R_SPF_NA(0.00)[no SPF record]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:6939, ipnet:184.104.0.0/15, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Aug 2020 20:59:08 -0000 On 2020-08-14 00:15, Christoph Kukulies wrote: > > smartd reports: > > > Aug 14 08:06:02 pc235 smartd[797]: Device: /dev/ada1, 2 Offline uncorrectable sectors > Aug 14 08:36:01 pc235 smartd[797]: Device: /dev/ada1, 2 Currently unreadable (pending) sectors > > ada1: ATA8-ACS SATA 2.x device > ada1: Serial Number WD-WMAV50596027 > ada1: 300.000MB/s transfers (SATA 2.x, UDMA6, PIO 8192bytes) > ada1: Command Queueing enabled > ada1: 953869MB (1953525168 512 byte sectors) > > > Time to replace the drive or what measures can I take? > -- > Christoph First, backup your data. I maintain one machine with a Windows installation. I would move the drive into that machine and run "Data Lifeguard Diagnostic for Windows": https://support.wdc.com/downloads.aspx?lang=en Here is a link to an older bootable USB stick version: https://support.wdc.com/downloads.aspx?p=2 David From owner-freebsd-questions@freebsd.org Sat Aug 15 02:25:26 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id CAF8B3A8EC5 for ; Sat, 15 Aug 2020 02:25:26 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BT40P5mwDz4QBh for ; Sat, 15 Aug 2020 02:25:25 +0000 (UTC) (envelope-from kremels@kreme.com) Content-Type: text/plain; charset=us-ascii Subject: Re: less "there is no -l option" From: "@lbutlr" In-Reply-To: Date: Fri, 14 Aug 2020 20:25:22 -0600 Cc: FreeBSD Content-Transfer-Encoding: quoted-printable Message-Id: References: <548D7ED2-9BEA-4B73-9F86-5597AB305B29@kreme.com> To: moridin@mm.st X-Mailer: Apple Mail (2.3652.0.5.2.1) X-Rspamd-Queue-Id: 4BT40P5mwDz4QBh X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Spamd-Result: default: False [0.08 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.042]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; MISSING_MIME_VERSION(2.00)[]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[kreme.com]; NEURAL_HAM_LONG(-1.00)[-0.999]; NEURAL_SPAM_SHORT(0.52)[0.517]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[mm.st]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:209, ipnet:65.112.0.0/12, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[65.121.55.42:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 02:25:26 -0000 On 14 Aug 2020, at 11:05, moridin@mm.st wrote: >> # echo "$LESS\n$PAGER\n$MANPAGER" >> less -esXFR >=20 > This is the source of the problem, LESS variable needs to contain only = the options: >=20 > $ which less > /usr/bin/less > $ less > Missing filename ("less --help" for help) > $ LESS=3D"less -esXFR" less > There is no -l option ("less --help" for help) > Missing filename ("less --help" for help) Thank you. --=20 "Are you pondering what I'm pondering?" "I think so, Brain, but, the Rockettes? I mean, it's mostly girls, isn't it?"= From owner-freebsd-questions@freebsd.org Sat Aug 15 08:23:28 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 432D93B2835 for ; Sat, 15 Aug 2020 08:23:28 +0000 (UTC) (envelope-from mueller6722@twc.com) Received: from p-impout006.msg.pkvw.co.charter.net (p-impout006aa.msg.pkvw.co.charter.net [47.43.26.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "Client", Issuer "CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTCxW2J1gz3X59 for ; Sat, 15 Aug 2020 08:23:26 +0000 (UTC) (envelope-from mueller6722@twc.com) Received: from localhost ([96.28.177.163]) by cmsmtp with ESMTP id 6rTDkxhwri5bU6rTDk3yXU; Sat, 15 Aug 2020 08:23:20 +0000 X-Authority-Analysis: v=2.3 cv=CfB2G4jl c=1 sm=1 tr=0 a=xqrt2BZAGHte7XHhrxJgbA==:117 a=xqrt2BZAGHte7XHhrxJgbA==:17 a=HpEJnUlJZJkA:10 a=d_YPok2F7djCDP0JTjgA:9 Date: Sat, 15 Aug 2020 08:23:09 +0000 From: "Thomas Mueller" To: freebsd-questions@freebsd.org Subject: Re: 5.25" Floppy disk drive not recognized References: <46FFA8F9-90AA-42DE-8E8B-CA4383CA7AC6@kukulies.org> <20200814101021.c71f6c23768a5bef685739fe@sohara.org> <20200814071030.3f319e5a@scorpio.seibercom.net> <76A64DE1-B61B-405E-A623-C886819E1977@kukulies.org> <20200814151509.0feef428f3692a1d9a2bb39a@sohara.org> <0F38A0D7-FD25-4076-A14C-3B75BAC76244@kukulies.org> <86D9EF37-531A-4480-8857-9C495E4BBB8C@kukulies.org> <7CF88C86-6E81-498D-A383-B160D77D8134@kukulies.org> X-CMAE-Envelope: MS4wfKD/N3SMxCTsZ1yfRHNQ86VndZR3eCmzKRYo2oknEIlaKhjNUD28nfJxDNNELim/QbVpg/wV1t5XEdjakpccsNNfxfLFtKhlD0R12RRXWgkpSUt6iTaB 33oUb2qLizNJGA3JPy2TyGq8XEcQ5lEFeqcCqdc9ZLln1f59bPAHBxbGEGEhiD5FmyzxsScVfn4GtQ== X-Rspamd-Queue-Id: 4BTCxW2J1gz3X59 X-Spamd-Bar: +++++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of mueller6722@twc.com designates 47.43.26.137 as permitted sender) smtp.mailfrom=mueller6722@twc.com X-Spamd-Result: default: False [7.98 / 15.00]; RCVD_TLS_LAST(0.00)[]; ARC_NA(0.00)[]; GREYLIST(0.00)[pass,meta]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[twc.com]; R_MISSING_CHARSET(2.50)[]; MIME_GOOD(-0.10)[text/plain]; TO_DN_NONE(0.00)[]; BROKEN_CONTENT_TYPE(1.50)[]; NEURAL_SPAM_MEDIUM(0.94)[0.944]; RCPT_COUNT_ONE(0.00)[1]; MISSING_MID(2.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.16)[-0.156]; NEURAL_SPAM_LONG(0.99)[0.989]; DMARC_NA(0.00)[twc.com]; R_SPF_ALLOW(-0.20)[+ip4:47.43.26.0/24]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:40294, ipnet:47.43.24.0/21, country:US]; FREEMAIL_ENVFROM(0.00)[twc.com]; RECEIVED_SPAMHAUS_PBL(0.00)[96.28.177.163:received] X-Spam: Yes X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 08:23:28 -0000 > I’m trying to access a 5.25“ floppy disk drive if anyone here knowing what a „floppy“ disk drive is. :) > neither less or cat works. I cannot totally exclude that the media don’t fit. > The ones in questions here are CP/M 68k format. They are DD-DT. > But I won’t get at the problem over the weekend to eventually test other media from which I know they are definitely MSDOS. > OTOH, dd normally used to work on this kind of devices, didn’t it? > I’m getting doubts. > The once was /dev/MAKEDEV for this. There still is, in NetBSD and OpenBSD. > Christoph My first personal computer was with MS-DOS 4.01, which was a big improvement over MS-DOS 3.31. So I never had CP/M in front of me. Floppy-disk version of senile dementia did me in, computerwise. First I would no longer be able to write to the diskette, much later I would not even be able to read the diskette. Formatting would not help, besides destroying all the diskette's data. I did, in the distant past, use dd successfully to write to 3.5" floppy disks. I remember the days when FreeBSD installation sets came in chunks intended for dd to floppy disks (base.aa, base.ab, base.ac, ...), and I would not be able to get enough good floppies to do this successfully. NetBSD didn't do that, and I was quite glad when FreeBSD quit that very inconvenient practice. Any hope of recovering some of your floppy data with ddrescue? I once used that on a WD Green 3 TB hard drive, rescued most but not all of the data. Tom From owner-freebsd-questions@freebsd.org Sat Aug 15 12:21:53 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C38073B8935 for ; Sat, 15 Aug 2020 12:21:53 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: from mail-io1-xd44.google.com (mail-io1-xd44.google.com [IPv6:2607:f8b0:4864:20::d44]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTKDd0GDgz42Wv for ; Sat, 15 Aug 2020 12:21:52 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: by mail-io1-xd44.google.com with SMTP id t15so13326138iob.3 for ; Sat, 15 Aug 2020 05:21:52 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seibercom.net; s=google; h=date:from:to:subject:message-id:in-reply-to:references:reply-to :organization:mime-version; bh=cCcH0lIgiOYLlmZE/Tw9nTYqPzxcvazAM2vudcoYrH0=; b=lkd2aND0VDEireQDpnYVabWTAC6JdgnvwaELxezFdyJwFMGZuqZxrQl8eNdxq5IdIS PJBNnzrlK4uJ/m3tycviKaeXSKh8KqphNJWfjercIP3b4LbUlZk3/H9R4JnkfpDz7pUr 6qaHo/Q2hsCdg3pTHIe5uwzUCCYLLPIjTZbEs= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:message-id:in-reply-to :references:reply-to:organization:mime-version; bh=cCcH0lIgiOYLlmZE/Tw9nTYqPzxcvazAM2vudcoYrH0=; b=SspENEZp981QwnZxDBfWdjnpkhTyL0HIzdf5n0jQIqKF0cDbjg7+ZCHItoDEVEDyuD o0Kp/JFxydOYLEgZIU84oA6jQ/5RpHaKKKVflRjcmUXSIhdHq1jgbX7G0+KwdQtFRWwP gGcvxZy0d/2dbXKGldRuczNmnKu2ZrPnApUx0qZe7oqrmt6/Wx5o6amBHaRQHrvwHk8O cVvYD7BpPiwog3phaucwkfTCCEugx9aIkQYum0kfs9JV6zTE0SQaCsLpnZbWbmt7Kc00 P5TJaxUw5+JV22E2dKEgkpPoIZcXKOKi4r/65EjqsYkJ/EVE1QS9Bs1RlavR8EfKlwoI kbAA== X-Gm-Message-State: AOAM531d6Ze/MXzt/n6x58JTajaIr3OJFJdeh6CmBF9cyWpjkfap9d5G F9F74tkoQfWEuZ6wsmq4TUwjUTilI1wZDw== X-Google-Smtp-Source: ABdhPJy3pI+V43soLZPS9juikHM7VToo7wuwk60AnOzlG3jvQ4dzB2GfFqZz/EZY7j2NXcX/u7M62A== X-Received: by 2002:ae9:e00b:: with SMTP id m11mr5792564qkk.341.1597493770707; Sat, 15 Aug 2020 05:16:10 -0700 (PDT) Received: from scorpio.seibercom.net (cpe-174-109-231-236.nc.res.rr.com. [174.109.231.236]) by smtp.gmail.com with ESMTPSA id j31sm13611433qtb.63.2020.08.15.05.16.08 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 15 Aug 2020 05:16:09 -0700 (PDT) Received: from scorpio.seibercom.net (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by scorpio.seibercom.net (Postfix) with ESMTPS id 4BTK5z4J5Kz6Qv for ; Sat, 15 Aug 2020 08:16:07 -0400 (EDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.102.4 at scorpio.seibercom.net Date: Sat, 15 Aug 2020 08:16:00 -0400 From: Jerry To: "User Questions" Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-ID: <20200815081600.55107873@scorpio.seibercom.net> In-Reply-To: <20200814213706.18eb16b9.freebsd@edvax.de> References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> Reply-To: "User Questions" Organization: seibercom NET X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; amd64-portbld-freebsd11.4) MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/gIGqDRAVVAKGMdm4It0f482"; protocol="application/pgp-signature" X-Rspamd-Queue-Id: 4BTKDd0GDgz42Wv X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=lkd2aND0; dmarc=none; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::d44 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Spamd-Result: default: False [2.24 / 15.00]; HAS_REPLYTO(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; HAS_ORG_HEADER(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[seibercom.net:+]; NEURAL_HAM_SHORT(-0.41)[-0.407]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; REPLYTO_EQ_TO_ADDR(5.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RECEIVED_SPAMHAUS_PBL(0.00)[174.109.231.236:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.82)[-0.818]; R_DKIM_ALLOW(-0.20)[seibercom.net:s=google]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.94)[-0.935]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[seibercom.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d44:from]; GREYLIST(0.00)[pass,body]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 12:21:53 -0000 --Sig_/gIGqDRAVVAKGMdm4It0f482 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Fri, 14 Aug 2020 21:37:06 +0200, Polytropon stated: >On Fri, 14 Aug 2020 10:44:35 -0400, Aryeh Friedman wrote: >> On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: >> =20 >> > On 8/14/20 09:48, Aryeh Friedman wrote: =20 >> > > On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk >> > > =20 >> > wrote: =20 >> > > =20 >> > >> On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" >> > >> wrote >> > >> >> > >> Again many corporate firewalls don't allow ssh out (or in >> > >> directly) =20 >> > >>> because tunnelling bypasses the firewalls. And again it seems >> > >>> odd for a hosting company. >> > >>> =20 >> > >> ssh out is typically prohibited to lower the risk of employee >> > >> transfer =20 >> > of =20 >> > >> sensitive data to external destinations - So called Data Loss =20 >> > Prevention. =20 >> > >> This, along with email scanning and man in the middle cert >> > >> management is pretty common. >> > >> =20 >> > > Unless it is 100% air gapped with no ability to plug in portable >> > > media and/or record the screen then nothing is 100% immune from >> > > such loss and thus not allowing it makes very little sense. If >> > > on the other hand the idea is to limit the damage that >> > > malware/spyware can do then it makes =20 >> > sense =20 >> > > (even if someone does in [accidentally] install malware/spyware >> > > it can =20 >> > not =20 >> > > send the results of its dirty work anywhere). >> > > =20 >> > Untrue. As the CISO at my latest employer said to me (paraphrasing >> > some, as it's been a while): >> > >> > You and I know how to circumvent the restrictions, but the vast >> > majority of the staff hasn't a clue. This cuts down the noise I >> > have to wade through.=20 >>=20 >> Oh great security by obfuscation! Sounds like the CSIO missed the >> first day of security 101. False sense of security is always a >> bad idea. =20 > >But but but we are ISO-9660 certified! And we have that expensive >snake oil sprinkled everywhere! ;-) > >There are measures that do not "add security", but can help to >limit the line noise. A typical example is moving SSH to some >non-standard port: That doesn't prevent anyone to perform a >port scan and connect to that non-standard port, but it limits >the fun for skript kiddies that connect as "Administrator" on >the default SSH port. > >Those who _want_ to extract data will find a way. As it has >been mentioned, a screen capture send per e-mail, or a screen >photo taken with the private smartphone will work. There are >so many possibilities of data extraction that you cannot stop >with a firewall rule... > >> > And back to the main topic of this thread: What does your lawyer >> > say about your client that is huffing and puffing threats over your >> > inability to perform magic to paper over their unwise contracting >> > actions in regard to a different vendor? Seems to me that you >> > left the land of technology a ways back on this one. >> > >> Actually the client has signed the one piece of paper we needed to >> move forward which is a waiver of liability for stuff we said was >> inherently risky (in writing) before we started the work. It >> should also be noted that due to lack of competance by the hosting >> company and by the equipment supplier we have become the client's >> defecto IT dept. Even though we were originally hired as programmers >> only (this means when push comes to shove the client almost always >> trusts us over anyone else and for the most part "I will find >> someone else '' is just his lack of social graces and not an actual >> threat). =20 > >Tell them you're "devops" now. :-) I have a suggestion on how to rectify this supposed problem that is causing Aryeh Friedman all this frustration and agita. The basis behind any successfully capitalistic society is the ability of an individual or consortiums to create and manage their own businesses. Since Aryeh obviously feels that he is the smartest man or woman in the room, and the ultimate authority on the operation of 'cable/hosting companies', why doesn't he simply assemble a group of supporters and other financial institutions to back his creation of a new "Supreme" hosting company, created in his own likeness and bound to his rules. Now that sounds like a perfect solution to me. Besides, as my old grandpa use to say, "You can curse the darkness or light a candle. In either case, shut the f*%K up." --=20 Jerry --Sig_/gIGqDRAVVAKGMdm4It0f482 Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEIQb/tTwl6I1ueEVtOHMGOIfexWQFAl830gAACgkQOHMGOIfe xWQLMAf8DtvYvtIX8DEjbUKsunnGiawZMkwoRMR0K6d5I024vfPj+CvVq6xnL2+o 1pnhdTodSB4ljjhwSpgkaguMHFIhZjWJCguSvBrpDzDD81oUZl2XGt/mUu/YZANg rFYLosCV25O4tTPt+4cHlocB1e3VUBYPX3Y89lJjFf+BOTtDq/C7ZqtvC6JArBhM SZ7OqKAjojp4h2UQ6hjxz/iXgqGpvXcsCoxV0CiDRrmPqTVcNx+aieCLL9R5roRH Rdak9375xWdv8puGIiXjghm3V3QCcJcatLK/VkklQre7eRNe4xuUGNrSyp5oEBzM kjTM+EyiW4D1v2t3bsN7dojFhKhXuQ== =DRz7 -----END PGP SIGNATURE----- --Sig_/gIGqDRAVVAKGMdm4It0f482-- From owner-freebsd-questions@freebsd.org Sat Aug 15 12:39:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C550F3B9482 for ; Sat, 15 Aug 2020 12:39:16 +0000 (UTC) (envelope-from list1@gjunka.com) Received: from msa1.earth.yoonka.com (yoonka.com [88.98.225.149]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "msa1.earth.yoonka.com", Issuer "msa1.earth.yoonka.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTKcg4yy7z43YC for ; Sat, 15 Aug 2020 12:39:15 +0000 (UTC) (envelope-from list1@gjunka.com) Received: from venus.yoonka.com (venus.yoonka.com [10.70.7.24]) (authenticated bits=0) by msa1.earth.yoonka.com (8.15.2/8.15.2) with ESMTPSA id 07FCd6g4065223 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for ; Sat, 15 Aug 2020 12:39:06 GMT (envelope-from list1@gjunka.com) To: freebsd-questions@freebsd.org From: Grzegorz Junka Subject: Verify user password Message-ID: Date: Sat, 15 Aug 2020 12:39:06 +0000 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.8.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-Rspamd-Queue-Id: 4BTKcg4yy7z43YC X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of list1@gjunka.com designates 88.98.225.149 as permitted sender) smtp.mailfrom=list1@gjunka.com X-Spamd-Result: default: False [-2.49 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:88.98.225.149]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.85)[-0.849]; DMARC_NA(0.00)[gjunka.com]; NEURAL_HAM_SHORT(-0.62)[-0.617]; NEURAL_HAM_MEDIUM(-0.73)[-0.727]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:56478, ipnet:88.98.192.0/18, country:GB]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 12:39:16 -0000 How can I verify if a given password matches the password stored in master.passwd database for a user account that is set up with /nonexistent and /usr/sbin/nologin (so a user that can't normally login to the system but still can have a password stored in the database)? GrzegorzJ From owner-freebsd-questions@freebsd.org Sat Aug 15 13:00:06 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 869723B98D3 for ; Sat, 15 Aug 2020 13:00:06 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd36.google.com (mail-io1-xd36.google.com [IPv6:2607:f8b0:4864:20::d36]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTL4j1vwvz44t6 for ; Sat, 15 Aug 2020 13:00:05 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd36.google.com with SMTP id z6so13322279iow.6 for ; Sat, 15 Aug 2020 06:00:05 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=QKh5eBNtiYzQPWHGYqTgrZF7f1tG8OwjRxy2EWNfT0U=; b=lD9UiYeA9fNvhjWDHqDHUwnc/DLiyyw43ETxa33JWdApvF+bCMxM4gL7lg6j8gg+U8 kmHreBSr8P+wogsJdajPpAV/7A8q5X8TvDPaK7gxXUUYgdUZnLAzRWzKzJteeP6xZk+I MvGvs5gWPtVh1Ydqu9yNcJ+EIETiA5z1PykDWi8uY/8OkEGntdwMi6KBN4M6LkO6iGW7 ktTpNZWP4O7a39FxRdivMeKR35x1O4diibxJRaYhGhsJNgjSTI8PSdY8ov+ewvJhEIJL sma7k1atJ0gRbINGagiffj5vPH8xGcPwuD+CcZQYcqC2YDfT3w9AY69VWBYzfQqSpJfL yqEQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=QKh5eBNtiYzQPWHGYqTgrZF7f1tG8OwjRxy2EWNfT0U=; b=kAFeomXP6mZWR0tRHY5CEMi8zc4aaq3Qjdrmch1g/iaxcgUad3KqH38iDBamiY+1Ea haVgKCao3o/6l4qT4yaCRZDUuU9r8NZn8h7LnmROtQLdXzbdPFCV2CVv9brsuYHsMmEh bZTgLLVTWY3foKma6d68JL253Bug63m8XI4/LdYnLlB6vmtpqoyC93ML0yR4fKRFc/oD /yUksAzLs81L1dwzWBqLZmu6BhtRn2T+pygQwHR4b75Tr46CIwMgVuJplbnFUrNTreYd bWaAbA34FXu6gLwqhe17ktk+2Zl5VXcFZBWLDFXoQ4VgmRL2IdWq8ZX4y71yGyNcSzAK cLjQ== X-Gm-Message-State: AOAM5329VWj7O7XYD+IsSK9/MgqGp+EUdW8Ty7faxhMGgL2Auy96cEmP 8S8Xg0CgCgmmIc+rDc5mtxxVm4l46d+Ah+qqYB8pI/fdBjo= X-Google-Smtp-Source: ABdhPJwA9NdMMDyeheBGfHTd56FwMVbIiEONVaEAkiRTuhV7AGrvYzOGBeJlOPiPtxA0Ou9qwzILymoJGFRep493dgY= X-Received: by 2002:a05:6602:220f:: with SMTP id n15mr5857393ion.103.1597496403831; Sat, 15 Aug 2020 06:00:03 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> In-Reply-To: <20200815081600.55107873@scorpio.seibercom.net> From: Aryeh Friedman Date: Sat, 15 Aug 2020 08:59:52 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: User Questions X-Rspamd-Queue-Id: 4BTL4j1vwvz44t6 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=lD9UiYeA; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d36 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.91 / 15.00]; RCVD_TLS_ALL(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.04)[-1.041]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; NEURAL_HAM_LONG(-1.02)[-1.023]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d36:from]; NEURAL_HAM_SHORT(-0.85)[-0.848]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; RCVD_COUNT_TWO(0.00)[2]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 13:00:06 -0000 On Sat, Aug 15, 2020 at 8:22 AM Jerry wrote: > On Fri, 14 Aug 2020 21:37:06 +0200, Polytropon stated: > >On Fri, 14 Aug 2020 10:44:35 -0400, Aryeh Friedman wrote: > >> On Fri, Aug 14, 2020 at 10:32 AM Jon Radel wrote: > >> > >> > On 8/14/20 09:48, Aryeh Friedman wrote: > >> > > On Fri, Aug 14, 2020 at 9:20 AM Tim Daneliuk > >> > > > >> > wrote: > >> > > > >> > >> On August 14, 2020 12:58:49 AM "Steve O'Hara-Smith" > >> > >> wrote > >> > >> > >> > >> Again many corporate firewalls don't allow ssh out (or in > >> > >> directly) > >> > >>> because tunnelling bypasses the firewalls. And again it seems > >> > >>> odd for a hosting company. > >> > >>> > >> > >> ssh out is typically prohibited to lower the risk of employee > >> > >> transfer > >> > of > >> > >> sensitive data to external destinations - So called Data Loss > >> > Prevention. > >> > >> This, along with email scanning and man in the middle cert > >> > >> management is pretty common. > >> > >> > >> > > Unless it is 100% air gapped with no ability to plug in portable > >> > > media and/or record the screen then nothing is 100% immune from > >> > > such loss and thus not allowing it makes very little sense. If > >> > > on the other hand the idea is to limit the damage that > >> > > malware/spyware can do then it makes > >> > sense > >> > > (even if someone does in [accidentally] install malware/spyware > >> > > it can > >> > not > >> > > send the results of its dirty work anywhere). > >> > > > >> > Untrue. As the CISO at my latest employer said to me (paraphrasing > >> > some, as it's been a while): > >> > > >> > You and I know how to circumvent the restrictions, but the vast > >> > majority of the staff hasn't a clue. This cuts down the noise I > >> > have to wade through. > >> > >> Oh great security by obfuscation! Sounds like the CSIO missed the > >> first day of security 101. False sense of security is always a > >> bad idea. > > > >But but but we are ISO-9660 certified! And we have that expensive > >snake oil sprinkled everywhere! ;-) > > > >There are measures that do not "add security", but can help to > >limit the line noise. A typical example is moving SSH to some > >non-standard port: That doesn't prevent anyone to perform a > >port scan and connect to that non-standard port, but it limits > >the fun for skript kiddies that connect as "Administrator" on > >the default SSH port. > > > >Those who _want_ to extract data will find a way. As it has > >been mentioned, a screen capture send per e-mail, or a screen > >photo taken with the private smartphone will work. There are > >so many possibilities of data extraction that you cannot stop > >with a firewall rule... > > > >> > And back to the main topic of this thread: What does your lawyer > >> > say about your client that is huffing and puffing threats over your > >> > inability to perform magic to paper over their unwise contracting > >> > actions in regard to a different vendor? Seems to me that you > >> > left the land of technology a ways back on this one. > >> > > >> Actually the client has signed the one piece of paper we needed to > >> move forward which is a waiver of liability for stuff we said was > >> inherently risky (in writing) before we started the work. It > >> should also be noted that due to lack of competance by the hosting > >> company and by the equipment supplier we have become the client's > >> defecto IT dept. Even though we were originally hired as programmers > >> only (this means when push comes to shove the client almost always > >> trusts us over anyone else and for the most part "I will find > >> someone else '' is just his lack of social graces and not an actual > >> threat). > > > >Tell them you're "devops" now. :-) > > I have a suggestion on how to rectify this supposed problem that is > causing Aryeh Friedman all this frustration and agita. > Says someone who refuses to help fix a bug because some hardware vendor refuses to give them free equipment, even though the bug affects equipment you already have. > The basis behind any successfully capitalistic society is the ability > of an individual or consortiums to create and manage their own > businesses. Since Aryeh obviously feels that he is the smartest man or > woman in the room, and the ultimate authority on the operation of > 'cable/hosting companies', why doesn't he simply assemble a group of > supporters and other financial institutions to back his creation of a > new "Supreme" hosting company, created in his own likeness and bound to > his rules. > A small piece of advice before you suggest something that someone else should do: you should check to see if they have already done it. Case in point I helped start and/or was the technical head of 5 different ISP's in the mid-90's to late 90's, including the first commercial grade ISP in Los Angeles and a different one that became the fifth largest ISP in California (every single one sold at a profit when the owners got out of the business). I left that world because the capital requirements became too great for anyone smaller than a small country to be in the game. Only problem is: to have that level of capital investment you need to involve the "suits" who are universally idiots when it comes to technical matters. Thus, from a purely technical standpoint (vs. what was technically possible) ISPs have gone steeply downhill from when most of the small ones were forced to leave since they didn't have the ability (or legal right) to lay their own fiber to every house in the known universe. > Now that sounds like a perfect solution to me. Besides, as my old > grandpa use to say, "You can curse the darkness or light a candle. In > either case, shut the f*%K up." > How about a better idea: people who make incorrect negative assumptions about others should bite their tongues. P.S. A trivial amount of internet research should have told you the above about my background. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Sat Aug 15 13:29:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id D8D353BA757 for ; Sat, 15 Aug 2020 13:29:16 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x735.google.com (mail-qk1-x735.google.com [IPv6:2607:f8b0:4864:20::735]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTLkN0twLz45vn for ; Sat, 15 Aug 2020 13:29:15 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x735.google.com with SMTP id 62so10909207qkj.7 for ; Sat, 15 Aug 2020 06:29:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:subject :content-transfer-encoding; bh=eHvJJ3xsuWYk7Xqkf+8P9XufEmzc8oI7hzN1D0N5dCM=; b=MJARQjVKIJQFhEPwLerr9ycua8PXTWe2dRr78RopAgCIV1wtFKY6rJJlw7S5MnzDn8 PQOlrJAeXYwNBh/3pQ2Kl3OoTKQpbxFhOr14Pn3W8jAupuqgQWd9UOhrx3lDbTBMj95i sz9FP+NM30Gydl4gmnPdNxSB+921kgfpsM0bNviRwef3WZ8wGWAeV01n2FWj5KkIPK99 rU5qUq/o2TdqXwkIN8Kl+8iAPAeIgGCrHptuIeZkKthQAXurPlN+otdTaJCWIaGbcg+N duSoE4IKfMCyJfkTyO85fs6VXupiSgOZENbGw+cJY41FiEop94+8eXdmocov00gR0/7t 3MIQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:content-transfer-encoding; bh=eHvJJ3xsuWYk7Xqkf+8P9XufEmzc8oI7hzN1D0N5dCM=; b=MxRFoF67d7tT/foPRHIV2/SozwwJwJ2ZeQ0W3R/K2jJpZU30usCpHJEX2MLsYztIeE 5NHZqo18IXSjijNZI06WvORLdd68jVSs8fjOPnAc7uaI7R6GJp71SAGUfmi86QO00rm6 Nw93so2GKYVSR8SxbXMFPsk/efeJTOy6hd++cq2Jpaa/eJ+3flfntzQ8b11FKqNsaC31 okgW10v9u6lZQuB7Cx92IJpkNqrHz11tlMH92F09lUE9ZLHJoriAwgcmNLJE2r7DZR7Q cG9tdoEpQTCk3FxM0s5xfcCmL8PZ99Lil7/0q2ISaRQJTYAPAMc000O6misynPHDaPlQ xmGA== X-Gm-Message-State: AOAM5335CO5M8v1J8vmBvJUR8PxSz9K7IQGjnWW4NdOAq/wbehhwesch hGVlXgOJYgvanxcFyRAxnF3KZPaeu14= X-Google-Smtp-Source: ABdhPJzO7nzrByBiC8KjaeGGoPK73VJh5qjRwsHgctZxKFb7mYcJMmj+PrSzgpnXbzLfhUlONPdkAA== X-Received: by 2002:a37:4d3:: with SMTP id 202mr5785370qke.496.1597498154737; Sat, 15 Aug 2020 06:29:14 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id o48sm14121198qtf.14.2020.08.15.06.29.13 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Sat, 15 Aug 2020 06:29:14 -0700 (PDT) Message-ID: <5F37E329.3000903@gmail.com> Date: Sat, 15 Aug 2020 09:29:13 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: "freebsd-questions@freebsd.org" , Ernie Luzar Subject: can a domain name config point to a vlan tag at the host Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BTLkN0twLz45vn X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=MJARQjVK; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::735 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-4.27 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-1.22)[-1.216]; FREEMAIL_TO(0.00)[freebsd.org,gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.057]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-0.996]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::735:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 13:29:16 -0000 I set up vlan for the host interface cabled to the public internet. How do I drive internet traffic to the desired vlan name on the host using a registered domain name? My rc.conf has this ifconfig_re0="DHCP" gateway_enable="YES" vlans_re0="1 2 3" # vlan_1 is for the host # vlan_2 is for vnet jailA # vlan_3 is for vnet jailB Final goal is to drive traffic from the public internet using a fqdn to the vnet jailA. From owner-freebsd-questions@freebsd.org Sat Aug 15 13:31:26 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 422663BA8E9 for ; Sat, 15 Aug 2020 13:31:26 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from bede.qeng-ho.org (bede.qeng-ho.org [217.155.128.241]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTLmr51mFz46Qy for ; Sat, 15 Aug 2020 13:31:24 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by bede.qeng-ho.org (Postfix) with ESMTP id CF28610374; Sat, 15 Aug 2020 14:31:16 +0100 (BST) Subject: Re: Verify user password To: Grzegorz Junka , freebsd-questions@freebsd.org References: From: Arthur Chance Message-ID: <0567033d-fa75-06b2-5629-448fdc507242@qeng-ho.org> Date: Sat, 15 Aug 2020 14:31:16 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 4BTLmr51mFz46Qy X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Spamd-Result: default: False [-3.36 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.037]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:217.155.128.240/29]; NEURAL_HAM_LONG(-0.99)[-0.995]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[qeng-ho.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-1.03)[-1.030]; RCPT_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; ASN(0.00)[asn:13037, ipnet:217.155.0.0/16, country:GB]; MIME_TRACE(0.00)[0:+]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 13:31:26 -0000 On 15/08/2020 13:39, Grzegorz Junka wrote: > How can I verify if a given password matches the password stored in > master.passwd database for a user account that is set up with > /nonexistent and /usr/sbin/nologin (so a user that can't normally login > to the system but still can have a password stored in the database)? nologin doesn't stop you logging in, it merely says the account isn't available and boots you out afterwards, so you should be able to check the password by trying to log in. I don't think the non-existent home directory affects that, -- The number of people predicting the demise of Moore's Law doubles every 18 months. From owner-freebsd-questions@freebsd.org Sat Aug 15 13:39:40 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 113683BAFB1 for ; Sat, 15 Aug 2020 13:39:40 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from bede.qeng-ho.org (bede.qeng-ho.org [217.155.128.241]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTLyL6Tbrz472f for ; Sat, 15 Aug 2020 13:39:38 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by bede.qeng-ho.org (Postfix) with ESMTP id 8C53310374; Sat, 15 Aug 2020 14:39:37 +0100 (BST) Subject: Re: can a domain name config point to a vlan tag at the host To: Ernie Luzar , "freebsd-questions@freebsd.org" References: <5F37E329.3000903@gmail.com> From: Arthur Chance Message-ID: <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> Date: Sat, 15 Aug 2020 14:39:37 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: <5F37E329.3000903@gmail.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 8bit ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597498779; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=5FqYUBEMXnzLBT4Ls3pnssOZkGReHNsze43pUjVVa6o=; b=xxca7r3tYmZAXfRwdFx8nj6gIlzUVReNaUsYyYRfA7aLhvmioI4X+I4AxHbFHqopv/w22U y34FlGYg6NXPnvoAq2Xai5aSqYVZMvBwgbIkXkQA/YyMHO4SzIxGwcc8PtzCoSQ0vZB9UD 5oWdJ18cxlaLHSC82Rlk0zFFTrPe4Ha30kSD7I9n49jpkpXCKkjxHiHZUUyNopSAg9+mIq O6HU5tMMvGZrL7FParTzqxCwQybeVoeFkhYRAt0TfndGF6ARe5skXLmrtmKbcWNcL623C6 ddYmBL95YJyxsAkOLJWID56EV6CkWQatL8FvsqKyQxpK9hgPQuRuVHrmFnTsVQ== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597498779; a=rsa-sha256; cv=none; b=FaBz2UXZOfto1fEUlyHaVLvg/EaPm0bjfOTBEtW92mzIZwHAv99aoVhEJ5HcUQZzDAF+EJ bsXaCjMNTEVHFnKEorOh48axknYkex+NW/CrUsWNiDwtAwDTCwp8Le+QudZm1C9kmg3yjv AJelO2vZw1R1/Ey4JiASsQKZRJsq46FLyWtU4BU+aNn31ADOVQGp5vDnhckNKkC6kj7qk8 YN0FRM5PhlMCcH1Pubml44Xcf3YifvH5KUrPE1bp1m3WY6WWrTG4eNv4BWzpV/riClyggZ q9pFH2OlOYoiUKKoesvVTlSgL5bc0xnwtl4ZWGML4sUMWZSpP60xVy/RLYHokw== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Rspamd-Queue-Id: 4BTLyL6Tbrz472f X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Spamd-Result: default: False [-2.88 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.051]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:217.155.128.240/29]; NEURAL_HAM_LONG(-0.97)[-0.969]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; DMARC_NA(0.00)[qeng-ho.org]; ARC_SIGNED(0.00)[i=1]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.56)[-0.564]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com,freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:13037, ipnet:217.155.0.0/16, country:GB]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 13:39:40 -0000 On 15/08/2020 14:29, Ernie Luzar wrote: > I set up vlan for the host interface cabled to the public internet. > How do I drive internet traffic to the desired vlan name on the host > using a registered domain name? > > My rc.conf has this > > ifconfig_re0="DHCP" > gateway_enable="YES" > > vlans_re0="1 2 3" > > # vlan_1  is for the host > # vlan_2  is for vnet jailA > # vlan_3  is for vnet jailB > > Final goal is to drive traffic from the public internet using a fqdn to > the vnet jailA. I strongly suggest you read up more about networking because it's obvious you don't really understand it. All network traffic goes to *IP addresses* not domains. DNS says what addresses to use for a specific domain, but *all* connection attempts, whatever the protocol, are to a specific numeric IP address. Yes, protocols like HTTP then accept a host specification for further "routing" but that happens *after* the initial connection is made. If you want to run N jails with N different domains, all with their own traffic to arbitrary ports, you are going to need at least N different IP addresses. -- The number of people predicting the demise of Moore's Law doubles every 18 months. From owner-freebsd-questions@freebsd.org Sat Aug 15 14:01:27 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B63FE3BB786 for ; Sat, 15 Aug 2020 14:01:27 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: from mail-qt1-x841.google.com (mail-qt1-x841.google.com [IPv6:2607:f8b0:4864:20::841]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTMRV5HqWz47k1 for ; Sat, 15 Aug 2020 14:01:26 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: by mail-qt1-x841.google.com with SMTP id h21so9060943qtp.11 for ; Sat, 15 Aug 2020 07:01:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seibercom.net; s=google; h=date:from:to:subject:message-id:in-reply-to:references:reply-to :organization:mime-version; bh=kjLT7wsdKUoTfbhkOs2QPLFvBrnvGYDwEbmNTl4wuf8=; b=m5fFB+5EtAZ3UEpGZgNmvAaNHgoz7YRPbfWckRZZyLw7404KVNvmGuc5eadfiYvSke d+Jpmpwfvg8TUxCnxp+clz0Rw3aygKJ6RX9pP+Lwr+COyee+hr26tWT5hoCPJzNlIqCH mLoQ9SSbxQEsO/s7A6n/4E5/AhFsCXdArllO0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:message-id:in-reply-to :references:reply-to:organization:mime-version; bh=kjLT7wsdKUoTfbhkOs2QPLFvBrnvGYDwEbmNTl4wuf8=; b=WO/U7GkuQi315YaJT9vnLcgKgknn6XXOkTyUllEzakPyoanGal8zqkkKq2GzhhwaxV BwpyqFOZKDPTmbj2HVQJ9siwjU2gdWXkndqkk9B/5sfrmm6iUxQV4lGU/LGAbv7rLqDK avPbJhyJMpz1doJdZZDxxjppQum0X338iCKJuheQbEH1sya2ve4osbwS/0N/0dM0T3vF q4SSKcUvgzOj/Z3OhIDos7cfh9n9l2CI3gFdncXdGwM1mhLBV3R5ha3egYoZT+FybDTr BqNoDr3bAjVxe4V5JjXChAaIIoCJ9j2YumpxasBQu1//ZAf+NACYN41SArj3OPffolKv rEDA== X-Gm-Message-State: AOAM532T08zhOFNx671ev97p0D0QJNMskjClRo8uRhXcFPM5rp069qdQ mXq9023GbUuhHKtsfUnmvTTGaZrsUr/Gcg== X-Google-Smtp-Source: ABdhPJxRMaHCaaQY0hkXyG1sg+lE49p43SeXvO/CWZNd5ImqYYg7tpVSFpcgbL/ADg6RsfsvogsTUQ== X-Received: by 2002:ac8:6952:: with SMTP id n18mr6205665qtr.27.1597500085527; Sat, 15 Aug 2020 07:01:25 -0700 (PDT) Received: from scorpio.seibercom.net (cpe-174-109-231-236.nc.res.rr.com. [174.109.231.236]) by smtp.gmail.com with ESMTPSA id g4sm12769311qtp.89.2020.08.15.07.01.23 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 15 Aug 2020 07:01:24 -0700 (PDT) Received: from scorpio.seibercom.net (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by scorpio.seibercom.net (Postfix) with ESMTPS id 4BTMRQ6XV2z6VY for ; Sat, 15 Aug 2020 10:01:22 -0400 (EDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.102.4 at scorpio.seibercom.net Date: Sat, 15 Aug 2020 10:01:04 -0400 From: Jerry To: "User Questions" Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-ID: <20200815100104.4c2feae9@scorpio.seibercom.net> In-Reply-To: References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> Reply-To: "User Questions" Organization: seibercom NET X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; amd64-portbld-freebsd11.4) MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/MlsqYyhPegjKaJu0Rpwuoc2"; protocol="application/pgp-signature" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597500087; h=from:from:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references:dkim-signature; bh=kjLT7wsdKUoTfbhkOs2QPLFvBrnvGYDwEbmNTl4wuf8=; b=QHRIw3bAQdScEKsbi7DIq+ZZSyqDs07cZaa4a8pcoRBKxdgnN8aVcOSVLCyIau97dimtsh /bxtk/NPzD4+2tk2LRqNqMrQF+MBJuebCr4tq+ZPx3e45jvcwqit7rINl7F7dz8HqJ2KYW PXEK4SXspx6R0fFRhoHCbzKD68ieitYSuXy2OEI+yLNWqtO9zqO4L9iadMzXSLJfku64AI JpI77aIldRvDCV/z/DJgm2ba6AiVOsLrOdyUiKODb0VFea/QkaPiTuzhfjrJ5dygltxSt+ MyyxX62oNwAR0ocKw9tDD/UuIcaESjyNZj5CqxwxvwPNwBYvVqeFzGoW0ox6Zg== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597500087; a=rsa-sha256; cv=none; b=CXjsvd/Yav17rAaH6vS7G3J+lGJQT9s2NrE+c3HFly24SSgwwjO805NkuRzAfUwn2Wk2YS 6LZ1d1XejqZV8fWxBMA6UDLJNI4TLm128+dScwb9v17VwmpUTZ0TVFffXQvHOqZKuvga6f n4WuzYmrJ6nvjqAb6y+xRbZL+g31fWtO7Ov0Xh5N9+9DlQ3Z/XsWvKNyumRxbBMohGKxN+ 0SIOaa8mJrlj71eUnGMY+m2sCAy4A9fLaWqSoTCE7gSpOcm/d0pShWrxk0x4L53xQvj8iR pxlUBceItSFyHUiBpy+lm6TWfloLEKj+KZbLLtIEwaWJaiF5MM3hsWm2IZcWcA== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=m5fFB+5E; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::841 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Rspamd-Queue-Id: 4BTMRV5HqWz47k1 X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=m5fFB+5E; dmarc=none; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::841 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Spamd-Result: default: False [2.28 / 15.00]; HAS_REPLYTO(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; ARC_SIGNED(0.00)[i=1]; HAS_ORG_HEADER(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[seibercom.net:+]; NEURAL_HAM_SHORT(-0.31)[-0.314]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; REPLYTO_EQ_TO_ADDR(5.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RECEIVED_SPAMHAUS_PBL(0.00)[174.109.231.236:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.85)[-0.849]; R_DKIM_ALLOW(-0.20)[seibercom.net:s=google]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.95)[-0.954]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[seibercom.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::841:from]; GREYLIST(0.00)[pass,meta]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 14:01:27 -0000 --Sig_/MlsqYyhPegjKaJu0Rpwuoc2 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Sat, 15 Aug 2020 08:59:52 -0400, Aryeh Friedman stated: >Says someone who refuses to help fix a bug because some hardware vendor >refuses to give them free equipment, even though the bug affects >equipment you already have. Your analysis is incorrect. I did in fact, rectify the problem. Coming to the realization that it would cost me both time and money, I choose a different path. Realizing that I could easily minimise the situation with a minimum of effort, I simply changed to an OS that did not suffer from the affliction and offered me more leeway in completing my job requirements. There is an old saying, "Piss poor planning on your part, does not constitute an emergency on my part." The simple fact that you failed to anticipate potential problems, either now or at some future date, is solely your fault. There are numerous reasons why a specie becomes extinct. One of the most common is that they simply failed to adapt, also referred to as "survival of the fittest." You appear to be on the way to extinction. My grandpa also had another saying, "shit or get off the pot." If you think you have a legitimate legal course of action, then roll the deice and throw your dogs (lawyers) into the fight. Either that or put your tail between your legs and go home. In any case, stop whining like a little girl who just had her pigtails pulled. Very few problems cannot be cured with a minimum of effort. Unfortunately, all to many insist and cursing that darn night rather than lighting a small candle. --=20 Jerry --Sig_/MlsqYyhPegjKaJu0Rpwuoc2 Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEIQb/tTwl6I1ueEVtOHMGOIfexWQFAl836qAACgkQOHMGOIfe xWRuugf/WOTSz2EGgX1aVbyOvVKHS+O295P8mlQGs4865oUvSlC5pvSoa7/9MplI 6NvIvszY0hjWGwntjKsP8Fre4qxA5Fgt+0qO0xE0QtSGJD0b2AJzkXy4DduP2/ta yNODryG6fZ5izbaMgKRMiB17BA7mpc8GQxEjrXXG9QX+tiBWzRmfxilNz95fO7XJ G7BC7F4LL7Dju1qCbAfv9TTx7JuPFnJ3KD+eUxaA5fBVLlvIs7Hp8E8jPSRdaG8s bWcMkow0qcCyAEVRsi56G//KrMX/KsMeIW7id//SgMaV9Xpu9sTlRtkqmbwVfMYb AUTglVRySE4ZtT/Dyfq8fxw1V8dVug== =aCs0 -----END PGP SIGNATURE----- --Sig_/MlsqYyhPegjKaJu0Rpwuoc2-- From owner-freebsd-questions@freebsd.org Sat Aug 15 14:37:43 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 03CA43BBF3E for ; Sat, 15 Aug 2020 14:37:43 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-il1-x12a.google.com (mail-il1-x12a.google.com [IPv6:2607:f8b0:4864:20::12a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTNFK6F86z4BMy for ; Sat, 15 Aug 2020 14:37:41 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-il1-x12a.google.com with SMTP id j9so10821687ilc.11 for ; Sat, 15 Aug 2020 07:37:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=baqp659BWnFOGHMa0bHA6yajKC+KKI4XJ+vgUJ81AAc=; b=vSyOOyQRulVF/WL7VggUQKXfCVMnuzT86cIZDYVi8seEp0VcJa+/POZ15+1HPIRvfJ uIfClCZkPSfzzOx2A2jKWY4LHHMocs4upg39PM6lv2oXFsP/+hJ+Fx53q5gvo0jyfoaB criQcHrTO6OUXu1Yw/gDN/lb1kT6aVciibhcLv/UlOKivkzzv3LTtIZbN5qqbqbLu82v NHJleixdPnlKibm8OZ4Or95evzkIO9yLBy2+Jd8I9M9mBMJqip/JpawudUOuthvnE2Tj SbDfB14+6bwEKaMs5NtyNyXyfDCxFbLyVedNtdxMV75b6YXQ47U1ZF9e/EVR5+rqseMR gZxg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=baqp659BWnFOGHMa0bHA6yajKC+KKI4XJ+vgUJ81AAc=; b=mCwCnGsY3FVG9U424LNoMjTK9U8Sevy3e3JA5GZi0188eTXtuKSswbE4RkvoCXlFhH bNp1QSisZz5Ya9qTdAU6cqBomNTGFBt1a4YPZ6GQ1cpTc6SFbR7EPAOfAsdmYSWb9dXE 5Xj3pA8MnipcI7tXd8vVNhYk1NofAwqj/jj3/WHyMYMbuNdnzDqsedRJfmY9/mjQy2tN hFo4s2CzPamQVw4sxImspqyGDSjJweHqssKQGXMwC4Z1i1f/qcb3RbOWZA1B8M2ivnZ7 3KlED7rpp1FtBX8018kv7H+PNL15nSSDvf+ft2dI/cZjPkWE/zvd7jjc2Dm4Ek4Sp430 k+rA== X-Gm-Message-State: AOAM532YrdYzPU4/l0bWG4C9exsEkHNeQjIs/652KkLk3mJWfz4CpkDD et1wdWuPTZFPIZCkNDitM2OeYqYDevAc8u1t5OMbZJ44b0+L0Q== X-Google-Smtp-Source: ABdhPJwlzYH2e9caJdye2fcLHIFm8NtLhTueFqfLev9acBQTxBRD+sN2PlrYWaX+qEumb4zHcZNBKhuF1gtrH3IoaSY= X-Received: by 2002:a05:6e02:1066:: with SMTP id q6mr6803354ilj.29.1597502260521; Sat, 15 Aug 2020 07:37:40 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> <20200815100104.4c2feae9@scorpio.seibercom.net> In-Reply-To: <20200815100104.4c2feae9@scorpio.seibercom.net> From: Aryeh Friedman Date: Sat, 15 Aug 2020 10:37:29 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: User Questions ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597502262; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:dkim-signature; bh=baqp659BWnFOGHMa0bHA6yajKC+KKI4XJ+vgUJ81AAc=; b=Ly/WiuL4BARk729cyatR8myiZTh1nyK/3bUKMdqFsKrfrot9EiQijT77SY7eP91Ahl1PNG VjTvEWypOEszyrNOzbJLNtHhmSqaTMO/WWTukNHuMgPk26l4/Dj//0blnHrGcywKB5PD9a MnXVkrsCIrHWU/uEBOY36NEBZMVABiYupmZKKYYRC5NuXNgpxWXZsmH3R9zvilTD6G5Ust /kQkfwq6a+XaR7OnnE59CDgj6i9uvVpZgkY6l8Jtgtg4/D1zn6EB5ex5NqmIe3358Ha7WE Bxmfa8til9FwA9maiXtb4CsVNhlK/9U1on1TXRwiw4F3ZybNlLeKn1t5XiXfIw== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597502262; a=rsa-sha256; cv=none; b=ACegZGdQNdrS0nDUUGlHAT6Ln0MXYhVOoj3e8RosvLMSB9JKQ4F4rTf3EfVu6O2ZLeabe1 n495frFBJ+bT5DaZyWhQb492PC1PS0upPNkq7jthBEdZ7JNDSN9HdZNUHTlhhVdiwdUzXD alYR7pixbXV7A8hwf3JEHLLKh5SZ61Tm/PKIYXzp3WZOsostLDzvFwJvgFtmIBzoMlmXKH B+wyAQhdq2hIOZ7wXt/aZxG+MhVzh1G5pW79XWWSRTEZKknR1nQtQnLMSZGEd92pMMXXvo Tls9UUD/Y/wMBX5l74LKeOskZa0nulO2NknjcXhI0zAqx0aW52hgUqyDpMe/Eg== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=vSyOOyQR; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12a as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Rspamd-Queue-Id: 4BTNFK6F86z4BMy X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=vSyOOyQR; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::12a as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.39 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.04)[-1.041]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; ARC_SIGNED(0.00)[i=1]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.023]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::12a:from]; NEURAL_HAM_SHORT(-0.33)[-0.329]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 14:37:43 -0000 On Sat, Aug 15, 2020 at 10:01 AM Jerry wrote: > On Sat, 15 Aug 2020 08:59:52 -0400, Aryeh Friedman stated: > >Says someone who refuses to help fix a bug because some hardware vendor > >refuses to give them free equipment, even though the bug affects > >equipment you already have. > > Your analysis is incorrect. I did in fact, rectify the problem. Coming > to the realization that it would cost me both time and money, I choose > a different path. Realizing that I could easily minimise the situation > with a minimum of effort, I simply changed to an OS that did not suffer > from the affliction and offered me more leeway in completing my job > requirements. > So if you switched OS's, go troll some other list instead of one made up of people who actually care enough about the tools they use to fix the ones that are almost perfect instead of saying my hammer's handle has a little dent in it thus I am going to burn it (making a lot of noise about how evil the hammer is) and use a screwdriver handle to bang a nail in. > There is an old saying, "Piss poor planning on your part, does not > constitute an emergency on my part." The simple fact that you failed to > anticipate potential problems, either now or at some future date, is solely > your fault. Maybe it is because I am planning that I am bringing the issues up before they become actual issues (or I guess you can't be bothered to read the whole thread to see that). Very few problems cannot be cured with a minimum of effort. > Unfortunately, all to many insist and cursing that darn night rather > than lighting a small candle. > You just don't read, do you? If you did you would see that is exactly what I was doing -- attempting to figure out where effort was worth it (and which ones were unfixable but due to external stuff I am still stuck with and have no option but to deal with them anyways). Not taking the lazy way out and saying my hammer sucks and burning it. Burning hammers causes more problems than it solves usually (like the fire spreading to your entire workshop). Besides nails tend to break screwdriver handles when used as hammers. -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Sat Aug 15 14:44:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id BEAB93BC217 for ; Sat, 15 Aug 2020 14:44:16 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: from mail-qk1-x736.google.com (mail-qk1-x736.google.com [IPv6:2607:f8b0:4864:20::736]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTNNv3hGsz4Cgn for ; Sat, 15 Aug 2020 14:44:15 +0000 (UTC) (envelope-from luzar722@gmail.com) Received: by mail-qk1-x736.google.com with SMTP id g26so11054819qka.3 for ; Sat, 15 Aug 2020 07:44:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-transfer-encoding; bh=Y5/tgpYATBcidqlvz62akWTeopTUJLxrXoAo4UNmXnA=; b=NYNYEe6q11PbRqdCXFGmwK28vFOTaMRFvavjbxXbIBEUGtVJNrX6FvVy7c3wm/hNHV ZhdI60IH/Sfop9gxtyhCzQgF682udHSUX+tpQTgkktq7XiPCbxVcw+jtNWVR1OWqMAKb gpWjqT1IJHbeEhbrdet9jIPvY7T3A+GlMlR7wNLJ8I3hCZI4fhMqNEVetZ+Vrl9j+mnb 6lPMJdWJLtQJqOR63YvNKP+4denwOW4CCQ0pCubzab8rg8nHX6jtQ48xs2uUYxoTPf9P sIwHkCz2PGWs04jLisWSGSjSJairY0gWEKbf4H8titO4ubHqp+Z4tPhtWZTpDoiASOJj oaPA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-transfer-encoding; bh=Y5/tgpYATBcidqlvz62akWTeopTUJLxrXoAo4UNmXnA=; b=HbyNu8AA/B/DLZIr6udDsUrIoqE+oRrD3clV3YJS2kw/soi8MBeXTTPlWU09AAZMFM E4hAmPeJvau8ZNHkh2r7kL2qnHjQgmW5c88uWicCzS9Cj04XhyjAyLa5kYxczmWUwZCy vz3cRsRhZEcfl7DUfOkGZd9jchrMRwjB0h1jhHKxKeO4Y7jcfpTmlgUpiDAPXtqLqXaM lzbs4js2Gzi17JYXzDgrm7jiyblSLZUHU+3kw/Gg5nqQVcyhuBfdAQ+ujT5xheDPEGyh qg1DwYuxVlO+o58ggTbjuJ8KaqnzHbBoLmOVEiTWgWgSQznH3v2z4dIka9rW15gHz8SF 9Sag== X-Gm-Message-State: AOAM532xGc25A/wBbbtxYTeVYySiQu93/zEgPUKfCg+qJY//1Teoqmqu t1gQvnCTVwnWRqSy8HnhPKSwDX7nlfA= X-Google-Smtp-Source: ABdhPJw+qdqmEnvKr8WveVA4PcCTwyRDgJBYnnGwUd37RgtFc6FrdJ4or+HkEII5fsBuBzTla1ap7w== X-Received: by 2002:a05:620a:152d:: with SMTP id n13mr5858291qkk.43.1597502654447; Sat, 15 Aug 2020 07:44:14 -0700 (PDT) Received: from [10.0.10.8] (cpe-65-25-51-0.neo.res.rr.com. [65.25.51.0]) by smtp.googlemail.com with ESMTPSA id v45sm13976223qtc.42.2020.08.15.07.44.13 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Sat, 15 Aug 2020 07:44:13 -0700 (PDT) Message-ID: <5F37F4BD.5030301@gmail.com> Date: Sat, 15 Aug 2020 10:44:13 -0400 From: Ernie Luzar User-Agent: Thunderbird 2.0.0.24 (Windows/20100228) MIME-Version: 1.0 To: Arthur Chance CC: "freebsd-questions@freebsd.org" Subject: Re: can a domain name config point to a vlan tag at the host References: <5F37E329.3000903@gmail.com> <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> In-Reply-To: <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597502655; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=Y5/tgpYATBcidqlvz62akWTeopTUJLxrXoAo4UNmXnA=; b=tf1Q7CnG+8UzI7PPRm9vHIxiGa0elvg1ppYwUwF9CsX7mX6ac+w9siezC+EiKiN27LKj39 Tm+nhyAkudxl6iJ34I93reQfRdpAKZe20NDDZgJ/orWZGs4H3Xla8LbsnW5rE8RKyxsuOP Ctcla7XW8Gnb9PfiumsrcW9ZRcw47S5QPxjyAtrSfZIrOSWbj+0Bmoplh7v7fz/XylXveq PWZim8tbx6fsWP+12Cp3jWYSw/t2FCi3WnT1Fbj7W2OoQ5bFZF8Tz0Q4wa2Wswbmt9VQGZ /GNIsWOnHoQwU/6lRMApjOiEXD+49BhtQEWzz0Dzh4aYLpAg5cy4f7TMlotauA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597502655; a=rsa-sha256; cv=none; b=S+UHuOUuMD9Brb9k5bT1uS9BHtyNmzYcqGtVdFmSFx/691RK0X9MJ7ezoLpFvwmFsGCH9P W/2fWCw3D02Q/12auK3FgMg2lmT2OuydnyMHDbfh591GtqeEaLyRQzmFz8vpF/uT50VCTE Cpp7u/0L8SbESY0A6TRZDiDwGEM8knBpn03kJXd57hIB6uJlXCh13giDV+wobfflxyiil5 WQWp7Zk3Am7xdVQJ17GSRfT1G90Y0Qpk21872E1SujHoYDFyTPx5H3gBsnR5t4XMXVkVVh NONFspfmmeQRpJY+Voqy5jm+wsI6cTfz1czOysw8P0Tc7GRIKQfs86nw2U14VA== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=NYNYEe6q; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::736 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Rspamd-Queue-Id: 4BTNNv3hGsz4Cgn X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=NYNYEe6q; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of luzar722@gmail.com designates 2607:f8b0:4864:20::736 as permitted sender) smtp.mailfrom=luzar722@gmail.com X-Spamd-Result: default: False [-3.92 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; ARC_SIGNED(0.00)[i=1]; RCVD_COUNT_THREE(0.00)[3]; DKIM_TRACE(0.00)[gmail.com:+]; RCPT_COUNT_TWO(0.00)[2]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.88)[-0.876]; RECEIVED_SPAMHAUS_PBL(0.00)[65.25.51.0:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.04)[-1.044]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.003]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::736:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 14:44:16 -0000 Arthur Chance wrote: > On 15/08/2020 14:29, Ernie Luzar wrote: >> I set up vlan for the host interface cabled to the public internet. >> How do I drive internet traffic to the desired vlan name on the host >> using a registered domain name? >> >> My rc.conf has this >> >> ifconfig_re0="DHCP" >> gateway_enable="YES" >> >> vlans_re0="1 2 3" >> >> # vlan_1 is for the host >> # vlan_2 is for vnet jailA >> # vlan_3 is for vnet jailB >> >> Final goal is to drive traffic from the public internet using a fqdn to >> the vnet jailA. > > I strongly suggest you read up more about networking because it's > obvious you don't really understand it. All network traffic goes to *IP > addresses* not domains. DNS says what addresses to use for a specific > domain, but *all* connection attempts, whatever the protocol, are to a > specific numeric IP address. Yes, protocols like HTTP then accept a host > specification for further "routing" but that happens *after* the initial > connection is made. > > If you want to run N jails with N different domains, all with their own > traffic to arbitrary ports, you are going to need at least N different > IP addresses. > I agree with you that I am not a network guru, but I do have a general big picture understanding. Problem with the network manuals I have read is they do not give real world examples showing how to implement the concepts talked about. They contain NO cross over reference to vnet jails. Also all the public literature on vnet jails never talk about how to drive public traffic to a vnet jail or that vnet jails are limited to requiring a virgin public ipv4 address for the vnet jails sole use. After all the reading and trial and error attempts I come here to ask questions to get the answers only someone with vnet experience can answer. Hoping that is you. As I understand it vnet jails have to have their own host interface device with a public ip address that is not already in use by the host. This translates to a business type of ISP account to get 3 static ipv4 public addresses. This is a very expensive setup just to do some concept testing to be able to write a business proposal for in house IT management. Now last month a guy posted on the questions list that he was using vlan tags to separate his single dynamic public ip address into 4 vlan tags. One for the host and 3 for vnet jails. He states he can ping the public internet from inside of the vnet jails using this concept. But the part missing is how to drive public traffic to the vlan tagged vnet jail. So I ask the question to you again. Is there a way to configure a domain name setup to not only point to the hosts public ip address but also to its layer 2 vlan tag? The srv record looked like a good candidate but could not find any mention of vlan tags. Or could it be the "A" record ip address field with something like this x.x.x.x_2 Where in the host vlan_2 is a vnet jail. From owner-freebsd-questions@freebsd.org Sat Aug 15 14:59:39 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id B1E543BC822 for ; Sat, 15 Aug 2020 14:59:39 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: from mail-ed1-x536.google.com (mail-ed1-x536.google.com [IPv6:2a00:1450:4864:20::536]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTNkf1d4Yz4Dh5 for ; Sat, 15 Aug 2020 14:59:37 +0000 (UTC) (envelope-from hruodr@gmail.com) Received: by mail-ed1-x536.google.com with SMTP id w17so8940872edt.8 for ; Sat, 15 Aug 2020 07:59:37 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=date:from:to:cc:subject:in-reply-to:message-id:references :user-agent:mime-version; bh=91uSVueUEFmIagEeKrNBPTSiM5wBXlGZVbieFOKMAYs=; b=LnVn/TbTdBLlSxVcSVzHCj1lLAUGo1mNqZyBGyWiwvxJkfkbr+nSbwq7wNb/bbXL9u xK1gu5TsobHEkZfY9ISoNLHvxiz/ta6OvV913NWDEmjv3CNo1W3yDCWF1p4KS67hhvp4 KjFbSGsZ7W5Jm2drMR27ddhlZRxsc8gtE4iSwDXNI+POeTRozu3axORzr6ZjjxBD2Zy4 7+TRRM5aoBW55zjzPpVkMlDB/rQSLXGTj1HMbKdsSDV3Yuj4gwAiAz+vYd6hs9fakmAf 1fUXY1LxcoQTy/dsqdisY65qPex7xobCJtRZqdmbl+u9DdzXY98cW4tgatmPJWW+UW5x ECkQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:in-reply-to:message-id :references:user-agent:mime-version; bh=91uSVueUEFmIagEeKrNBPTSiM5wBXlGZVbieFOKMAYs=; b=Sm8u0ftxhuJlOtuBAZNJ+N0NyR64bOFSf++JSFyfzBO42qfbwiTPj2jmuiKxTSGLuj O5EulOBsJ7IBDBnfl8VGwOxMPXj+4BF995QqrPWyMt92YUhSDYj/ZYvNsXx+qNp4T8W6 OITV10I9dwfppB50K8tf06okIMPnh80u2O4D16lfLAvRuHA2yVJGMJYPKpLXd/MAMnfd P8lz2DeeTZIgZMPXhql/tJe8LSTS7WDf+ITIothYZ4y3tMqi01ng2EHuLIgDCyFnhd7a xAi3ta4xAJElP/iD44eXI+CglYIaEkB3C9S8aoIpM28ngGAhe30AZVEN11eSEqbXP3X0 Tegw== X-Gm-Message-State: AOAM531C332rfzd2hvg4Wvmp9YctNR3lU9E9MLiQcM/PH5O6Acd1f+zI emWf4tU2RYGMnG0h2J+Fs1BVhRLZ8CI= X-Google-Smtp-Source: ABdhPJyidqBAaw6/CKffrALvL/oZTPQJ9kdwRoOV1aUBpkM/hdZTg3kAkHCyS4DUPR7AdMF6onNEDQ== X-Received: by 2002:aa7:c251:: with SMTP id y17mr7344796edo.13.1597503576172; Sat, 15 Aug 2020 07:59:36 -0700 (PDT) Received: from [192.168.178.26] (dslb-092-078-051-020.092.078.pools.vodafone-ip.de. [92.78.51.20]) by smtp.gmail.com with ESMTPSA id t3sm9203411edq.26.2020.08.15.07.59.35 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sat, 15 Aug 2020 07:59:35 -0700 (PDT) Date: Sat, 15 Aug 2020 14:59:13 +0000 (UTC) From: Roderick To: Aryeh Friedman cc: Steve O'Hara-Smith , FreeBSD Mailing List Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end In-Reply-To: Message-ID: References: <20200813201014.a2e212f17226084d6a0bfb94@sohara.org> User-Agent: Alpine 2.23 (BSF 453 2020-06-18) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597503578; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:dkim-signature; bh=91uSVueUEFmIagEeKrNBPTSiM5wBXlGZVbieFOKMAYs=; b=M3gacxW5GDMd+9r/nPGhzhlyzvLOurjMa0V9adXJOlLZBboe03DG23dUuAJD+tUo8GZfIF tc2YR5CxJwbHmJmx0vI9DfBLvnacpZmjHSB8CYUMHl0Nr4J2C+lRTWc7TgfEv+FOSU3nD0 AjYDe8nqmxUjZpiThH6C/C2M8eAD6JIBX8BPVov+N2h0zh6KKECgoMAXIwCY1f7bD++++g 6jqHniFAOVnRiWCRIHWWuOzDYhFw4e9bx6asirgPmXT9A5SRyIctRjrtWLjQtT5j91QYuw NrD5DKrYjKkWNxk4/yVmCuEJ5Nef/m2CCZGvHGDTjlq6Kn/kvHaj2eOioXB2bA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597503578; a=rsa-sha256; cv=none; b=PFPW3mmBj07t9YtOI0eZzAEl2xuR0Bt78fWoQ9DufkWIj6Gv4gA10g1+X92oBVnLnkH4KN QAWOmAcwOoAh4BZ4flRCY5aq0BuY3La+x1Nk9ohaowxdRQ1MZb26HFkhABcVhnO1zb9/mC TU/1n9YyeojK92l7xfCNYTNfgb9XuHZ4aG0mDpOSYjyh15wydcWJTYap121VUDDzqMwKDO CMdQVMFrUBKfkVyU1KEEawIvhUf7FNKNYZH6NpxBN6qNxqCKKh5nqDcQltGW+HLbe+38lR oJHuJ8Kf32WjTvckjWqjlBgilXMd16C1ph7XfoRUATOjgd249ZNkel1GyBfGUQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=LnVn/TbT; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of hruodr@gmail.com designates 2a00:1450:4864:20::536 as permitted sender) smtp.mailfrom=hruodr@gmail.com X-Rspamd-Queue-Id: 4BTNkf1d4Yz4Dh5 X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=LnVn/TbT; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of hruodr@gmail.com designates 2a00:1450:4864:20::536 as permitted sender) smtp.mailfrom=hruodr@gmail.com X-Spamd-Result: default: False [-3.80 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1450:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; ARC_SIGNED(0.00)[i=1]; RCVD_COUNT_THREE(0.00)[3]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; NEURAL_HAM_SHORT(-0.73)[-0.726]; FREEMAIL_TO(0.00)[gmail.com]; RECEIVED_SPAMHAUS_PBL(0.00)[92.78.51.20:received]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2a00:1450::/32, country:US]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.06)[-1.059]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; RCPT_COUNT_THREE(0.00)[3]; NEURAL_HAM_LONG(-1.02)[-1.020]; TAGGED_RCPT(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2a00:1450:4864:20::536:from]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 14:59:39 -0000 On Thu, 13 Aug 2020, Aryeh Friedman wrote: > On Thu, Aug 13, 2020 at 3:10 PM Steve O'Hara-Smith wrote: >> >> Do you have it in writing that they agreed to provide the access >> you require. If so you have a club your lawyer can beat their lawyer over >> the head with otherwise you're probably screwed. > > Already tried and they said such services were "third party" and > specifically forbidden by the contract as being "unsupportable". The > client's attorney said the client would lose in court since any third party > service is disallowed by the contract. What does this answer have to do with the simple question: "Do you have it in writing that they agreed to provide the access you require" If the answer would have been "yes", then the their party party should play no role. The thema here is about a contract for three years for $100k signed by people that cannot read. It is not a thema for this mailing list. And we have again a necer ending smalltalk with all kind of anectdotes. Rod. From owner-freebsd-questions@freebsd.org Sat Aug 15 15:07:54 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 70D383BCABB for ; Sat, 15 Aug 2020 15:07:54 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: from mail-qv1-xf43.google.com (mail-qv1-xf43.google.com [IPv6:2607:f8b0:4864:20::f43]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTNw94Md5z4Fbf for ; Sat, 15 Aug 2020 15:07:53 +0000 (UTC) (envelope-from jerry@seibercom.net) Received: by mail-qv1-xf43.google.com with SMTP id s15so5696586qvv.7 for ; Sat, 15 Aug 2020 08:07:53 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=seibercom.net; s=google; h=date:from:to:subject:message-id:in-reply-to:references:reply-to :organization:mime-version; bh=THoSf8uixriuy5BwHzrIusdLybi+xof5g1TTjHYc5cs=; b=MmWZaaCaNJT7x6aBdDOIVVPyP/IVtRJ/4KLdNSEGZ5/35PHfAm4g8RpOd8HanbOBoo 9q+hn3ywSicFeCzM34zxv8ImciqwLRrZe6012m12/tFGOrf/XPmZInYXD3s0kF0NFl95 1jNWmixfwECmbNbsy9ujdk/JP67IHSk9ccszk= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:subject:message-id:in-reply-to :references:reply-to:organization:mime-version; bh=THoSf8uixriuy5BwHzrIusdLybi+xof5g1TTjHYc5cs=; b=oTklB7G92HbOHaQHWK2lJU6D1OgMUW/SbXjsY7fGuyxc+Lph5NE91LXUu1HWnlrJ/v 4dDJ7bEJ6YU8o/aKbzQv+m9cE5pW7NRnTIyxtoGuDndo6S7SPogFHljZ830rur0sYlIs OJKOpPGDA4//ZVM9dcG3l8quZJC1qZi25Tiv4Lwk0rBbEcahmQ1cA8zTnvii4FPsMP5p z5hLOPntA22hK10RUkKgai50lo7XJeqSG4zcToVj92vxZy6iYKYb3lt1AvQi7HKzZTon fd3fOEtOiAsScEv4vRfRPgHjgASimGlYsyHe3qLnvz/h0P3QGgK3M7W/9gMx0JBBqtUh SwqA== X-Gm-Message-State: AOAM5318V2yJMLxgva5vFZaKDhI9gVeWbnBWkNfH908/xd+G/u9pjXqU CUC6KOBwLKrSrQokvxoCPWpSc8RHMwvrNg== X-Google-Smtp-Source: ABdhPJzwgaY4ys1iSURJjE2fhbDAb4WX+ULBGRGvl42K6sxiEIqdJr70oqwTDZv+ouP9kRQ0vZbH3g== X-Received: by 2002:a0c:f4cb:: with SMTP id o11mr7226045qvm.3.1597504071322; Sat, 15 Aug 2020 08:07:51 -0700 (PDT) Received: from scorpio.seibercom.net (cpe-174-109-231-236.nc.res.rr.com. [174.109.231.236]) by smtp.gmail.com with ESMTPSA id k48sm14528973qtk.44.2020.08.15.08.07.49 for (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 15 Aug 2020 08:07:49 -0700 (PDT) Received: from scorpio.seibercom.net (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by scorpio.seibercom.net (Postfix) with ESMTPS id 4BTNw44rdmz6Xp for ; Sat, 15 Aug 2020 11:07:48 -0400 (EDT) X-Virus-Status: Clean X-Virus-Scanned: clamav-milter 0.102.4 at scorpio.seibercom.net Date: Sat, 15 Aug 2020 11:07:42 -0400 From: Jerry To: "User Questions" Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Message-ID: <20200815110742.29dd76ce@scorpio.seibercom.net> In-Reply-To: References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> <20200815100104.4c2feae9@scorpio.seibercom.net> Reply-To: "User Questions" Organization: seibercom NET X-Mailer: Claws Mail 3.17.5 (GTK+ 2.24.32; amd64-portbld-freebsd11.4) MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/izHYSEFQENzE7QN+twAKIpL"; protocol="application/pgp-signature" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597504074; h=from:from:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:mime-version:mime-version: content-type:content-type:in-reply-to:in-reply-to: references:references:dkim-signature; bh=THoSf8uixriuy5BwHzrIusdLybi+xof5g1TTjHYc5cs=; b=CmZl0A0Y/uJ+Qu3Rc2u6R4pbD6UQONB1+ejz6BXO1kRVbWe8TGfparjqVbAHqdjzMlL446 ZA6aZfPOuDlKMRuphCZ6Vy3R6F87SuZSyypL5BF+i7e+X2qbfXoroxi6kQRncZKPRm6Ll6 XgMJP7wBTFCEtF9SVdZaTcpiRRSY3rsA//HzgWDSk3TMsuo9qBwH9F8Q87C2HC7hwC49HP AUdkqqtOP+rVCnTTBBHCjszgU9WMe76h/8qrzPL810GzsyrQ7PdqcpGnzZmt+zHphSVkcj sz335bs3BzWh+dr7EriJaXMIXrjCLFLyGQeKeK3Tp9TzHrInWPJxGlMkk0L61w== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597504074; a=rsa-sha256; cv=none; b=Bm/oy/iOdvx3SuFvNoJXWRqQPS8q2fhuN3igKJToRZ/mwhEHZsEHRVDtWzi3DQV2N8oyCP 31SBaDNpYK/cdOzr/WOcF56Yn2f+sW747TzdllLybN/G42U3YDinm4ufKK3wMjQ9ZeAXL2 lbtGP94qVRGK1yl7NBgHcvqnYfp3xKUcD3FstX3nPw4p3vqkXFcEAKTIa+vaJgogR+mK7C 4jDHbXZHIh3vKgs7EahqCbAYULfRlN16IjBxwhZCwSPE2LMurvYWfyV+znH1wOXKIrFr5w 1+qVSK1ia4D52IaNqrl9a3mNz2PcCB251brOScbzEH80qPMJ2v8ONyDCXKNFIQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=MmWZaaCa; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::f43 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Rspamd-Queue-Id: 4BTNw94Md5z4Fbf X-Spamd-Bar: ++ Authentication-Results: mx1.freebsd.org; dkim=pass header.d=seibercom.net header.s=google header.b=MmWZaaCa; dmarc=none; spf=pass (mx1.freebsd.org: domain of jerry@seibercom.net designates 2607:f8b0:4864:20::f43 as permitted sender) smtp.mailfrom=jerry@seibercom.net X-Spamd-Result: default: False [2.33 / 15.00]; HAS_REPLYTO(0.00)[freebsd-questions@freebsd.org]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; ARC_SIGNED(0.00)[i=1]; HAS_ORG_HEADER(0.00)[]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[seibercom.net:+]; NEURAL_HAM_SHORT(-0.30)[-0.301]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; REPLYTO_EQ_TO_ADDR(5.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; RECEIVED_SPAMHAUS_PBL(0.00)[174.109.231.236:received]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.82)[-0.823]; R_DKIM_ALLOW(-0.20)[seibercom.net:s=google]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.95)[-0.950]; MIME_GOOD(-0.20)[multipart/signed,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; DMARC_NA(0.00)[seibercom.net]; RCPT_COUNT_ONE(0.00)[1]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::f43:from]; GREYLIST(0.00)[pass,meta]; RCVD_TLS_ALL(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 15:07:54 -0000 --Sig_/izHYSEFQENzE7QN+twAKIpL Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Sat, 15 Aug 2020 10:37:29 -0400, Aryeh Friedman stated: >On Sat, Aug 15, 2020 at 10:01 AM Jerry wrote: > >> On Sat, 15 Aug 2020 08:59:52 -0400, Aryeh Friedman stated: =20 >> >Says someone who refuses to help fix a bug because some hardware >> >vendor refuses to give them free equipment, even though the bug >> >affects equipment you already have. =20 >> >> Your analysis is incorrect. I did in fact, rectify the problem. >> Coming to the realization that it would cost me both time and money, >> I choose a different path. Realizing that I could easily minimise >> the situation with a minimum of effort, I simply changed to an OS >> that did not suffer from the affliction and offered me more leeway >> in completing my job requirements. >> =20 > >So if you switched OS's, go troll some other list instead of one made >up of people who actually care enough about the tools they use to fix >the ones that are almost perfect instead of saying my hammer's handle >has a little dent in it thus I am going to burn it (making a lot of >noise about how evil the hammer is) and use a screwdriver handle to >bang a nail in. Your insistent whinny is directed at your hosting company, yet you continue to post on a forum that pertains primarily to an OS. Your supposed problem would be better directed at a forum dedicated to resolving you problems, imaginary or not. There are literally hundreds of sites that pertain to hosting available. You might want to try this one: https://forums.hostsearch.com/ >> There is an old saying, "Piss poor planning on your part, does not >> constitute an emergency on my part." The simple fact that you failed >> to anticipate potential problems, either now or at some future date, >> is solely your fault. =20 > > >Maybe it is because I am planning that I am bringing the issues up >before they become actual issues (or I guess you can't be bothered to >read the whole thread to see that). The issue(s), at least according to you, have already bite you in the ass. For the record, I have read all of the thread, including your 18 and counting posts to that thread, all saying or relating to the same supposed issue, your inability to get a hosting company to kiss your ass. Poor Aryeh. "Aryeh" good, everyone else bad. >Very few problems cannot be cured with a minimum of effort. >> Unfortunately, all to many insist and cursing that darn night rather >> than lighting a small candle. >> =20 >You just don't read, do you? If you did you would see that is exactly >what I was doing -- attempting to figure out where effort was worth it >(and which ones were unfixable but due to external stuff I am still >stuck with and have no option but to deal with them anyways). Not >taking the lazy way out and saying my hammer sucks and burning it. >Burning hammers causes more problems than it solves usually (like the >fire spreading to your entire workshop). Besides nails tend to break >screwdriver handles when used as hammers. You are really dense, Your options are quite clearly laid out.=20 1) Negotiate with the company. a) Since that has failed, move onto #2 2) Bring legal action a) So far you have failed to do that which indicates that either you have no legal basis for the action or you fear a counter suit that might implement you as culpable in some manner. 3) Failing to implement #2, move to a new hosting company that is either willing to implement your requirements of already embellishes them. As any real mechanic knows, if you don't have the tools you need on hand, whether from poor planning or whatever, you utilise the tools you do have on hand. A nail "may" break a screwdrivers handle, but if that nail saves a ship from shrinking, do you really think it is not worth it? Well, you might. I can just envision you sitting on the deck, crying like a wimp because you don't have a hammer to drive in the nail to seal the latch while the water flows in sinking your ship, all-the-while a screwdriver lays unused in your tool belt. --=20 Jerry --Sig_/izHYSEFQENzE7QN+twAKIpL Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEIQb/tTwl6I1ueEVtOHMGOIfexWQFAl83+j4ACgkQOHMGOIfe xWQcmwf+Jyl7ccYAJM7QIRq0x3wklTnHG3WgClDD+A5yDCphgMSmLmW1Srxci+20 oE+dHhoEuYLt9WrJZ+cw3jic/trcFy1fizazDIoENnrsYbYnIjmr38uveP6mW+Re LZYbOfySeefbyeUIFP3WMjCiMTtFDmVlSB97AD8J+kLVkdxyL/ncpbHjR7WW1YUe 50Qt87awTDZGwhDr5lGkJbQC3WtJheObtMLEuHnESq1mJzMp2T7x6lh3HkBbATYX /mjxbn6eU1wFo8cFAUZ+Z+dieswx769F2LrDuywbBMxZf0Cd9ZvmX8S4iSkMpXY/ d+7Kxa9jhEG8gA+O2pugV9qlbIeqSg== =TeeJ -----END PGP SIGNATURE----- --Sig_/izHYSEFQENzE7QN+twAKIpL-- From owner-freebsd-questions@freebsd.org Sat Aug 15 15:33:55 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C8FC23BD39F for ; Sat, 15 Aug 2020 15:33:55 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: from mail-io1-xd42.google.com (mail-io1-xd42.google.com [IPv6:2607:f8b0:4864:20::d42]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTPVB48SGz4G5K for ; Sat, 15 Aug 2020 15:33:54 +0000 (UTC) (envelope-from aryeh.friedman@gmail.com) Received: by mail-io1-xd42.google.com with SMTP id b17so13538914ion.7 for ; Sat, 15 Aug 2020 08:33:54 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=alvMIx3ytmulfxNlLOTjL0YajgvoRNxG1Tny7y6uio4=; b=GWCMTDWQoJVayAhjKc7wFble6+s5SesbwepLhYQJpkbL4en2zVPZuLUdmp6HSIFlFR ScZSiMOuOB8XqRD0Mt+0qLbuLgoD+z+ZJJsC983X+KMv5UMhdeAvDkTiqEKTJ8o9NDMq sfhoK1IWqYhx4kVLQu5BAoF3LgdbYddnP0wc1AUmol1SOIXGI1Y9zyWS7dwhpuq0Y7ts 9hGrWQS4z2w717mUa7l5qfpn8lpcnSa14ij0RIOTGvwLlCDbbLJh5lahez5roxCxvPj2 64kg/Fvht9b7oKbilaiD1NqYjiDPaYUpOmhie76OG5cGxbGQg4ZJNzwquhX2kIFGlZ2/ 7u9A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=alvMIx3ytmulfxNlLOTjL0YajgvoRNxG1Tny7y6uio4=; b=ZAUTp0+CnAxnEd9SmSzR0FMueRxxmDey5OP8LLGhbw3jdc0CZ89as7QDfxWaCaNF92 vaop6KInaL8NKH2UtF/JNPOo5wljWLOx/9ndMdsxUEi8l1EdbDW7enp6HrVa3ZLYIC0j 3h08L3OTLPrAdnKm8bw2Z8y1v2bQ4B8Fm6Okq09lP15knRhifnk6uGygNb/P46BbBuz3 GlcJCOzEeOZmHgO0fW+oKM0cAzAsqtk7bZXIRZTTmgP+OTflqPMmZAmC78oHlM2zDkqG xLmG8bD2lNyB2QQ+LuNgwRoLA29hsb6SawlF95kLiS6D5MA8bhQYUJMhgRhy52rEzOE3 AbMg== X-Gm-Message-State: AOAM532ZOafoYIEGh1NTjto9H0CcLL3GJxRhUbwU6e+cDaIbc8/ScR3m hQLrVOgG6DbXvn4p7wtH3KvLPkWkqUIL7xS+sMv8CL6MAJQ= X-Google-Smtp-Source: ABdhPJyK1fPys7Mu3+cRZJ3Gs1Wf9kkbqCdLJ0u0MHGtMBkNXGePcnoG04VfCownOhSGQZqtAWTPuVZGTtpLyxSjj8g= X-Received: by 2002:a05:6638:2653:: with SMTP id n19mr7301027jat.34.1597505632022; Sat, 15 Aug 2020 08:33:52 -0700 (PDT) MIME-Version: 1.0 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> <20200815100104.4c2feae9@scorpio.seibercom.net> <20200815110742.29dd76ce@scorpio.seibercom.net> In-Reply-To: <20200815110742.29dd76ce@scorpio.seibercom.net> From: Aryeh Friedman Date: Sat, 15 Aug 2020 11:33:40 -0400 Message-ID: Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: User Questions ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597505635; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:dkim-signature; bh=alvMIx3ytmulfxNlLOTjL0YajgvoRNxG1Tny7y6uio4=; b=v4EfCuo8sGQlphVHygefQWYbUJL/7nK2MVf5mL1DOp3YT/tJbrk3XErcQM0oMl+YTuyKXD nch6mwIcfQybxgcxi9mE1pGL8ON89bIRgKg5v/IAPH9ECWyS40IJFdwqssKR+dKKrmUn9T xOIryubgtjyeYohV9Mx2KqUFI8ckf2Nmil3a5c7sjbRyPLS+PQoSJLVrsKhewxn0Cv9cNN ccHqk93tOmHDD5jHvM635ur1B0pxLsaeuUgWkMMVe+xBt8SjK4vcHCzn6siPpRmxtZ7Cr2 zMKJKsFUYX2ntxvnKHIkC5yMNOLHKlJOhfGw2n8khMoJnUKRpt5cYP4Ty2Q/ng== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597505635; a=rsa-sha256; cv=none; b=gsWmBkTB56d/jjnj8kQ1u4la/qQPTAdQ6W4NzFlbf9GCIVoPk5/uBCyZJEl57RvVLv16Mm iq4BuGfZtJp4ak5HdvpjaIvKa+3hTq5QZiwVmR3Gj3xMn15gvDdpv/BF6ESaoFUPN9132x 33oWdHIaB7sRjJlQvMt/y1s44O1r/7eNYTsNkYRnmnftXAOIH94WrPgkDsrewREAQU8JPu fg3/YzIBWn/wT7jS2qj0ZDQaIgMGIwZwKRZO8t2CaWSU7S0jE4R/J+K6tK7fTtYYFjBH8E 5Vg24FnzbtLgxAd5VBlslCebgEfrkPtkM8xq8JFJB1cgKtJFmslh++z+T2PmwQ== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=GWCMTDWQ; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d42 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Rspamd-Queue-Id: 4BTPVB48SGz4G5K X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=GWCMTDWQ; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of aryehfriedman@gmail.com designates 2607:f8b0:4864:20::d42 as permitted sender) smtp.mailfrom=aryehfriedman@gmail.com X-Spamd-Result: default: False [-3.40 / 15.00]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; NEURAL_HAM_MEDIUM(-1.04)[-1.039]; FROM_HAS_DN(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; ARC_SIGNED(0.00)[i=1]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.02)[-1.022]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::d42:from]; NEURAL_HAM_SHORT(-0.34)[-0.339]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:~]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; TAGGED_FROM(0.00)[]; RCVD_TLS_ALL(0.00)[]; RCVD_COUNT_TWO(0.00)[2] Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 15:33:55 -0000 On Sat, Aug 15, 2020 at 11:08 AM Jerry wrote: > On Sat, 15 Aug 2020 10:37:29 -0400, Aryeh Friedman stated: > >So if you switched OS's, go troll some other list instead of one made > >up of people who actually care enough about the tools they use to fix > >the ones that are almost perfect instead of saying my hammer's handle > >has a little dent in it thus I am going to burn it (making a lot of > >noise about how evil the hammer is) and use a screwdriver handle to > >bang a nail in. > > Your insistent whinny is directed at your hosting company, yet you > continue to post on a forum that pertains primarily to an OS. Your > supposed problem would be better directed at a forum dedicated to > resolving you problems, imaginary or not. > I did mark it as off-topic and you came in and did nothing but made a personal attack on me (and after the thread had otherwise died a natural death). If you consider it whining (which is defined as anything you don't want to hear) then you have one very small option in the matter, ignore the thread! (which was already dead and nearly buried anyways) Instead you added *ABSOLUTELY* nothing to the discussion except for personal attacks on me. > There are literally hundreds of sites that pertain to hosting > available. You might want to try this one: > https://forums.hostsearch.com/ Again if you had been bothered to read you would seen the primary questions (which were answered early in the thread to my level of satisfaction) had to deal with firewalls, ssh, vpn's and database backups (not a single one *DIRECTLY* related to hosting per se). > > > >Maybe it is because I am planning that I am bringing the issues up > >before they become actual issues (or I guess you can't be bothered to > >read the whole thread to see that). > > The issue(s), at least according to you, have already bite you in the > ass. For the record, I have read all of the thread, including your 18 > and counting posts to that thread, all saying or relating to the same > supposed issue, your inability to get a hosting company to kiss your > ass. Poor Aryeh. "Aryeh" good, everyone else bad. > You are reading into things that are not there. I agreed with everyone who said that *IF* the hosting company *STARTED* to enforce its new policy on us we were SOL. I never disagreed or complained about such answers. A good part of the thread was taken up by a side tracked discussion on general security theory and not my situation per se. Perhaps that is where you are misreading my comments since I was disagreeing with what some people considered to be "best practices" (in theory) as being good practices at all. [rant deleted] -- Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org From owner-freebsd-questions@freebsd.org Sat Aug 15 15:45:55 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3BBAA3BD56D for ; Sat, 15 Aug 2020 15:45:55 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 4BTPm20TXsz4GwT for ; Sat, 15 Aug 2020 15:45:53 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from [192.168.43.231] (unknown [172.58.139.172]) (Authenticated sender: galtsev) by kicp.uchicago.edu (Postfix) with ESMTPSA id 8CE3F4E687 for ; Sat, 15 Aug 2020 10:45:52 -0500 (CDT) From: Valeri Galtsev Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\)) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end Date: Sat, 15 Aug 2020 10:45:40 -0500 References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> <20200815100104.4c2feae9@scorpio.seibercom.net> <20200815110742.29dd76ce@scorpio.seibercom.net> To: User Questions In-Reply-To: <20200815110742.29dd76ce@scorpio.seibercom.net> Message-Id: <0CC7D096-2F2D-4B54-8C0C-2A2AE1E7FD98@kicp.uchicago.edu> X-Mailer: Apple Mail (2.3608.120.23.2.1) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597506354; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=F6Iq4+ZlzS2kwB6efpOjeXZeKmiYOXJdNvb7aD8Uuek=; b=bltKGGdIvW0YubqspYyPN/FFQYVLx3lXw0bsZ9v1DinYQBc1hlN3qJVb+1jTpqhLIv5g1y MVM6lJq/L4cBsFGqSHy5a/yuAGc/2p+VHEheijeTApqr3t0jRGkSlKPYK5ga4dpobqyFhl Y03hDOdaQWQB8LmUdihf/jvUxJ5crBoxCWIFu/s4qQJcevOayumFswOCoOLLaOGzUTzMfK IWiKHcn5AuCblR7f0Jsifm9bvd28UJAj19dlhF39IuwQ1rV96eHSxvMkuffCaaazR2qyRo Ar3/1GEBQktvKsaPlVon3WYJ9aIhS1LdNVuMWFyOA9d8S9cMo/l1weLpb/sLUQ== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597506354; a=rsa-sha256; cv=none; b=jPWyh7zTH5wO3SmJHXy2GohKfJlaI/PZKVOIA114Ffu4hK8Im6bTV0aRoL5lKZvuLZEDvs CAhSn0zoRPeL4ywXBmKh1tNs8hc71CWVzhPwR7Mju4G5eoiAFrYYoJiLibhv6K9gNj4vJJ 0DIRxv7aPHn6e0KKDmIcpzQj1JsFU+5tgf7bV1RTqDwNMpuFE/DKcsxtvSNm+MVsaB+O+l 4uPqI71owjzLb7Iwt+l9sMJPSOOkY12v9V1HZMuPbw1Z/B5iPQCDa4SGH/bytOlJoBG4a4 yP85SlhfuL6m89DpDodg2WQSmbcutmG+Dt6+NMSbWb9yyEjzXPU6wT9L2S9s8w== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; spf=none (mx1.freebsd.org: domain of galtsev@kicp.uchicago.edu has no SPF policy when checking 128.135.20.70) smtp.mailfrom=galtsev@kicp.uchicago.edu X-Rspamd-Queue-Id: 4BTPm20TXsz4GwT X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=fail reason="No valid SPF, No valid DKIM" header.from=uchicago.edu (policy=none); spf=none (mx1.freebsd.org: domain of galtsev@kicp.uchicago.edu has no SPF policy when checking 128.135.20.70) smtp.mailfrom=galtsev@kicp.uchicago.edu X-Spamd-Result: default: False [-0.02 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; RECEIVED_SPAMHAUS_PBL(0.00)[172.58.139.172:received]; FROM_HAS_DN(0.00)[]; MV_CASE(0.50)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; ARC_SIGNED(0.00)[i=1]; NEURAL_SPAM_MEDIUM(0.17)[0.167]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.23)[-0.225]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.56)[-0.559]; R_SPF_NA(0.00)[no SPF record]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:160, ipnet:128.135.0.0/16, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[]; DMARC_POLICY_SOFTFAIL(0.10)[uchicago.edu : No valid SPF, No valid DKIM,none] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 15:45:55 -0000 > On Aug 15, 2020, at 10:07 AM, Jerry wrote: >=20 > On Sat, 15 Aug 2020 10:37:29 -0400, Aryeh Friedman stated: >> On Sat, Aug 15, 2020 at 10:01 AM Jerry wrote: >>=20 >>> On Sat, 15 Aug 2020 08:59:52 -0400, Aryeh Friedman stated: =20 >>>> Says someone who refuses to help fix a bug because some hardware >>>> vendor refuses to give them free equipment, even though the bug >>>> affects equipment you already have. =20 >>>=20 >>> Your analysis is incorrect. I did in fact, rectify the problem. >>> Coming to the realization that it would cost me both time and money, >>> I choose a different path. Realizing that I could easily minimise >>> the situation with a minimum of effort, I simply changed to an OS >>> that did not suffer from the affliction and offered me more leeway >>> in completing my job requirements. >>>=20 >>=20 >> So if you switched OS's, go troll some other list instead of one made >> up of people who actually care enough about the tools they use to fix >> the ones that are almost perfect instead of saying my hammer's handle >> has a little dent in it thus I am going to burn it (making a lot of >> noise about how evil the hammer is) and use a screwdriver handle to >> bang a nail in. >=20 > Your insistent whinny is directed at your hosting company, yet you > continue to post on a forum that pertains primarily to an OS. Your > supposed problem would be better directed at a forum dedicated to > resolving you problems, imaginary or not. >=20 > There are literally hundreds of sites that pertain to hosting > available. You might want to try this one: > https://forums.hostsearch.com/ >=20 >>> There is an old saying, "Piss poor planning on your part, does not >>> constitute an emergency on my part." The simple fact that you failed >>> to anticipate potential problems, either now or at some future date, >>> is solely your fault. =20 >>=20 >>=20 >> Maybe it is because I am planning that I am bringing the issues up >> before they become actual issues (or I guess you can't be bothered to >> read the whole thread to see that). >=20 > The issue(s), at least according to you, have already bite you in the > ass. For the record, I have read all of the thread, including your 18 > and counting posts to that thread, all saying or relating to the same > supposed issue, your inability to get a hosting company to kiss your > ass. Poor Aryeh. "Aryeh" good, everyone else bad. >=20 >> Very few problems cannot be cured with a minimum of effort. >>> Unfortunately, all to many insist and cursing that darn night rather >>> than lighting a small candle. >>>=20 >> You just don't read, do you? If you did you would see that is = exactly >> what I was doing -- attempting to figure out where effort was worth = it >> (and which ones were unfixable but due to external stuff I am still >> stuck with and have no option but to deal with them anyways). Not >> taking the lazy way out and saying my hammer sucks and burning it. >> Burning hammers causes more problems than it solves usually (like the >> fire spreading to your entire workshop). Besides nails tend to break >> screwdriver handles when used as hammers. >=20 > You are really dense, Your options are quite clearly laid out.=20 >=20 > 1) Negotiate with the company. > a) Since that has failed, move onto #2 > 2) Bring legal action > a) So far you have failed to do that which indicates that either you > have no legal basis for the action or you fear a counter suit that > might implement you as culpable in some manner. > 3) Failing to implement #2, move to a new hosting company that is > either willing to implement your requirements of already embellishes > them. >=20 > As any real mechanic knows, if you don't have the tools you need on > hand, whether from poor planning or whatever, you utilise the tools = you > do have on hand. A nail "may" break a screwdrivers handle, but if that > nail saves a ship from shrinking, do you really think it is not worth > it? Well, you might. I can just envision you sitting on the deck, > crying like a wimp because you don't have a hammer to drive in the = nail > to seal the latch while the water flows in sinking your ship, > all-the-while a screwdriver lays unused in your tool belt. >=20 I agree with you, Jerry, and Rod. Basically, just out of human decency = when one asks for help one is supposed to accept (and use or dismiss) = suggestions, not bite back at everyone who payed an effort attempting to = help. But hey, we all know several names on the list who are different, = don=E2=80=99t we? Valeri > --=20 > Jerry >=20 From owner-freebsd-questions@freebsd.org Sat Aug 15 15:49:16 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 7CCEE3BD918 for ; Sat, 15 Aug 2020 15:49:16 +0000 (UTC) (envelope-from moridin@mm.st) Received: from wout5-smtp.messagingengine.com (wout5-smtp.messagingengine.com [64.147.123.21]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTPqt58YBz4H2R for ; Sat, 15 Aug 2020 15:49:14 +0000 (UTC) (envelope-from moridin@mm.st) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id AB994A0D for ; Sat, 15 Aug 2020 11:49:12 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute3.internal (MEProxy); Sat, 15 Aug 2020 11:49:12 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mm.st; h=subject :to:references:from:message-id:date:mime-version:in-reply-to :content-type:content-transfer-encoding; s=fm1; bh=zzqfbGdLfBUyF cee8nBFtbzQsFUXv+5BAUUiRH8dWdE=; b=DzsXyzURBaaZZ77RTCeQxp0Bs9Jau 8bCx92eV1Zft0somoSs+DFeGICTsOv+js/4dUP5HU9wJzkOvEPpwGZvZMbPSBAGd PPAsjvWCk6Tnah8p0NC87rYyjxIwV8cXxLivTdoh2VSXJguth2vPx7qVAn9HstiC qvQ+CxBYd5YZogsmitmcOsQ6xEFjigc/U/exsXxzSaPXeL1k8e3ypy1eSE5OZe4D H2y2N015dKAVgTlz/dVLU8xIf6L8xduUBB0w3zili3gD6lA85RPBpvKYpQQGEXQp GwIiknNBCxaIrtQFWo/z2wDvuZOupOesy5b0hKUFswWb8AClZ161/x+tQ== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=zzqfbGdLfBUyFcee8nBFtbzQsFUXv+5BAUUiRH8dW dE=; b=t735IeTb49bmuAWp84dXNCuOy48nt4HXTXaC9z7CN4/mz00UVhuHjWXdz sVkZWSyBm0bFOHyINhtnVQSLIMD9hKVAvZ3WfhL+p/uSK/123vSrP+OoPoae3EGU YMCGFzmMPs9/7Dt+kXfX9sShJRmW0D8bUGW6VuRj6L6CPts+d9CvK6cWxuX9+v0f nzV8tAK8nrSi5QpW9EfCdItBYWGAyCLXLZnKEwELq+4ynmu4gxjXtc7tLuELw9NM pLsVoVxCasVWkdy+lGYaHm/5obf+p95j149P4xzMxJyBWT1/O9NKmgdSO4jI5YdZ fqIDMXQRRepxSXRHBsXOc6ld1GOnQ== X-ME-Sender: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduiedrleelgdelfecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmdenuc fjughrpefuvfhfhffkffgfgggjtgfgsehtjeertddtfeejnecuhfhrohhmpehmohhrihgu ihhnsehmmhdrshhtnecuggftrfgrthhtvghrnhepfeeffeekiefgteevgfeuudejleffge eigfdttdffveduffefjeehfeejkeeitddunecukfhppedukeehrddvgedtrddvgeeirdeh vdenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmoh hrihguihhnsehmmhdrshht X-ME-Proxy: Received: from [192.168.1.6] (unknown [185.240.246.52]) by mail.messagingengine.com (Postfix) with ESMTPA id C51BD30600A6 for ; Sat, 15 Aug 2020 11:49:11 -0400 (EDT) Subject: Re: OT: Dealing with a hosting company with it's head up it's rear end To: User Questions References: <40xvq0.qf0q3x.1hge1ap-qmf@smtp.boon.family> <20200814004312.bb0dd9f1.freebsd@edvax.de> <20200814065701.2b390145ac6d189161bc31b4@sohara.org> <173ed205550.27bc.0b331fcf0b21179f1640bd439e3f4a1e@tundraware.com> <4d320acd-a995-7a35-5c0e-c2c22e7e6f96@radel.com> <20200814213706.18eb16b9.freebsd@edvax.de> <20200815081600.55107873@scorpio.seibercom.net> <20200815100104.4c2feae9@scorpio.seibercom.net> <20200815110742.29dd76ce@scorpio.seibercom.net> From: moridin@mm.st Message-ID: Date: Sat, 15 Aug 2020 18:49:10 +0300 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.1.1 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597506555; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=zzqfbGdLfBUyFcee8nBFtbzQsFUXv+5BAUUiRH8dWdE=; b=Ztijsni8b36p46GL6NHecJ1Oh6Ci744llZejEBUSyH0S76N9YkpuO0EIPi2txYfSwB6GXb 2OKqptd4RCAA8MAqyifTU2HsJksjvHJA98b8nwgx8ATobZ1DRe6DX5WA4dekg6pL5YClzP 84qOzUlBb5k7LkJQ85X1S3tqUCLYviBb2ww6ax+Su5+DLEA7Whvvt+avVgauZ1cf3r4Sjg K9LPcjO0pF5a5373/6exMq7XdQd1rTTMr+VbC+/Onm41C2YaQyKP87up6TdcljtXdEjylC 0/fd1Q/2SnGHjisBU52DhbJ4xHAQ+oYedtnOnmJyo1ICQhCrLCoK4fgyjtmrcA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597506555; a=rsa-sha256; cv=none; b=dSCYSWLsecWTVUH3EFssBHFaBGmudAEqUz7eMUdQxhWGH3qrbxqVXCjTg743EP+9urXk0M UTTSeYuLCEYcKFYzFrzHzgaoHt1s2+Bdw0jgvEhS6332HmZM8zXNcLuWPApdyYSgU5J0gg ZpRyJhXCU9qjKVTCttfB7qYqg2NTp2FR16O9kEGn5pZs0fJ/s0y23Hd7NqXAcH25diAyBW naZbhUCP4RWAnDRNdf/cKPUZZ5d2dV8oGSG5eVQojt1H0XTWf6FBP7UM5nSWaMkjOVVCx7 +bi2xPBJU3rUSW5x3ioQoQROdGZIwLsML/+HgBe9+lgYdmJbjpzeZ87d1uvgQw== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=mm.st header.s=fm1 header.b=DzsXyzUR; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=t735IeTb; spf=pass (mx1.freebsd.org: domain of moridin@mm.st designates 64.147.123.21 as permitted sender) smtp.mailfrom=moridin@mm.st X-Rspamd-Queue-Id: 4BTPqt58YBz4H2R X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=mm.st header.s=fm1 header.b=DzsXyzUR; dkim=pass header.d=messagingengine.com header.s=fm3 header.b=t735IeTb; dmarc=pass (policy=none) header.from=mm.st; spf=pass (mx1.freebsd.org: domain of moridin@mm.st designates 64.147.123.21 as permitted sender) smtp.mailfrom=moridin@mm.st X-Spamd-Result: default: False [-3.63 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; RWL_MAILSPIKE_GOOD(0.00)[64.147.123.21:from]; FREEMAIL_FROM(0.00)[mm.st]; R_SPF_ALLOW(-0.20)[+ip4:64.147.123.21]; ARC_SIGNED(0.00)[i=1]; RCVD_COUNT_THREE(0.00)[4]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[mm.st:+,messagingengine.com:+]; DMARC_POLICY_ALLOW(-0.50)[mm.st,none]; NEURAL_HAM_SHORT(-0.45)[-0.449]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[mm.st]; ASN(0.00)[asn:11403, ipnet:64.147.123.0/24, country:US]; RCVD_TLS_LAST(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[64.147.123.21:from]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.07)[-1.069]; R_DKIM_ALLOW(-0.20)[mm.st:s=fm1,messagingengine.com:s=fm3]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-1.01)[-1.007]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; FROM_NO_DN(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 15:49:16 -0000 You were told several times that this list is not your personal playground, yet you insist on spamming thousands of subscribers with completely useless rants, no matter if you marked it as offtopic or not. Please stop. From owner-freebsd-questions@freebsd.org Sat Aug 15 17:19:14 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 0D65A3785E5 for ; Sat, 15 Aug 2020 17:19:14 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from bede.qeng-ho.org (bede.qeng-ho.org [217.155.128.241]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTRqh4tpbz4VwV for ; Sat, 15 Aug 2020 17:19:12 +0000 (UTC) (envelope-from freebsd@qeng-ho.org) Received: from arthur.home.qeng-ho.org (arthur.home.qeng-ho.org [172.23.1.2]) by bede.qeng-ho.org (Postfix) with ESMTP id C7DD010374; Sat, 15 Aug 2020 18:19:10 +0100 (BST) Subject: Re: can a domain name config point to a vlan tag at the host To: Ernie Luzar Cc: "freebsd-questions@freebsd.org" References: <5F37E329.3000903@gmail.com> <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> <5F37F4BD.5030301@gmail.com> From: Arthur Chance Message-ID: <66b05a60-69f0-5634-1f1a-3f1f7d5a53d9@qeng-ho.org> Date: Sat, 15 Aug 2020 18:19:10 +0100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: <5F37F4BD.5030301@gmail.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 8bit ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597511953; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=5Eq9cLyxSoNfplk/wOIOwNzoZzVIQNPY1L+dtK97yvg=; b=CknxiEKkkn4vz7YlnYV8o8RMf8dmAsEptxJpAxU7wQLrjLXl2iS13MyU1YBhxpnlN7ztUR 5eLvqwrvt7v3A2FqWi9igkwpgJbXASg+PYf7UR2UoUeT7JnUiivvJE5OfLznlEq8lf0Hxh WeUZGurA4uSkRo9sio8eCD89spWvGSgQ8iL3KV+KkXNZ76Vb2bI5f3yJrc2c9UPgdZjjfD CEpj2kChC1HQRxr0/cC76deKEsjePt3WeAMok0bJ8GxJp2ycaA3ptpXlQdKx+6YK8tqu/8 gMXEMYxJdJ+WeMoluvEVPhF4/9gqN/7c+hZ81LU0aPuFvZxQCom9h+Sq6Q+6nA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597511953; a=rsa-sha256; cv=none; b=OCMcKYL1AS/DBH6xzsFJAI4fiAe13TF4n0LcEbXu5mjj29WbcMMQZt5UOVOwM4cAFoky8G F4HD158kvCCfXttur8e7dL2kPqieEp9v51FgUAp+Sb5ejUqxmtGq0j9xzO2xWCvY0MOweI CyYJs52N3Fc5raUdUfv14N7T9s+rqEtIZ40lax+bT4Jny4BQu0zUwD2DX/JyWwq2wc6lka lkYXNjtw1U37Cj31kMOnucD8tzq0P6dq+JkZEV3VKUwI04l6++jfK1kCJ/i+AZZHkFVdgq F/g9t7JZyi1cbBy/vHxMHWzmuxp8R7KWgdcYfTwSC8oDStqgZaI8EF9C1YjIow== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Rspamd-Queue-Id: 4BTRqh4tpbz4VwV X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@qeng-ho.org designates 217.155.128.241 as permitted sender) smtp.mailfrom=freebsd@qeng-ho.org X-Spamd-Result: default: False [-2.95 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.051]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:217.155.128.240/29]; NEURAL_HAM_LONG(-0.97)[-0.972]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; ARC_SIGNED(0.00)[i=1]; DMARC_NA(0.00)[qeng-ho.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-0.63)[-0.631]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:13037, ipnet:217.155.0.0/16, country:GB]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 17:19:14 -0000 On 15/08/2020 15:44, Ernie Luzar wrote: > Arthur Chance wrote: >> On 15/08/2020 14:29, Ernie Luzar wrote: >>> I set up vlan for the host interface cabled to the public internet. >>> How do I drive internet traffic to the desired vlan name on the host >>> using a registered domain name? >>> >>> My rc.conf has this >>> >>> ifconfig_re0="DHCP" >>> gateway_enable="YES" >>> >>> vlans_re0="1 2 3" >>> >>> # vlan_1  is for the host >>> # vlan_2  is for vnet jailA >>> # vlan_3  is for vnet jailB >>> >>> Final goal is to drive traffic from the public internet using a fqdn to >>> the vnet jailA. >> >> I strongly suggest you read up more about networking because it's >> obvious you don't really understand it. All network traffic goes to *IP >> addresses* not domains. DNS says what addresses to use for a specific >> domain, but *all* connection attempts, whatever the protocol, are to a >> specific numeric IP address. Yes, protocols like HTTP then accept a host >> specification for further "routing" but that happens *after* the initial >> connection is made. >> >> If you want to run N jails with N different domains, all with their own >> traffic to arbitrary ports, you are going to need at least N different >> IP addresses. >> > > I agree with you that I am not a network guru, but I do have a general > big picture understanding. I'm really not sure you do, because many of the questions you're asking are simply not meaningful. Especially when you talk about vlans. > Problem with the network manuals I have read > is they do not give real world examples showing how to implement the > concepts talked about. They contain NO cross over reference to vnet > jails. Also all the public literature on vnet jails never talk about how > to drive public traffic to a vnet jail or that vnet jails are limited to > requiring a virgin public ipv4 address for the vnet jails sole use. > After all the reading and trial and error attempts I come here to ask > questions to get the answers only someone with vnet experience can > answer. Hoping that is you. vnet jails are simply a particular FreeBSD virtualisation technology, they are not magic. vnet jails are a virtual equivalent of having multiple physical computers. Think of them as separate machines and you might be less confused. > As I understand it vnet jails have to have their own host interface > device with a public ip address that is not already in use by the host. No. They can have their own IP addresses, but you cannot use *public* IP addresses without them being assigned to you. (Well you can, you can even use google.com addresses if you want but nobody will route to them so they will be useless.) Unless you have been assigned public addresses you have to use RFC 1918 private addresses which are not visible to the outside world. (On IPv4 of course. IPv6 has it's own way of doing things.) > This translates to a business type of ISP account to get 3 static ipv4 > public addresses. This is a very expensive setup just to do some concept > testing to be able to write a business proposal for in house IT management. Personally I've got a /29 assignment for no extra charge on a home account, but I'm in the UK. If you're doing a purely in house proof of concept just pretend one of the RFC 1918 address ranges is "public" for the purpose of testing. > Now last month a guy posted on the questions list that he was using vlan > tags to separate his single dynamic public ip address into 4 vlan tags. > One for the host and 3 for vnet jails. He states he can ping the public > internet from inside of the vnet jails using this concept. That is meaningless AFAIUI. IP addresses are at level 3 of the network stack, vlans are at level 2, so they don't mix. (Dan Kaminsky can probably do something weird with them, you do not want to go there for business purposes. Or sanity.) Also, being able to ping out simply requires NAT. Being able to receive incoming connections requires public IP addresses. I can imagine he might be using vlans to mix external and internal networks onto the same physical wire with the help of a managed switch, I've seen people use Raspberry Pis as router/firewalls that way, but all internal vlans would be using RFC 1918 addresses. > But the part missing is how to drive public traffic to the vlan tagged > vnet jail.  So I ask the question to you again. Is there a way to > configure a domain name setup to not only point to the hosts public ip > address but also to its layer 2 vlan tag? The srv record looked like a > good candidate but could not find any mention of vlan tags. Because vlans are level 2, not level 3. They are not visible at the TCP/IP level. > Or could it be the "A" record ip address field with something like this > x.x.x.x_2   Where in the host vlan_2 is a vnet jail. No. A records contain 32 bit IPv4 addresses, end of story. It's evening here in the UK. I'll be offline until tomorrow afternoon, so don't expect further responses until at least after breakfast Eastern time. -- The number of people predicting the demise of Moore's Law doubles every 18 months. From owner-freebsd-questions@freebsd.org Sat Aug 15 18:43:01 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id C056537AA99 for ; Sat, 15 Aug 2020 18:43:01 +0000 (UTC) (envelope-from jon@radel.com) Received: from radel.com (fly.radel.com [70.184.242.170]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.radel.com", Issuer "GoGetSSL RSA DV CA" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTThN2tqcz4Zr5 for ; Sat, 15 Aug 2020 18:43:00 +0000 (UTC) (envelope-from jon@radel.com) X-CGP-ClamAV-Result: CLEAN X-VirusScanner: Niversoft's CGPClamav Helper v1.19.2 (ClamAV engine v0.99.2) X-ExtFilter: Niversoft's DomainKeys Helper DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; d=radel.com; s=20170108.radel; h=Subject:To:References:From:Message-ID:Date:User-Agent: MIME-Version:In-Reply-To:Content-Type; b=cM0gFzCdYiuAweqy8Z049Eu2JAXX7VtZqCj3c8/4t20XtzsUCxbSUY1QNa/l8U9TDI 3JW3R70jC4qPRgQAIdaY/2OxhuZQm4/iHUnqwuuoSdfWQA3tFW4kx46CwnEHD5r8rGEQ arM5as0ShkDADUJ0tx73V1oCFXO2uuMOnjJnIPPeuYr8udaIRaLCOBGkBs6RNBLN5TZk n+E2hf2SE4V9vrJqaW5N0SCU8j+jskj9o0QzaR42ZYcEVvt6nbrMFw2DKaw5nxQ+ulkY cIZxJD2DBOW8qGe09/CyGyQljHEgzeBgWvSkZL5nsJU2L7m7OVCcETQcfgj/v6I4Kalz ktqg== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=radel.com; s=20170108.radel; t=1597516973; x=1598121773; q=dns/txt; h=Subject:To:References:From:Message-ID:Date: User-Agent:MIME-Version:In-Reply-To:Content-Type; bh=yf1e1mEc3XJ BjIwmmTjtFa1MIES2FJgP1lvuX0m8lDs=; b=M+BnBjNsWCHXxocxn1uX9sxLl9W Dm8NlyFpT4/v+ik6CJrQLLLvyT/FLPouiGnqTlcMjBmyhn4W91tt1GF457rvdUGE 5q17ivWG2sEDZOHyTyXBzTnK9+yvrxtokHqzYea1nakMpbyn3kssShWaNFyCb698 ipPxGR9oZ/mINNjOgibgtbVVFxr4peyhLzq0UZfXxNx1AAcRUuW2WPRRWrf7ve9x r+qF+24iX0Eh2Tlh7q8SoSPXRkChrtXRc87A/QuxN/jaMkPXKWZco7VhdpaHVqFZ iwCGVCnMX34H4QOD88RWFXWB/AJOvNk8StlYAx5O3Cx28qLTBJgtrp78BAA== Received: from [2001:470:880a:4389:f810:1587:af4f:9563] (account jon@radel.com HELO haralson.local) by radel.com (CommuniGate Pro SMTP 6.1.14 _community_) with ESMTPSA id 2208814 for freebsd-questions@freebsd.org; Sat, 15 Aug 2020 18:42:52 +0000 Subject: Re: can a domain name config point to a vlan tag at the host To: freebsd-questions@freebsd.org References: <5F37E329.3000903@gmail.com> <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> <5F37F4BD.5030301@gmail.com> <66b05a60-69f0-5634-1f1a-3f1f7d5a53d9@qeng-ho.org> From: Jon Radel Message-ID: <8986e63b-6c0a-58bb-f51e-ec9ad03e12cc@radel.com> Date: Sat, 15 Aug 2020 14:42:52 -0400 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:68.0) Gecko/20100101 Thunderbird/68.11.0 MIME-Version: 1.0 In-Reply-To: <66b05a60-69f0-5634-1f1a-3f1f7d5a53d9@qeng-ho.org> Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms010404000106040502040301" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597516981; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:dkim-signature; bh=yf1e1mEc3XJBjIwmmTjtFa1MIES2FJgP1lvuX0m8lDs=; b=hHxslUvmsJhMTVtl96K5febviNN2tlT7LYeUxQ0x3GHoi4PjiscojM4YW3zqNIXeaRwe0e 5gZs/AVqX+KUPDPdpIJM8hKRxUMxRuCRLLIDhHZimKoe7vkbZ5RJjdpH8hgJV+qgQxN4f6 wX7iMGj4nKkslrsgTkB3OCZvb2lumBK/GaHFRUGW6WCDMtuDRxDGx51Eg3DPLCfeA1AGRK X+I9JRdhuElNePVxl4XQJ1wk1lA/kgKfCnBMtMSsRlSGiryjujMO/XrPUTO7Ci0uexr8pH Xgnqqb2zdaUnsWjZo0y5QTfYJIdwR2JF1sK53I2UgCdwaiTL7tfO3PsKOQiZ3w== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597516981; a=rsa-sha256; cv=none; b=HcVQcCZ6IAxXkr6a89U7wUPLq6DJm1DfRz5r7f94s6NfTZ7384+LJSt46/UzZHxUdHRvBG nbavlbIyHcUVbKA0wDqLpQhFFkWgaZSiVsXVAn46inZ3CSHjnjzKUmhOaYQo9egYDuD/Fg Uo2GmbY/eLgTsF+x16dK6cVPDbPRGfIJ3EeCQ+fnO4D4w12jmQ/+ENHt6tm1dOaifJmTUN 99ppStTBxapiTbpogy9TeAjZjRKHacsw7zP9qpWKb4RvaqnWhO/Lp3kLq+VQxD4/k/d7e2 EhGa5Bx9jK9ceUq8G6a/SZ/52vR43BcuBqygbdumSMbFZ/1cHWAf7qB0MZ39ww== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=pass header.d=radel.com header.s=20170108.radel header.b=M+BnBjNs; spf=pass (mx1.freebsd.org: domain of jon@radel.com designates 70.184.242.170 as permitted sender) smtp.mailfrom=jon@radel.com X-Rspamd-Queue-Id: 4BTThN2tqcz4Zr5 X-Spamd-Bar: ---- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=radel.com header.s=20170108.radel header.b=M+BnBjNs; dmarc=pass (policy=none) header.from=radel.com; spf=pass (mx1.freebsd.org: domain of jon@radel.com designates 70.184.242.170 as permitted sender) smtp.mailfrom=jon@radel.com X-Spamd-Result: default: False [-4.32 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; ARC_NA(0.00)[]; R_DKIM_ALLOW(-0.20)[radel.com:s=20170108.radel]; MID_RHS_MATCH_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; SIGNED_SMIME(-2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; R_SPF_ALLOW(-0.20)[+ip4:70.184.242.160/28]; MIME_GOOD(-0.20)[multipart/signed,multipart/alternative,text/plain]; TO_DN_NONE(0.00)[]; HFILTER_HELO_IP_A(1.00)[radel.com]; HAS_ATTACHMENT(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000]; ARC_SIGNED(0.00)[i=1]; DKIM_TRACE(0.00)[radel.com:+]; DMARC_POLICY_ALLOW(-0.50)[radel.com,none]; NEURAL_HAM_SHORT(-0.19)[-0.186]; NEURAL_HAM_MEDIUM(-1.04)[-1.039]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~,4:~]; ASN(0.00)[asn:22773, ipnet:70.184.240.0/21, country:US]; RCVD_COUNT_TWO(0.00)[2]; RCVD_TLS_ALL(0.00)[] X-Content-Filtered-By: Mailman/MimeDel 2.1.33 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 18:43:01 -0000 This is a cryptographically signed message in MIME format. --------------ms010404000106040502040301 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 8/15/20 13:19, Arthur Chance wrote: >> Now last month a guy posted on the questions list that he was using vl= an >> tags to separate his single dynamic public ip address into 4 vlan tags= =2E >> One for the host and 3 for vnet jails. He states he can ping the publi= c >> internet from inside of the vnet jails using this concept. > That is meaningless AFAIUI. IP addresses are at level 3 of the network > stack, vlans are at level 2, so they don't mix. (Dan Kaminsky can > probably do something weird with them, you do not want to go there for > business purposes. Or sanity.) Also, being able to ping out simply > requires NAT. Being able to receive incoming connections requires publi= c > IP addresses. Welll.....with some risk of muddying the waters further, I'll point out that inbound NAT does exist, especially the variant frequently referred to as "port forwarding."=C2=A0 However, if I remember umpteen messages ba= ck in this thread, one of Ernie's requirements is that he use the standard ports for everything, so this would not solve his problem.=C2=A0 I do, however, suspect, that earlier discussions revolving around making something like this work probably involved this technique. Ernie: By this I mean, it is generally possible (by which I mean it is a common, but not universal, feature), should one want to ssh from the outside world into 3 virtual devices for which one has only private IP addresses, to setup port forwarding, usually on your firewall or whatever device is doing the rest of your NAT, along the lines of: 17.17.17.17:2022 =3D=3D> 192.168.1.2:22 17.17.17.17:2023 =3D=3D> 192.168.2.2:22 17.17.17.17:2024 =3D=3D> 192.168.3.2:22 So you simply tell the remote ssh client to connect to port 2022, 2023, or 2024 depending on which virtual device you wish to connect to.=C2=A0 T= he NAT device on the edge of your network then knows how to mangle the address and port numbers in the headers and the packets can then be routed properly on the internal network using the RFC 1918 addresses. What is not available is to somehow map 17.17.17.17:22 =3D=3D> 192.168.1.2:22 or 192.168.2.2:22 or 192.168.3.2:22= mapping based on some value in DNS (layer 3 routing pays no attention to DNS) or the application data (layer 3 routing pays no attention to the contents of the payload).=C2=A0 Unless of course (and this is a huge unless--of the "this way lies madness" variety) you come up with your own variation on the ssh protocol, write your own custom clients to use the new protocol, write your own proxy to run at the edge of your network, etc., etc.=C2=A0 Hmmmm....just thought of a way to do it with only a custom client in order hide the different port numbers from the user.....=C2=A0=C2=A0 And = then repeat for every other protocol you wish to use. In any case, all the regular ssh clients connect to a fixed address:port combo.=C2=A0 The port defaults to 22.=C2=A0 A given address can have only= one thing listening on a given port.=C2=A0 Unless the protocol and server themselves have some mechanism for multiplexing (eg HTTP & HTTPS) or store & forward (SMTP), as has been discussed earlier in this thread, or there is some type of whizz-bang proxy server that looks at the contents of the application data and then establishes back-end network connections based on that data (say a layer 7, HTTP/HTTPS load balancer than assembles content from different back-end servers based on the contents of the request string), there's no support unless you write your own. --=20 --Jon Radel jon@radel.com --------------ms010404000106040502040301 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC C9owggXmMIIDzqADAgECAhBqm+E4O/8ra58B1dm4p1JWMA0GCSqGSIb3DQEBDAUAMIGFMQsw CQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxm b3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDErMCkGA1UEAxMiQ09NT0RPIFJTQSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xMzAxMTAwMDAwMDBaFw0yODAxMDkyMzU5NTla MIGXMQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQH EwdTYWxmb3JkMRowGAYDVQQKExFDT01PRE8gQ0EgTGltaXRlZDE9MDsGA1UEAxM0Q09NT0RP IFJTQSBDbGllbnQgQXV0aGVudGljYXRpb24gYW5kIFNlY3VyZSBFbWFpbCBDQTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAL6znlesKHZ1QBbHOAOY08YYdiFQ8yV5C0y1oNF9 Olg+nKcxLqf2NHbZhGra0D00SOTq9bus3/mxgUsg/Wh/eXQ0pnp8tZ8XZWAnlyKMpjL+qUBy RjXCA6RQyDMqVaVUkbIr5SU0RDX/kSsKwer3H1pT/HUrBN0X8sKtPTdGX8XAWt/VdMLBrZBl gvnkCos+KQWWCo63OTTqRvaq8aWccm+KOMjTcE6s2mj6RkalweyDI7X+7U5lNo6jzC8RTXtV V4/Vwdax720YpMPJQaDaElmOupyTf1Qib+cpukNJnQmwygjD8m046DQkLnpXNCAGjuJy1F5N ATksUsbfJAr7FLUCAwEAAaOCATwwggE4MB8GA1UdIwQYMBaAFLuvfgI9+qbxPISOre44mOzZ MjLUMB0GA1UdDgQWBBSCr2yM+MX+lmF86B89K3FIXsSLwDAOBgNVHQ8BAf8EBAMCAYYwEgYD VR0TAQH/BAgwBgEB/wIBADARBgNVHSAECjAIMAYGBFUdIAAwTAYDVR0fBEUwQzBBoD+gPYY7 aHR0cDovL2NybC5jb21vZG9jYS5jb20vQ09NT0RPUlNBQ2VydGlmaWNhdGlvbkF1dGhvcml0 eS5jcmwwcQYIKwYBBQUHAQEEZTBjMDsGCCsGAQUFBzAChi9odHRwOi8vY3J0LmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FBZGRUcnVzdENBLmNydDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3Au Y29tb2RvY2EuY29tMA0GCSqGSIb3DQEBDAUAA4ICAQB4XLKBKDRPPO5fVs6fl1bsj6JrF/bz 9kkIBtTYLzXN30D+03Hj6OxCDBEaIeNmsBhrJmuubvyE7HtoSmR809AgcYboW+rcTNZ/8u/H v+GTrNI/AhqX2/kiQNxmgUPt/eJPs92Qclj0HnVyy9TnSvGkSDU7I5Px+TbO+88G4zipA2ps ZaWeEykgzClZlPz1FjTCkk77ZXp5cQYYexE6zeeN4/0OqqoAloFrjAF4o50YJafX8mnahjp3 I2Y2mkjhk0xQfhNqbzlLWPoT3m7j7U26u7zg6swjOq8hITYc3/np5tM5aVyu6t99p17bTbY7 +1RTWBviN9YJzK8HxzObXYWBf/L+VGOYNsQDTxAk0Hbvb1j6KjUhg7fO294F29QIhhmiNOr8 4JHoy+fNLpfvYc/Q9EtFOI5ISYgOxLk3nD/whbUe9rmEQXLp8MB933Ij474gwwCPUpwv9mj2 PMnXoc7mbrS22XUSeTwxCTP9bcmUdp4jmIoWfhQm7X9w/Zgddg+JZ/YnIHOwsGsaTUgj7fIv xqith7DoJC91WJ8Lce3CVJqb1XWeKIJ84F7YLXZN0oa7TktYgDdmQVxYkZo1c5noaDKH9Oq9 cbm/vOYRUM1cWcef20Wkyk5S/GFyyPJwG0fR1nRas3DqAf4cXxMiEKcff7PNa4M3RGTqH0pW R8p6EjCCBewwggTUoAMCAQICEHQDryTAYaEsgncP8aGW6o4wDQYJKoZIhvcNAQELBQAwgZcx CzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1Nh bGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNB IENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2VjdXJlIEVtYWlsIENBMB4XDTE4MDMwNDAw MDAwMFoXDTIxMDMwMzIzNTk1OVowgfoxCzAJBgNVBAYTAlVTMQ4wDAYDVQQREwUyMjE1MDEL MAkGA1UECBMCVkExFDASBgNVBAcTC1NwcmluZ2ZpZWxkMRowGAYDVQQJExE2OTE3IFJpZGdl d2F5IERyLjEVMBMGA1UEChMMSm9uIFQuIFJhZGVsMTIwMAYDVQQLEylJc3N1ZWQgdGhyb3Vn aCBKb24gVC4gUmFkZWwgRS1QS0kgTWFuYWdlcjEfMB0GA1UECxMWQ29ycG9yYXRlIFNlY3Vy ZSBFbWFpbDESMBAGA1UEAxMJSm9uIFJhZGVsMRwwGgYJKoZIhvcNAQkBFg1qb25AcmFkZWwu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtK/dFQxMTnVPcP1TI09m30v8 rSG/VWSFWfFvu/2jzPkNL+ivx6A4LNUbqw4CS73GIKcbp8IrpNQz2oQV6mTv+KVJzJMf8GjA y8EzZjhc2tAXL+Q57omCTuAc6cw2KDYFL0aNWX4CEe/LqfoBDKpJF7HCrwwus55+tTEkAY8j tRkQRMHf47YQVJjD/4pdC/h+7jjI0oSgh1npT7Q3K47g6IkVzjhiH8LCsCSVYaLzRZfgcl3s 0GLE858PV/84l5d/hUVD0u9J2EdKpf+hnFqZnA3qw9R0xFQIE6yOkUvhALw1zxXaiGj0047a gBE2Bhv2UIlj6Q0zPa5kRYDy9vBI6QIDAQABo4IBzTCCAckwHwYDVR0jBBgwFoAUgq9sjPjF /pZhfOgfPStxSF7Ei8AwHQYDVR0OBBYEFHS/Ewun4pYC9Lla5kkmj4zo7tKcMA4GA1UdDwEB /wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggrBgEFBQcDAjBG BgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBTArMCkGCCsGAQUFBwIBFh1odHRwczovL3NlY3Vy ZS5jb21vZG8ubmV0L0NQUzBaBgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLmNvbW9kb2Nh LmNvbS9DT01PRE9SU0FDbGllbnRBdXRoZW50aWNhdGlvbmFuZFNlY3VyZUVtYWlsQ0EuY3Js MIGLBggrBgEFBQcBAQR/MH0wVQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuY29tb2RvY2EuY29t L0NPTU9ET1JTQUNsaWVudEF1dGhlbnRpY2F0aW9uYW5kU2VjdXJlRW1haWxDQS5jcnQwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmNvbW9kb2NhLmNvbTAYBgNVHREEETAPgQ1qb25AcmFk ZWwuY29tMA0GCSqGSIb3DQEBCwUAA4IBAQBUNLBptNFZRBkOUPOCI9TPM6QauLK6jojtbxZO XWvZfKvq8ukWUZTPtaDS5UjsMhlxLf/Crv8HkiVXSzC36cVQyjNjl1u+u/Sbl/6q/TfQk+aK 5jzDd4onQVzlfE33ymtZJgh+4dMPWKuXjRS0OyMLzv3mYCvFO83l1G9rBiaCEfFJHKgVGY1z 3ZU/gsPCQ2a0xf3908lwl5H3SPB3ZzLWDf41o5zV70HXfsgP862KzxU9t46XBGZ8TRl/5fl+ Xj2KQdpyWlNZUS00/UHznxeFO5+bkNaOg24BjwfBOWi0D47CE+6BRWvtrmgciWxefUuYeeIy Qr58KK8DlBCkVF06MYIENTCCBDECAQEwgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJH cmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBD QSBMaW1pdGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBh bmQgU2VjdXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMA0GCWCGSAFlAwQCAQUAoIIC WTAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcBMBwGCSqGSIb3DQEJBTEPFw0yMDA4MTUxODQy NTJaMC8GCSqGSIb3DQEJBDEiBCDtwrQAs14NBuQtkYK12Buz9tBChJGEoTWVtH6y2+xQwTBs BgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQBKjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcw DgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEo MIG9BgkrBgEEAYI3EAQxga8wgawwgZcxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVy IE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAYBgNVBAoTEUNPTU9ETyBDQSBMaW1p dGVkMT0wOwYDVQQDEzRDT01PRE8gUlNBIENsaWVudCBBdXRoZW50aWNhdGlvbiBhbmQgU2Vj dXJlIEVtYWlsIENBAhB0A68kwGGhLIJ3D/GhluqOMIG/BgsqhkiG9w0BCRACCzGBr6CBrDCB lzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMH U2FsZm9yZDEaMBgGA1UEChMRQ09NT0RPIENBIExpbWl0ZWQxPTA7BgNVBAMTNENPTU9ETyBS U0EgQ2xpZW50IEF1dGhlbnRpY2F0aW9uIGFuZCBTZWN1cmUgRW1haWwgQ0ECEHQDryTAYaEs gncP8aGW6o4wDQYJKoZIhvcNAQEBBQAEggEAZgoPzmf8jWPfeO+6Ss/D8Vf2IT9wTqNZ0ap4 yF7DCZLmGKKNmf+mpFDilWQByjonEls2hIOmz8LT12S+r67O78PbO5zBnAoVm7q24WbyM2zK +/6HJMxMv9vfLD+cis+iyO3MvodhPWLczLVFvnhXSJVUiqcASjJP+cbnaw73+EDEBvDB3+Hv G3uG3hV8O4LEN2+zICuEas1raMsQWKogMliR/NWKZ5x6uMnOExqBAxvC6Z2lNfI9w7y8b+me oG8X2Qxi/oYdrg0KQqLw/OzVNNNkh1Nf+zegr1AdQ6VupLgCRCm/mP57UlxMX6h2u1wnbRPT 2xdmyiEJoYqJfEMJ4AAAAAAAAA== --------------ms010404000106040502040301-- From owner-freebsd-questions@freebsd.org Sat Aug 15 18:49:21 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 3423F37AE0E for ; Sat, 15 Aug 2020 18:49:21 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.133]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass Class 2 CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTTqg5zkCz4bC9 for ; Sat, 15 Aug 2020 18:49:19 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([178.12.32.20]) by mrelayeu.kundenserver.de (mreue010 [212.227.15.167]) with ESMTPA (Nemesis) id 1MTzrW-1kGOuQ08Pq-00R1fA; Sat, 15 Aug 2020 20:49:12 +0200 Date: Sat, 15 Aug 2020 20:49:11 +0200 From: Polytropon To: Grzegorz Junka Cc: freebsd-questions@freebsd.org Subject: Re: Verify user password Message-Id: <20200815204911.7007deca.freebsd@edvax.de> In-Reply-To: References: Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:5BqRAJV45Q+bMXXzydvYsWb5zoD03jJDiRHE9zU+uFcAk6RKQaT cSw8CB+Z12CbgaOZ/cM/AU2KG0GsYrtVKkbMM8QKfIFrbdhxcJtitntajcriqW2171lHm21 cAkh7r+yXl6hi+5ZeKzUjoOIEXXZP4371PA5DjAFZEhXAQrKDzZYUX6bwykuCCyV7wVm4RF BPY0cO/GM38K6SR7Ni8XA== X-Spam-Flag: NO X-UI-Out-Filterresults: notjunk:1;V03:K0:KnMuRM5tlLA=:1RcNM4YtMSvxIOks0seMs8 oSQACzhFpPJMloRgEd51SuBhlC4KmJ2w4+flUzzFjaHO28vAt65vZbzqKzKYEHx7XGZxelpH/ BjaQ52SsAnIpfkn8ir6wrTBnCmsiFtYKKmMhjqURH/f4DgJzLbURawPNl2cS5G+RWARWDrwjy K5N5+VVf3FMKROrZICXyoWkCzCAv20tOytIhBUsRTWfOrjIVx7kb++Oyx3RcSsXr3KVfd+XZX J5OMAtjV3zGKLgxZtscbciyB01N0qxr7I7/PQoyJwlMrstjVXjHX6XXEVIytOu2bN/JqeMV4a EAx5uHt6ZwVMsbMgSt7iBqteS8NouZjEa4BKtCDuDFKBfuLWtcwxE2j2dCY5kuz7sy28lRVox Ut/ndNoXTYZS7qfu7JawlvCCmHUyfPznr3f2wtw7jT/YWIr3gOyMNEX7gb2Mrr3fGW3wMp3rN CauASPARdL+Uj6EruWV7mtq3+CVXbweRFjuHDifoiNLTs2pE//LuNJMHRtvu2ptDONR1FUwDu EffkBKOrhEZrIP0gFn2+IzgmF4SesHNtVVj+FgUq8kPYj9attBzWnmbvm+687F1z0i55498ko ZPa+Dvze1XjWJkjBexfEk/I6HzAGHnniuPZCIbbPO7Ej1vuVX+DPhB0LXjNOEsgZnKTWkk+JF y/hZf3J13iHcBZ78OQz+YXePzgheJ3cOPswghnrfI3ngtkDriwVdVaQVinHXtQVmFcvRKGuEr Y21aTJRK0/W1f8PBrbjjmf7Y+dscGqlE4u8eWJj+/NPE22ISval56ZqyKR4kv+zWWU6SXmQ0f 5XDFhMEXHBpwLAijGTfC8Xe038R2gMRmafHqewL+m9OPw1sfDVDBySWWJmqEY/UOoP4m3pU ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597517360; h=from:from:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=Lg62epLDtWsax40G9cEz7+geYW2ap0XagIpPduA9FVw=; b=uxn5H58vtwzmKGUst8Au0MkqNV8yW+51oiKsh4adpnlPLglG5gaROdzJvdX9XohuZm6q/J 7mTkECFD6o/0kGbZFp4aQLJ6TUIEewmorR9tlU/6MQCBj2yIiopX4Aggs9zj+mmKvNZ2Q8 6FEOJdOvKCyZ6073OuPodgLvq3ZUUP22QUFufHAOFninSI55T1ulk6MS1yhKkatSD5hWDh NojqC+pur+x2756WuLG1OoHCtttO983EKtRVxtMrrKT9vndDFXopz8s6wG1qkMzR/d591Q keFZc8M2E5vjiZF64Rg4PsRV9NVhA1YkcdRm1Om/QkEhNXRxqo2Or7OP7B+5iA== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597517360; a=rsa-sha256; cv=none; b=RzQozEbkJQkpBGDqqeQxA69KhyNJC5LFdPYzBkjDOdYgwzEjM/dvMpjjrIUxCz9Vwbo2MP xdHGTGbW3KYd5D4EYdFJruEZUCC67oQ6grv7OamSypRivlpjx37uyWT9x9/gEOVZ4cnsEX RPv64vWV3lsdHzHq4pquiMys7oftuBVktgCYQBV1Ee0dRGpdDBdTUYzm+RtC2TCLuE6CFm Vp8i5YdFsbec6j7k2FFl2lnEtnGeZoa8fLXhtLqYSUCCzmMejcKfbbKRRyqDdpE0lA/zuE F3QxlbUBXRKmuZ8EoE8bfHVVLLlWPLMm1uV/afEFUCXTvzUrcQjv1UAcAvku+g== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.133) smtp.mailfrom=freebsd@edvax.de X-Rspamd-Queue-Id: 4BTTqg5zkCz4bC9 X-Spamd-Bar: ++++ Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=none (mx1.freebsd.org: domain of freebsd@edvax.de has no SPF policy when checking 212.227.126.133) smtp.mailfrom=freebsd@edvax.de X-Spamd-Result: default: False [4.14 / 15.00]; HAS_REPLYTO(0.00)[freebsd@edvax.de]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_DN_SOME(0.00)[]; MV_CASE(0.50)[]; ARC_SIGNED(0.00)[i=1]; HAS_ORG_HEADER(0.00)[]; RCPT_COUNT_TWO(0.00)[2]; RECEIVED_SPAMHAUS_PBL(0.00)[178.12.32.20:received]; RCVD_TLS_LAST(0.00)[]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:8560, ipnet:212.227.0.0/16, country:DE]; ARC_NA(0.00)[]; REPLYTO_EQ_FROM(0.00)[]; FROM_HAS_DN(0.00)[]; NEURAL_SPAM_SHORT(0.12)[0.120]; MIME_GOOD(-0.10)[text/plain]; DMARC_NA(0.00)[edvax.de]; AUTH_NA(1.00)[]; NEURAL_SPAM_MEDIUM(0.94)[0.936]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_SPAM_LONG(0.69)[0.687]; MID_CONTAINS_FROM(1.00)[]; RCVD_IN_DNSWL_NONE(0.00)[212.227.126.133:from]; R_SPF_NA(0.00)[no SPF record]; RWL_MAILSPIKE_POSSIBLE(0.00)[212.227.126.133:from]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 18:49:21 -0000 On Sat, 15 Aug 2020 12:39:06 +0000, Grzegorz Junka wrote: > How can I verify if a given password matches the password stored in > master.passwd database for a user account that is set up with > /nonexistent and /usr/sbin/nologin (so a user that can't normally login > to the system but still can have a password stored in the database)? First of all, /nonexistent and /usr/sbin/nologin have different purposes: if after a successful login the user's interactive shell is to be executed, /nonexistent leads to a "cannot find that program to execute, exiting right now" situation, while /usr/sbin/nologin can actually be executed and then displays an error message and exits, terminating the session. See "man 1 login" and "man 1 nologin" for details. Regarding password verification: If you have read access to /etc/master.passwd and the clear text password of a user, you can use the crypt() function to generate the encrypted password, and then compare that. I think that is what you try to do, correct? provided: plain-text password P from somewhere encrypted password E from /etc/master.passwd intended: is crypt(P) == E? approach: P' = crypt(P) test if P' == S This is of course very simplified. :-) See "man 5 passwd" and especially "man 3 crypt" for details. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Sat Aug 15 18:55:36 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 1CFBE37AE65 for ; Sat, 15 Aug 2020 18:55:36 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTTyv2GsMz4bS3 for ; Sat, 15 Aug 2020 18:55:35 +0000 (UTC) (envelope-from kremels@kreme.com) Content-Type: text/plain; charset=us-ascii Subject: Re: can a domain name config point to a vlan tag at the host From: "@lbutlr" In-Reply-To: <8986e63b-6c0a-58bb-f51e-ec9ad03e12cc@radel.com> Date: Sat, 15 Aug 2020 12:55:31 -0600 Content-Transfer-Encoding: quoted-printable Message-Id: <09402B7E-49F0-4320-9C7E-82068EBF8651@kreme.com> References: <5F37E329.3000903@gmail.com> <9a027a2c-3575-25ac-6ccc-0f186a3d6820@qeng-ho.org> <5F37F4BD.5030301@gmail.com> <66b05a60-69f0-5634-1f1a-3f1f7d5a53d9@qeng-ho.org> <8986e63b-6c0a-58bb-f51e-ec9ad03e12cc@radel.com> To: FreeBSD X-Mailer: Apple Mail (2.3652.0.5.2.1) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597517735; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=lwPlQuD1HIQiFYGgzEDtlGo7R03QQ1Evb8+o97i3bzE=; b=Fo78MdJbrrs/tHkLJZNlaQ+V6k5JgBoY3bFxmUB1ZUDCNz779DRt2hONQfyjwT4HOhN3z9 +IvDnXA+MK+66Edj1V1/OoJlJ9cWEuc1micZF6j7J/k9feXKjm4Wmlvwbme1tFOJPWUr3m le7IqzmhZJbrqx2t+ZJ+F8VvBlMSRIEJI0J3zT4w2nlQxmPWLCNhrVhWfbD1qkBSLMNT5s RdVeYiKYdx0T6alBMLq0lw1mh9oaJ21gMbmr5d4vE3BFHYerAdhqHupF+FQvrkHDUMc68/ dr9gOHlEAiywewv9BG238cHHdcyGaV/KuAttkMQCkcb4Es0keXgBcwpBrpFJSg== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597517735; a=rsa-sha256; cv=none; b=RJvGm29CFT59ChRTR9RAiVFip1YWzev5OufnqUUpP/Nk6AZ0Sd/TEaxY51sU7xpV8Q+CIF 9DX5rPY/QrRcm2TWYXwdp0teFRWFlk8xqqCh70musST3zJrBGznT4Je3azdDYyU7xdPDAE laQyC7VnfjlQRvkqJjY3jG8GKTwPqyN1pFlMMWVjdy8UOEQsJ5hXmJSnyRCUTPFo8fgmKp CoHI57eDp+OJYyVSXfOaiFQKpZE9tQxTnYlUOWxN58XxJWKJ/3mIMNHf57qbTUFOHwCr3i sg3VrEsYKFsSl8KNWyOLptji6eLPeMauKTy9gk8Xgr0lN8p07cjjVDh+03RC0w== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Rspamd-Queue-Id: 4BTTyv2GsMz4bS3 X-Spamd-Bar: / Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of kremels@kreme.com designates 65.121.55.42 as permitted sender) smtp.mailfrom=kremels@kreme.com X-Spamd-Result: default: False [-0.61 / 15.00]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-0.63)[-0.632]; FROM_HAS_DN(0.00)[]; MISSING_MIME_VERSION(2.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; MIME_GOOD(-0.10)[text/plain]; R_SPF_ALLOW(-0.20)[+mx]; ARC_SIGNED(0.00)[i=1]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-0.93)[-0.930]; DMARC_NA(0.00)[kreme.com]; TO_DN_ALL(0.00)[]; NEURAL_HAM_SHORT(-0.65)[-0.647]; RCVD_COUNT_ZERO(0.00)[0]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:209, ipnet:65.112.0.0/12, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_IN_DNSWL_LOW(-0.10)[65.121.55.42:from] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 18:55:36 -0000 On 15 Aug 2020, at 12:42, Jon Radel wrote: > 17.17.17.17:2022 =3D=3D> 192.168.1.2:22 > 17.17.17.17:2023 =3D=3D> 192.168.2.2:22 > 17.17.17.17:2024 =3D=3D> 192.168.3.2:22 This is what I have been doing for years to get ssh access (an other = ports) into my LAN, though I go with the easier to remember method of 2202 =3D> lan.2:22 2212 =3D> lan.12:22 22107 =3D> lan.107:22 (So 192.168.0.2 or 10.0.32.12 or however you have your LAN setup) > What is not available is to somehow map >=20 > 17.17.17.17:22 =3D=3D> 192.168.1.2:22 or 192.168.2.2:22 or = 192.168.3.2:22 That way to do that, of course, is to VPN into your LAN, then all those = addresses are local to you (assuming you've setup the VPN correctly). = But that is out of the scope of what the OP seems to want. --=20 Anyhoo, they hung me. Fen out bitches. From owner-freebsd-questions@freebsd.org Sat Aug 15 20:14:24 2020 Return-Path: Delivered-To: freebsd-questions@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 8C60737D87D for ; Sat, 15 Aug 2020 20:14:24 +0000 (UTC) (envelope-from bferrell@baywinds.org) Received: from baywinds.org (50-196-187-248-static.hfc.comcastbusiness.net [50.196.187.248]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "baywinds.org", Issuer "rr-v" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4BTWjn5bgHz4hHn for ; Sat, 15 Aug 2020 20:14:21 +0000 (UTC) (envelope-from bferrell@baywinds.org) Received: from [192.0.2.130] (rr-iii [192.0.2.130]) by baywinds.org (8.14.4/8.14.4) with ESMTP id 07FKEDdv027616; Sat, 15 Aug 2020 13:14:13 -0700 Subject: Re: can a domain name config point to a vlan tag at the host To: Ernie Luzar , "freebsd-questions@freebsd.org" References: <5F37E329.3000903@gmail.com> From: Bruce Ferrell Message-ID: <9b2353d2-c3dd-3f05-807f-e96e13a1ae32@baywinds.org> Date: Sat, 15 Aug 2020 13:14:13 -0700 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2 MIME-Version: 1.0 In-Reply-To: <5F37E329.3000903@gmail.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Greylist: inspected by milter-greylist-4.5.12 (baywinds.org [192.0.2.134]); Sat, 15 Aug 2020 13:14:13 -0700 (PDT) for IP:'192.0.2.130' DOMAIN:'rr-iii' HELO:'[192.0.2.130]' FROM:'bferrell@baywinds.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.12 (baywinds.org [192.0.2.134]); Sat, 15 Aug 2020 13:14:13 -0700 (PDT) ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1597522463; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=fhiSDixRPo5xOjNPGsy2vIfQc9cUkLvRfiFAtEJwa8A=; b=n4N2WPpYPuPfKClFlSBkpnp7tAx5/e0/VBqepAMOynfNHHa3TtW34A7uqtR250YM2Vi9pH kaV+fqFrLQ+pjLdnTKlEyJcQKlPz9PQJa4BbRClcXZe6gi+y3fT4CM+UYJJv/KT94eYtDu j8k6TZ21eMm4MZnPS97bqNElrS4vDgBlAuaakTpKF2ZfqbSab/FrgaPMKdioWsTyCxNgyE RX/rxPD+4dJCNxtgB09IiBk/RAaLak0b5BAZoxlLQGb+N+lEBDSJ3GnbhSCnXlyLa0WiEc +zhrD7mPa/eEf/q8lWMeyD5Z+S6vIvH360Ji9jiaqUDO7iPQ8aNSPH4rXdNykg== ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1597522463; a=rsa-sha256; cv=none; b=rvqMnhbKp4JVQsnAIVMhh0Zhku1vnKKPu3o6OxDMskt/nVhYH1IaxI2n8mSPaDetYVidiU vQcZ7kpkOLY4udBuM6IUeG8nGw7kIqF40/mPzOsyD8dawrm9iUxGZkltWgs88FFaxB09H1 BLkHtcdOs/zo4mGbcsCzLYAPsMKEoDag+E654Elyr/Fg8KWEwpLYj0AqDPxuGoFXrKHrLm 32jaxi0rzar5VlgsGYXW1MY6xC6YyEGkYcs4kMOIQttp4w54WXBFVQV0DU70YxbpXGR7ss YYkIi8QCN8+VKEDud0MfhFrYSScxEhmdleDtBLo2ZeNnoQhrY2G6O4gTL6Be8Q== ARC-Authentication-Results: i=1; mx1.freebsd.org; dkim=none; spf=pass (mx1.freebsd.org: domain of bferrell@baywinds.org designates 50.196.187.248 as permitted sender) smtp.mailfrom=bferrell@baywinds.org X-Rspamd-Queue-Id: 4BTWjn5bgHz4hHn X-Spamd-Bar: --- Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of bferrell@baywinds.org designates 50.196.187.248 as permitted sender) smtp.mailfrom=bferrell@baywinds.org X-Spamd-Result: default: False [-3.45 / 15.00]; TO_DN_EQ_ADDR_SOME(0.00)[]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.05)[-1.052]; FROM_HAS_DN(0.00)[]; TO_DN_SOME(0.00)[]; R_SPF_ALLOW(-0.20)[+a]; NEURAL_HAM_LONG(-0.97)[-0.970]; MIME_GOOD(-0.10)[text/plain]; RCVD_TLS_LAST(0.00)[]; ARC_SIGNED(0.00)[i=1]; DMARC_NA(0.00)[baywinds.org]; TO_MATCH_ENVRCPT_SOME(0.00)[]; NEURAL_HAM_SHORT(-1.13)[-1.125]; RCPT_COUNT_TWO(0.00)[2]; FREEMAIL_TO(0.00)[gmail.com,freebsd.org]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:7922, ipnet:50.128.0.0/9, country:US]; RCVD_COUNT_TWO(0.00)[2]; MID_RHS_MATCH_FROM(0.00)[] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.33 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 15 Aug 2020 20:14:24 -0000 On 8/15/20 6:29 AM, Ernie Luzar wrote: > I set up vlan for the host interface cabled to the public internet. > How do I drive internet traffic to the desired vlan name on the host using a registered domain name? > > My rc.conf has this > > ifconfig_re0="DHCP" > gateway_enable="YES" > > vlans_re0="1 2 3" > > # vlan_1  is for the host > # vlan_2  is for vnet jailA > # vlan_3  is for vnet jailB > > Final goal is to drive traffic from the public internet using a fqdn to the vnet jailA. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > Ernie This isn't a DNS issue at all.  All DNS does is map IP addresses to names.  VLANs operate at frame layer. VLANs are be used to separate LAN traffic. A IP address can be on a VLAN1.  If the NIC is configured to look for traffic on VLAN1 it will see it.  Otherwise it will simply be discarded. If you have traffic on VLAN1 and want it to go to VLAN2, you have to have some means of routing between the VLANs