From owner-freebsd-questions@freebsd.org Sun Jun 24 08:40:22 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D8D66101F036 for ; Sun, 24 Jun 2018 08:40:22 +0000 (UTC) (envelope-from james@mansionfamily.plus.com) Received: from avasout01.plus.net (avasout01.plus.net [84.93.230.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5A0677F939 for ; Sun, 24 Jun 2018 08:40:22 +0000 (UTC) (envelope-from james@mansionfamily.plus.com) Received: from [192.168.1.67] ([51.9.195.23]) by smtp with ESMTP id X0RrfQyN4EbwGX0RtfT36m; Sun, 24 Jun 2018 09:32:41 +0100 X-CM-Score: 0.00 X-CNFS-Analysis: v=2.3 cv=Dvx4Bl3+ c=1 sm=1 tr=0 a=HFlK0jj8XaDDaLPmuSMcsg==:117 a=HFlK0jj8XaDDaLPmuSMcsg==:17 a=IkcTkHD0fZMA:10 a=c79Py52k9WXnxzFlX1MA:9 a=QEXdDO2ut3YA:10 Reply-To: james@mansionfamily.plus.com Subject: Re: Limiting ZFS ARC Size? To: Bob Willcox , questions list References: <20180618162419.GA41031@rancor.immure.com> From: james Message-ID: <2f30e611-acaa-b4c4-cb2e-1c9a220a1af0@mansionfamily.plus.com> Date: Sun, 24 Jun 2018 09:32:41 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <20180618162419.GA41031@rancor.immure.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-CMAE-Envelope: MS4wfOLVSrUZdzVaU2mP7n9rL8ya8czttytQ3jFlqit3LutKH/d3IwzxqAkoKhtMd2TrI1rsSXdXFmbXn4+kjKIii9N3+3tUq6D3TAOGlIgzhC6kxtqT0/6A Y8sB712OV4CuaD4O9PGrCDAmz6J08vcfpay/Hlbv9CZWRaQxTlCQDe2VoCxyyAX2eGH4BXKFLPbDmg== X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jun 2018 08:40:23 -0000 On 18/06/2018 17:24, Bob Willcox wrote: > to the point where my running processes (such as firefox) start page > thrashing. I thought ARC was supposed to give up memory if there is memory pressure that causes applications to page? From owner-freebsd-questions@freebsd.org Sun Jun 24 12:18:22 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id ADA921027518 for ; Sun, 24 Jun 2018 12:18:22 +0000 (UTC) (envelope-from bob@rancor.immure.com) Received: from rancor.immure.com (108-84-10-9.lightspeed.austtx.sbcglobal.net [108.84.10.9]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "darth.immure.com", Issuer "darth.immure.com" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 3FB688712C for ; Sun, 24 Jun 2018 12:18:21 +0000 (UTC) (envelope-from bob@rancor.immure.com) Received: from rancor.immure.com (localhost [127.0.0.1]) by rancor.immure.com (8.15.2/8.15.2) with ESMTPS id w5OCIFNg073805 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Sun, 24 Jun 2018 07:18:15 -0500 (CDT) (envelope-from bob@rancor.immure.com) Received: (from bob@localhost) by rancor.immure.com (8.15.2/8.15.2/Submit) id w5OCIEiS073804; Sun, 24 Jun 2018 07:18:14 -0500 (CDT) (envelope-from bob) Date: Sun, 24 Jun 2018 07:18:14 -0500 From: Bob Willcox To: james Cc: questions list Subject: Re: Limiting ZFS ARC Size? Message-ID: <20180624121814.GS8115@rancor.immure.com> Reply-To: Bob Willcox References: <20180618162419.GA41031@rancor.immure.com> <2f30e611-acaa-b4c4-cb2e-1c9a220a1af0@mansionfamily.plus.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <2f30e611-acaa-b4c4-cb2e-1c9a220a1af0@mansionfamily.plus.com> User-Agent: Mutt/1.9.4 (2018-02-28) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 24 Jun 2018 12:18:22 -0000 On Sun, Jun 24, 2018 at 09:32:41AM +0100, james wrote: > On 18/06/2018 17:24, Bob Willcox wrote: > > to the point where my running processes (such as firefox) start page > > thrashing. > > I thought ARC was supposed to give up memory if there is memory pressure > that causes applications to page? That was what I was expecting as well. However ARC had consumed most of the memory (about 25G, 30G was wired) and firefox was paging like crazy. I did discover what program was causing ARC to grow seeming unbounded, it was vlc. I have something over 64k audio tracks that I had pointed vlc to with shuffle set. It must be recursively reading all of the files in the heirarchy and zfs is cacheing a bunch of data as it goes. Bob -- Bob Willcox | Isn't air travel wonderful? bob@immure.com | Breakfast in London, dinner in New York, Austin, TX | luggage in Brazil. From owner-freebsd-questions@freebsd.org Mon Jun 25 03:06:12 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 00B201020EEE for ; Mon, 25 Jun 2018 03:06:12 +0000 (UTC) (envelope-from FreeBSD@shaneware.biz) Received: from ipmail06.adl6.internode.on.net (ipmail06.adl6.internode.on.net [150.101.137.145]) by mx1.freebsd.org (Postfix) with ESMTP id 2C72E8762E for ; Mon, 25 Jun 2018 03:06:10 +0000 (UTC) (envelope-from FreeBSD@shaneware.biz) Received: from ppp121-45-31-130.bras1.adl4.internode.on.net (HELO leader.local) ([121.45.31.130]) by ipmail06.adl6.internode.on.net with ESMTP; 25 Jun 2018 12:36:02 +0930 Subject: Re: Limiting ZFS ARC Size? To: Bob Willcox Cc: questions list References: <20180618162419.GA41031@rancor.immure.com> <2f30e611-acaa-b4c4-cb2e-1c9a220a1af0@mansionfamily.plus.com> <20180624121814.GS8115@rancor.immure.com> From: Shane Ambler Message-ID: Date: Mon, 25 Jun 2018 12:36:00 +0930 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <20180624121814.GS8115@rancor.immure.com> Content-Type: text/plain; charset=utf-8 Content-Language: en-AU Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 03:06:12 -0000 On 24/06/2018 21:48, Bob Willcox wrote: > On Sun, Jun 24, 2018 at 09:32:41AM +0100, james wrote: >> On 18/06/2018 17:24, Bob Willcox wrote: >>> to the point where my running processes (such as firefox) start page >>> thrashing. >> >> I thought ARC was supposed to give up memory if there is memory pressure >> that causes applications to page? > > That was what I was expecting as well. However ARC had consumed most of the > memory (about 25G, 30G was wired) and firefox was paging like crazy. I did > discover what program was causing ARC to grow seeming unbounded, it was vlc. > I have something over 64k audio tracks that I had pointed vlc to with shuffle > set. It must be recursively reading all of the files in the heirarchy and zfs > is cacheing a bunch of data as it goes. Create a zfs for your a/v files, then set its caching to metadata only. ARC use - - primarycache=all | none | metadata L2ARC use - - secondarycache=all | none | metadata Also have a look at https://reviews.freebsd.org/D7538 I am finding ARC releasing much quicker/easier with this patch. -- FreeBSD - the place to B...Software Developing Shane Ambler From owner-freebsd-questions@freebsd.org Mon Jun 25 14:41:08 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F18191011463 for ; Mon, 25 Jun 2018 14:41:07 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: from santiago.searchmail.es (santiago.searchmail.es [178.60.30.7]) by mx1.freebsd.org (Postfix) with ESMTP id 7DA497F579 for ; Mon, 25 Jun 2018 14:41:07 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: by santiago.searchmail.es (Postfix, from userid 0) id 4D1B8120A8E; Mon, 25 Jun 2018 16:41:06 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=searchmail.es; s=default; t=1529937666; bh=aY3x6j4+0YOfSd8/WNUkLGxhkI6oP2/63EMruW0GXEI=; h=Date:From:To:Subject:Reply-To; b=Km7vy9QT2Z1nDc5mrmrbJ5KmJKF1F/usi8Y6YeaNEbledTS9kfem8NcIlXoy8GM7z VfdX6dOmoVcuVz1x3IOOcsvA6Nt+Xl1ICZt2SRIs24iuzd3HfCpDKIPOoeS1f7mCnq eUTjszUQrnqdb5m8HqilJOcLtpWfCr38hUPhJycM= User-Agent: CodeIgniter Date: Mon, 25 Jun 2018 16:41:02 +0200 From: "Elsa" To: freebsd-questions@freebsd.org Subject: =?utf-8?Q?Financiaci=c3=b3n_con_fondos_europeos?= Reply-To: "junio2018@searchmail.es" X-Sender: junio2018@searchmail.es X-Mailer: CodeIgniter X-Priority: 3 (Normal) Message-ID: <5b30ff023742d@searchmail.es> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 14:41:08 -0000 Fondos europeos:FEDER, FEI y BEI.   Para Pymes y autónomos constituidos y que operen en España. Importe máximo: 12,5 millones por Pyme. Al tratarse de líneas con garantía del FEI cuentan con condiciones preferentes.   Somos expertos en gestionar líneas con fondos europeos.   Quiero saber más   Si lo prefieres puedes llamarnos al 981 90 49 49(de lunes a viernes de 9 a 16 horas) Deseamos que esta comunicación haya resultado de su agrado. No obstante, si prefiere no recibir más comunicaciones de este tipo, siga este enlace. Tenga en cuenta que esta comunicación está dirigida a: freebsd-questions@freebsd.org. De conformidad con lo establecido en la Ley 34/2002 Lssice le comunicamos que este escrito procede de Search Task, s.l.u con cif B70296009 y domicilio en Calle Benito Blanco Rajoy 7-9, 1º, 15006, A Coruña, con finalidad publicitaria. Search Task cumple estrictamente la normativa vigente en el ámbito de protección de sus datos en Internet. Según dispone la Ley Orgánica 15/1999, de 13 de diciembre, de Protección de Datos de Carácter Personal, le recordamos que tiene derecho legal de acceso, rectificación, cancelación u oposición escribiendo a searchtaskmail@gmail.com. De conformidad con lo dispuesto en dicha jurisprudencia, Search Task le comunica que los datos que nos proporcione formarán parte de un fichero automatizado de datos de carácter personal, responsabilidad de dicha entidad, con la finalidad de gestionar las comunicaciones con la misma. Sus datos han sido obtenidos de una fuente pública. El contenido del presente comunicado es confidencial y únicamente está dirigida y autorizada su lectura al consignatario original, quedando prohibidos cualquier comunicación, o difusión, tanto del comunicado como de su contenido. From owner-freebsd-questions@freebsd.org Mon Jun 25 16:59:15 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 521BC10166EC for ; Mon, 25 Jun 2018 16:59:15 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from inet08.hamilton.harte-lyne.ca (inet08.hamilton.harte-lyne.ca [216.185.71.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "inet08.hamilton.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id F1FD6847D5 for ; Mon, 25 Jun 2018 16:59:14 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from localhost (localhost [127.0.0.1]) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTP id 01FFB62594 for ; Mon, 25 Jun 2018 12:59:08 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from inet08.hamilton.harte-lyne.ca ([127.0.0.1]) by localhost (inet08.hamilton.harte-lyne.ca [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zLSr6BMAEmUJ for ; Mon, 25 Jun 2018 12:59:06 -0400 (EDT) Received: from webmail.harte-lyne.ca (inet04.hamilton.harte-lyne.ca [216.185.71.24]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTPSA id 30A2D601FC for ; Mon, 25 Jun 2018 12:59:06 -0400 (EDT) Received: from 216.185.71.44 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Mon, 25 Jun 2018 12:59:06 -0400 Message-ID: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> Date: Mon, 25 Jun 2018 12:59:06 -0400 Subject: FreeBSD-11.1 - symbolic links in jails From: "James B. Byrne" To: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 16:59:15 -0000 I am curious about the following observed behaviour: On the host I see this: ll /usr/jails/mx32/etc/a* lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 /usr/jails/mx32/etc/aliases -> /etc/mail/aliases more /usr/jails/mx32/etc/aliases # $FreeBSD: releng/11.1/etc/mail/aliases 243752 2012-12-01 15:11:46Z rwatson $ # @(#)aliases 5.3 (Berkeley) 5/24/90 # . . . On the jail I see this: ll /etc/alias* lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 /etc/aliases -> /etc/mail/aliases # $FreeBSD: releng/11.0/etc/mail/aliases 243752 2012-12-01 15:11:46Z rwatson $ # @(#)aliases 5.3 (Berkeley) 5/24/90 # mx32 # . . . I wish to confirm that this is intended behaviour; that a single symbolic link can have differing target files depending whether one is in a jail or not. -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 From owner-freebsd-questions@freebsd.org Mon Jun 25 17:14:46 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 00C5210175FB for ; Mon, 25 Jun 2018 17:14:46 +0000 (UTC) (envelope-from erwan@rail.eu.org) Received: from mail.rail.eu.org (mail.rail.eu.org [IPv6:2001:bc8:30d3:ff17::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 77C0085305 for ; Mon, 25 Jun 2018 17:14:45 +0000 (UTC) (envelope-from erwan@rail.eu.org) Received: from [IPv6:2001:bc8:30d3:3040:6267:20ff:fede:1808] (unknown [IPv6:2001:bc8:30d3:3040:6267:20ff:fede:1808]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: erwan) by mail.rail.eu.org (Postfix) with ESMTPSA id 4DEF83826 for ; Mon, 25 Jun 2018 19:14:41 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=rail.eu.org; s=mail; t=1529946881; bh=5SeHoZodgO3AfyjJgPEBN+RgfaCj4641N/t4/RU79u0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=pBYcxxasSC8stEbr1BMp9nJbSPFG6f5ccdon8xY8Iw7cbTHAbjJrIgOH/vzQtgNaj IUGwzlRaRrcDJ6L4ZICi7Jm1WgzBj7D1zyfe6/MARsmsb3YBr7Hw+BrVNz+5PWBEHZ pyAXj6DhiR7wOPEV2JLR1QG3K7cppd3nIPNICUmQ= Subject: Re: FreeBSD-11.1 - symbolic links in jails To: freebsd-questions@freebsd.org References: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> From: Erwan David Openpgp: preference=signencrypt Autocrypt: addr=erwan@rail.eu.org; prefer-encrypt=mutual; keydata= xsFNBFJAaOMBEADAHsjODUMNImClvj0eAW7oCKr/cjccRts2DVrslhb6UEDbxgvnCKGtRy2P A9NcILX/+lG9zaoPw0caDSXDuubrC/giKZAphUTSmd+Uqz+9WDtU602WQuP5d5S1aAUe+fzT 6l9iDSR8Fz07ajjZ791Q0P1P4EwWQDbCJvmNXAknwysX0fIAlLpDaIQ0Asa6IvG/v8TyLZSE U0NytwIfHJMJk5btrM4fdaGc+4XnTK0E2Oa+Qjab18fsBLtHGctQUrDjrWvnGj1slHrfhUrT 67e9NHZgDPmEsOeCChd1ZWurIR0AQFp/Wrz80abJltk+aFswEzOvhkriOGjt4gM31BocpNbZ +sEEg9M6skAeXvuISkfS0bCM3kZ6MgywHE98AbA+8WxiKMRKuuuTNSEmIIRQt8dn7ad/1+r1 KAZ1bkB2naCDArqnpeDb65+378qh/2J6/M0UivSMFLzxXc+AyIxucjmrK8VCWQbDwUiA6sPU W4BC7V7+5j7ELzh4JzQX2LisNzPOqkaTVTfmCgDeL7V9LZErtLlG1rYbISrLvDnWNdiJ9l1d flxnhCs4oqn8KA5DtV6HNwIW6b6zwEHFoDPwtK2fctj0VIRwjiIMlyrEWHiC5NZoPyfexGlj RNP7oaDb6PIItgnBItWq/ZRymXP9gA945DjnrozsUZ02y7OMjQARAQABzR9FcndhbiBEYXZp ZCA8ZXJ3YW5AcmFpbC5ldS5vcmc+wsF9BBMBCAAnAhsDBQsJCAcDBRUKCQgLBRYDAgEAAh4B AheABQJXH8QiBQkKgm29AAoJELgOrBXkD/0PSm4P/3E/TWb0XlysYdYS/AnD6gnTz68W2wP9 xtX0qeF9BJEazPHMuXZ5ppAoGNNYuO2ixzQkrQilAFuBXsCSVScy+iRqwtXGMMNIzCsBhp+B wDBzFMCI92ZND3EVG6RA7DgR3JgL1OzljuXTaFSY30vBmTIrTqdyFfSwG7WPqvSo/xAmAWSS Tl6ESqJL1mjD4G4Ko/FdMoNwOU3q9wHW/Yv9oX6DpOwmgjN/QoyUdtQFo7FlkoNZY8aRwdUX kgLlp/qyezJDEzn/ZNafG/HuOZNHFiwvdPq5OqLhgB2fu8fNWRCxr30QlSjZdaNAsTeLqXKZ 9YhnZ/lMdmxDwyLl31hMjlnWXFpw4F/Dzt+UhCt8BF8ixdSxS+5Wkq0HDdD62cRSLt3j2efS iAoNs1QMknFUS5F602psJ+/mah3cTrsmTctPqyEE9Y/0p/77A9ZhJuCbVH3m6JnnAstvWg7S XFmwtChaQ0ckY2k53PQ6XpWHkjSI3KCqHfSE2da9Up8tUVmTs222iChe3B9mb7ZBE0RfKpHp DNTscYyNRUgpb1xZ4Y9AtFhu6eyB04op/ZLsIrXQcaafvOeGrzWYDgND76yLxL6C54bQzZLh D7dmEWvf0MMQJf2hF2e/QQ+s6TYQvY80p0pCoFMqm1OWA+H66/0/+75dGWDgEyIxtqtrTMxQ BG4rzsFNBFJAaOMBEAC+g+OJRv5IxEAmNe3OaqHiCkTIEdmVAujMdsD44WsGsUaIgxOhGBLe wOUtShMflVwwpUZ49A65wguVKlrCqtOON6d0qZaCKqAlPcmlHubH7rcAm90lpdgHvbAG9PUS IHUuNR4YNVNU3LSD4y8vtAParU6Kaj2Yt33xPkXCRkQyWyTvXvBYhiJBmsq7qprxRie5Tsiv NOhSSXbg3S2yv5fRt7b8YJb6wKD348TzD6lAApOLfuRmorueinc3/hYeoZOVCUleRE4+RS3r PnkIMKmtHD21bG8Wfd0N2VwQkUyVT+1d+HBoxhHqkYpJnHqCyd2dHq6T2OsZ/Lhz9AFk4fvI OSJRp7fp38Kj70HAjgaUBhFiF+TpW+dsPSev066MFbtGiuF4zLhCkbfoIB8JhOqBhsDKaTLB DmV5DDjDibeYUrSdl3DZYx+ZVhSi/icrjyVYzmU7f8GzpNsbVADQGXbBoUHK5JFMfetT1QM+ H6PvCw1+HkVS77hVEyYEWjM5YehEJIAs6a2K2VB2tuf/hkzMoJOpBtXBJ9dIBDQE+IPRpquh QhMUBEYOX2Q8AubMTVT6gWueM8lxhifuIEXiYJRbI8RzyoE2nm1UzJMGIVUfFHgDG/8gc6bE w+Xa9PhXO1Z5gbOa46kfG558dGoCdB5CAfXnwMObZYMDW1VKOTmlLwARAQABwsFfBBgBCAAJ BQJSQGjjAhsMAAoJELgOrBXkD/0PAO4P/0Rdp1OMZp/Y5Zj9WIYieise9jg6Q1TjQLozSd4u 9UXBkvOKU8HnR5vFWjiPYR9XkiMTOADPoRZq7k8OuT0dGs4lIzGUbGdddhoIgulMs3wFCENc qY7cuq6RNT/AthtljTbhMAJ6+jok2QOJIpvWJhdRUMutXWwG2oyWhQP0gATLvFiVv2F1WLcR 4Bluyi4/Sx351pm5A89RAgSbIe+j3h2r7KoUUx36eyVhZrFbMVYiU+LK/h5Ig30w7k+JNQWv Co98rHLJ7cjR9ZfBv2Gw3bHxxIQ5rGAi6xm/31JvqQuA0+PsoC0giZCNf3pSolKTpjrjILuc YnloV2likGu987HUoYbskWu+DDwPFo5C8g0ZW/HBryeXMLI8J4nRxNoGKmRExkhrmQ6Ez1G+ ZHNlxCsINXi7i+u2nGJZc6dnqQDgG159kWoWST1DVw/TCmnAcnrSgQLrFzYuALM8XAahRB6R uP7d7LS5lyA3eS71GsqLx3dbLXh2xD75fXaVN+hbXnJ1DTumfSYSLwGMvG/+00+tasELzrHG vjTJUv6voT5Md56SNRhRAJGpxS6y1RNTBk+gtJGdjBJu5gqWUCGU9iITLB14WjEJT+Z6ef5h SfdeW3fgd7rH6EDViZjd4O7VWRr5eWe5uyeWb9y/OFNd7Wz7d925VfFiuISAwP3P65tp Message-ID: <8915604e-4fbb-5e50-2364-6dfd3b4312f6@rail.eu.org> Date: Mon, 25 Jun 2018 19:14:35 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit Content-Language: fr X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 17:14:46 -0000 Le 06/25/18 à 18:59, James B. Byrne via freebsd-questions a écrit : > I am curious about the following observed behaviour: > > On the host I see this: > > ll /usr/jails/mx32/etc/a* > lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 > /usr/jails/mx32/etc/aliases -> /etc/mail/aliases > > more /usr/jails/mx32/etc/aliases > # $FreeBSD: releng/11.1/etc/mail/aliases 243752 2012-12-01 15:11:46Z > rwatson $ > # @(#)aliases 5.3 (Berkeley) 5/24/90 > # > . . . > > On the jail I see this: > > ll /etc/alias* > lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 /etc/aliases -> > /etc/mail/aliases > > # $FreeBSD: releng/11.0/etc/mail/aliases 243752 2012-12-01 15:11:46Z > rwatson $ > # @(#)aliases 5.3 (Berkeley) 5/24/90 > # mx32 > # > . . . > > I wish to confirm that this is intended behaviour; that a single > symbolic link can have differing target files depending whether one is > in a jail or not. > > It seems legit to me : a symbolic link contains a path to the "real" file, thus when looked on the host you point to the /etc/mail/aliases of the host, when in the jail you point to the one in the jail From owner-freebsd-questions@freebsd.org Mon Jun 25 17:45:12 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 76B4E10187F3 for ; Mon, 25 Jun 2018 17:45:12 +0000 (UTC) (envelope-from freebsd-en@lists.vlassakakis.de) Received: from dd14614.kasserver.com (dd14614.kasserver.com [85.13.136.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 17412868EE for ; Mon, 25 Jun 2018 17:45:11 +0000 (UTC) (envelope-from freebsd-en@lists.vlassakakis.de) Received: from [192.168.3.55] (p50927CA7.dip0.t-ipconnect.de [80.146.124.167]) by dd14614.kasserver.com (Postfix) with ESMTPSA id E120B43C10C9 for ; Mon, 25 Jun 2018 19:45:02 +0200 (CEST) From: Philipp Vlassakakis Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\)) Subject: FreeBSD 11.1: chroot users / provide pre-built binaries Message-Id: Date: Mon, 25 Jun 2018 19:45:02 +0200 To: freebsd-questions@freebsd.org X-Mailer: Apple Mail (2.3273) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 17:45:12 -0000 Hello, everybody, I am currently looking for a good solution to my =E2=80=9Eproblem=E2=80=9C= . Scenario: I have a fileserver with several hundreds local users. Each user should be locked into his $HOME (so they can=E2=80=99t cd into = any other user-directory, /root etc.), but can login via SSH,SFTP and = upload files.=20 Via ZFS exec,devices,setuid is set to =E2=80=9Eoff", so they can't = execute any self-uploaded binaries, except binaries, which are provided = by me. (cp, mv, rm, rmdir, sh, touch, chgrp, groups, pwd etc.). =20 The binaries are included via $PATH. On the one hand I want to save space, so that the binairies don't have = to be in every $HOME,=20 on the other hand the work is reduced if a binary needs to be updated. Is there any simple way to lock users into their Home-Directory without = editing sshd_config every time? Thanks in advance Regards, Philipp= From owner-freebsd-questions@freebsd.org Mon Jun 25 19:03:55 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 88A64101B87E for ; Mon, 25 Jun 2018 19:03:55 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 32C5389CFB for ; Mon, 25 Jun 2018 19:03:55 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from point.uchicago.edu (point.uchicago.edu [128.135.52.6]) by kicp.uchicago.edu (Postfix) with ESMTP id 4ADE37180AD for ; Mon, 25 Jun 2018 14:03:48 -0500 (CDT) Subject: Re: FreeBSD-11.1 - symbolic links in jails To: freebsd-questions@freebsd.org References: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> From: Valeri Galtsev Message-ID: Date: Mon, 25 Jun 2018 14:03:47 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 19:03:55 -0000 On 06/25/18 11:59, James B. Byrne via freebsd-questions wrote: > I am curious about the following observed behaviour: > > On the host I see this: > > ll /usr/jails/mx32/etc/a* > lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 > /usr/jails/mx32/etc/aliases -> /etc/mail/aliases > > more /usr/jails/mx32/etc/aliases > # $FreeBSD: releng/11.1/etc/mail/aliases 243752 2012-12-01 15:11:46Z > rwatson $ > # @(#)aliases 5.3 (Berkeley) 5/24/90 > # > . . . > > On the jail I see this: > > ll /etc/alias* > lrwxr-xr-x 1 root wheel 17 Jun 25 12:45 /etc/aliases -> > /etc/mail/aliases Inside jail this is exactly what I would expect. Namely, leading slash is root directory of the jail. This is "filesystem part" of intended jail behavior, which you also can call chroot behavior. And therefore symlink pointing to absolute path is different inside and outside of jail. Valeri > > # $FreeBSD: releng/11.0/etc/mail/aliases 243752 2012-12-01 15:11:46Z > rwatson $ > # @(#)aliases 5.3 (Berkeley) 5/24/90 > # mx32 > # > . . . > > I wish to confirm that this is intended behaviour; that a single > symbolic link can have differing target files depending whether one is > in a jail or not. > > -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++ From owner-freebsd-questions@freebsd.org Mon Jun 25 23:42:43 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D0AC21025231 for ; Mon, 25 Jun 2018 23:42:43 +0000 (UTC) (envelope-from aswaranas006@gmail.com) Received: from mail-lj1-x235.google.com (mail-lj1-x235.google.com [IPv6:2a00:1450:4864:20::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 41A6A72D71 for ; Mon, 25 Jun 2018 23:42:43 +0000 (UTC) (envelope-from aswaranas006@gmail.com) Received: by mail-lj1-x235.google.com with SMTP id k20-v6so5685809ljk.9 for ; Mon, 25 Jun 2018 16:42:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=QHz4JvIXwNIC0bj8WtkMrW82FzB/ebORRMaoqzsJbsA=; b=nauKA6YNb+gM6nu3hnDrQbLdx3EskCuaGm4xqcv2nw9EciKdgfW8v4DwfgJSIU/9CG fXEta8bj8CFNOw1YCn1M6a0+nm4df/7vQaG3uLV4+JGyBxvc5HXnSJ1kxW/WSSxkHpGc czc6VjISyHM+ssofU/3VIP3uL8YeCuyRLIw9pUpIr6cETvxeWzQz9Z0EoWUMZkaWEcSr pRtosxLhu7p6ln2gzJrcckujDBtDf3WMDynSrgJmlWUdVAhvzTdhnOHigejwkyG0G6K2 mFMFUj5IgMhAoJSNq2H0RqTVEiLI+gAlj+EBQGT/Ue3/QDWSg9/IJuVBh2qMRxNMa7Ol V3EA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=QHz4JvIXwNIC0bj8WtkMrW82FzB/ebORRMaoqzsJbsA=; b=W022iRVzAEsQLP3dm1Y1Sjlzgap2jkPJvDX/EVJdf7DU724h7wws1aU+0ZpHuttaaQ FzI0gLT0LJEpkEVnyEkzhOaQbeYRFFi1ycu1wBRy3H+OUF2y8lJPfvsi/biYJreh8TTx GxzVFRhCFtLVWGFGSqN5duakewZGQc8veBGbQ2qyEB/OygoH+RJh2vIF1aKb/ggBb9qV nk+bGgTxlDq4IQIZudphpwvRKlneRMmpU3e1NLElchO+B/QTodEY9U//KZ6qlyjSwHYT yaPZQzRn++5j3MaAuWyjOH3ZuNAYU1oeMf4mOqC9lQbRKSNh9FHuWPtw7Z/oHKECcS6+ GLKg== X-Gm-Message-State: APt69E2B36XT2vI6gWM0HfFTU+hnjBXepyFQFffvwYzMUs9uvdKBJz25 3/bWU4w90TTgm/uTL2VshHxFeJ0N+1JqVOvBXGU= X-Google-Smtp-Source: ADUXVKJ/8U/qY2s2Qjc1RQyOydnu6lLjwsQmTRKrw+2I9NTb63KDeRudv1b0r28rb3YJYb3YePvSyWrY2/fFCk6L7Nc= X-Received: by 2002:a2e:1153:: with SMTP id f80-v6mr3165386lje.75.1529970161359; Mon, 25 Jun 2018 16:42:41 -0700 (PDT) MIME-Version: 1.0 From: Aswar Anas Date: Tue, 26 Jun 2018 07:42:27 +0800 Message-ID: Subject: To: freebsd-questions@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 25 Jun 2018 23:42:44 -0000 From owner-freebsd-questions@freebsd.org Tue Jun 26 03:55:27 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3261D1009405 for ; Tue, 26 Jun 2018 03:55:27 +0000 (UTC) (envelope-from freebsd.ed.lists@sumeritec.com) Received: from out2-4.antispamcloud.com (out2-4.antispamcloud.com [185.201.17.4]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id BA46A7C703 for ; Tue, 26 Jun 2018 03:55:26 +0000 (UTC) (envelope-from freebsd.ed.lists@sumeritec.com) Received: from server31.niagahoster.com ([153.92.8.106] helo=srv31.niagahoster.com) by mx63.antispamcloud.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.89) (envelope-from ) id 1fXf4X-0004zi-NK; Tue, 26 Jun 2018 05:55:18 +0200 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sumeritec.com; s=default; h=Content-Transfer-Encoding:Content-Type: MIME-Version:References:In-Reply-To:Message-ID:Subject:Cc:To:From:Date:Sender :Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help: List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=hv+thGT1e3h4jekKNOXyBYlwGgUvSzDjmMyfZt0W+Qw=; b=i0h+fdAmdYsR129GJ50BuD4Ylp kAFBhsp4A94y8Q//HNvFkfEXdRuSAMSPsDQJmqImrwiEwXvTJcCOZIy6nbTyvR4yxlJjYlrp8JfR8 1s7Fghcrv0+3Wb0u2SDmfn4Y9Ll+2uJW/9iKu0AAfFTzyfW5BiPG4PCgd1P75fHjamTKxKog+aliy EvTUTlYsskzu1AD7NkgjyAScxfPsPhstfWBoZE+jurn5KaZz5PzjPaM3iHLvLozF+dtz8KRuKM/Yj nRMHPq+xSUzoWo4jwevzkf0rMVWS8VJRRMJUALvLrRyzvUyXldGJwA280SPDeXTWk8uI8oj/v2Zsa 4CDZOCpA==; Received: from [114.125.127.128] (port=60103 helo=X220.sumeritec.com) by srv31.niagahoster.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.89_1) (envelope-from ) id 1fXf3g-00060A-97; Tue, 26 Jun 2018 10:54:26 +0700 Date: Tue, 26 Jun 2018 11:54:21 +0800 From: Erich Dollansky To: "James B. Byrne via freebsd-questions" Cc: byrnejb@harte-lyne.ca Subject: Re: FreeBSD-11.1 - symbolic links in jails Message-ID: <20180626115421.26159ff8.freebsd.ed.lists@sumeritec.com> In-Reply-To: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> References: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-OutGoing-Spam-Status: No, score=-1.0 X-AuthUser: freebsd.ed.lists@sumeritec.com X-Originating-IP: 153.92.8.106 X-AntiSpamCloud-Domain: out.niagahoster.com X-AntiSpamCloud-Username: niaga Authentication-Results: antispamcloud.com; auth=pass (login) smtp.auth=niaga@out.niagahoster.com X-AntiSpamCloud-Outgoing-Class: unsure X-AntiSpamCloud-Outgoing-Evidence: Combined (0.33) X-Recommended-Action: accept X-Filter-ID: EX5BVjFpneJeBchSMxfU5iBtVOj7P91G85/qTiFhK+J602E9L7XzfQH6nu9C/Fh9KJzpNe6xgvOx q3u0UDjvO5aNQlwfH3hFdbqL4EFCcDDlGZflZ13PbuB5BzC23dkU90iRVUtOx1/sUjCS+FzEvY2S 6UHJZkKjVPvRDMsR4u6CSzNIuWQJrNBB673AmlSDdgOoWdL74nreXkbpIF/FBrUcC/5EREO8r366 gBExhZg9mblZahD8HpeOlrl3WafRIRFsicyJMEhQFtD8PLoinkRi1PyeCgEXNPl7t7QJGKTAXx1T Dr8m4KkK9B1JwKK3fllZ7J7q0bsllBjm/eHkDZr+UE+wi+f1jWHh7JZ82/HiHXYn+vOFDXRPjEnJ YfHhWcMQEzM26ageQrVAtCNiS/xr6l90dcauQFkSylif/DPWw6nGshSw3Gz172zuPKVck+EI0wKo w1riXHloKkD++rdtS2ZY5YZLeVribYiizeclW5enDR4aR6HUaKAawgylWVd3bTro3dLvSMcacWlY MZ0ymHhrmYiRSqF6A9Q9yAfsdH/xd0hgPWlyP+6iAU6KpsJZ605s94oSThatvNNPiRqZR3KVQgqF /fPYYAfEfsgsP+xr5y0OaZC/BXhLANeDSa0F3PG7N4qiohkqgd12AR5agtTFvgaNmvDqcBvf3jNP MuIEvKgS4MtxVWrpH3s//iL0KTW+WftxCA2VTaJ67eTsFQ8/WFokiBOlJQR5sgR5NwCKyODkgyNA pXBkNuYLGJdimYZGouioJWKkMaVHGkPvfpdAAGgPdYBHsNgjV/jx+KKSrAOyE86sISoYiGW6HHAS JNUmoOHSoqgqxfHmWW6iycr4hj2hSg7y5O0SGIR/X/piYQAPJiZiWFHfXYZxIyyo7YsNPL2Uw+Em Y7qn6lS5p/RPodJh3mi0BZLMlLnmcNMYrgEyPifyrwrvAF3mj8dzHQPLO1WC2ToG4+imXZFVgpT1 b21uZVckGp0ccOZ0u747HEjxBT3YXFq5jdQhprCltM5Y/qkig8B6zyvgSei5vGm+kxdC9Us/9qwY zKA= X-Report-Abuse-To: spam@quarantine1.antispamcloud.com X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 03:55:27 -0000 Hi, On Mon, 25 Jun 2018 12:59:06 -0400 "James B. Byrne via freebsd-questions" wrote: > I wish to confirm that this is intended behaviour; that a single > symbolic link can have differing target files depending whether one is > in a jail or not. > > it is even a bit more confusing. When you access the same link from outside the jail, it will target really the one in the root directory. Symbolic links are always relative to the environment it is used in. But they can cross mount points. If you want to make a link always pointing to the same thing, you will have to use hard links. But you are not able to cross mount points then and it opens the doors for software breaking out of the jail. Erich From owner-freebsd-questions@freebsd.org Tue Jun 26 13:23:25 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id B7E401026030 for ; Tue, 26 Jun 2018 13:23:25 +0000 (UTC) (envelope-from cyberleo@cyberleo.net) Received: from mail.cyberleo.net (paka.cyberleo.net [216.226.128.180]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 57A83701AF for ; Tue, 26 Jun 2018 13:23:25 +0000 (UTC) (envelope-from cyberleo@cyberleo.net) Received: from [172.16.44.4] (vitani.den.cyberleo.net [216.80.73.130]) by mail.cyberleo.net (Postfix) with ESMTPSA id 36FA95980C; Tue, 26 Jun 2018 09:23:16 -0400 (EDT) Subject: Re: How to disable GELI selectively? To: thor , freebsd-questions@freebsd.org References: <07733d85-d212-8866-b3eb-56ee42340294@irk.ru> From: CyberLeo Kitsana Message-ID: <99c15b36-0a38-38f7-8fa1-53009759d038@cyberleo.net> Date: Tue, 26 Jun 2018 08:23:15 -0500 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0 MIME-Version: 1.0 In-Reply-To: <07733d85-d212-8866-b3eb-56ee42340294@irk.ru> Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: 8bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 13:23:25 -0000 On 06/18/2018 11:19 AM, thor wrote: > Hello! > > Here I have a computer with 2 HDDs partitioned identically with GELI > encrypted root as in > https://forums.freebsd.org/threads/howto-full-disk-encryption-fast-way.19082/ > > > When I boot the computer it properly asks the passphrase for /dev/ada0p3 > and mounts /dev/ada0p3.eli as a root. > > Then, it asks "Enter passphrase for gptid...." which I don't want since > the second HDD should be attached manually when needed ONLY and all > other time it should be unmounted. I am to press enter enough times to > make me mad. > > I have found > https://lists.freebsd.org/pipermail/freebsd-stable/2012-July/068704.html > but it resolves the problem how to mount /dev/ada1p3.eli on boot but not > how not to mount it. > > kern.geom.eli.tries=0 makes geli not to ask for every passphrase > including /dev/ada0p3 and the boot correspondingly totally fails. > > What should I do? Try running geli configure -b on the root and geli configure -B on all the others. That should set resp. clear the BOOT flag that geli.ko uses to determine which geoms to attach at boot. See the documentation for the 'configure' command in geli(8) for more information. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net Element9 Communications http://www.Element9.net Furry Peace! - http://www.fur.com/peace/ From owner-freebsd-questions@freebsd.org Tue Jun 26 14:05:57 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 600511028287 for ; Tue, 26 Jun 2018 14:05:57 +0000 (UTC) (envelope-from thor@irk.ru) Received: from mail.irk.ru (mail.irk.ru [195.206.40.175]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id DB38571BEA for ; Tue, 26 Jun 2018 14:05:56 +0000 (UTC) (envelope-from thor@irk.ru) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=irk.ru; s=dkim; h=Content-Transfer-Encoding:Content-Type:In-Reply-To:MIME-Version: Date:Message-ID:From:References:To:Subject:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=R/U0WRhvkwUmneLN50OE0ePu6lj4hpeenXPROIVmbQ0=; b=ex9E+DhkzN43IHBFl8OFCj6f/0 ig2jNm/dJYcuaPen4CHTJKt7H2yjhTl2qrjiPu5qyY+DkMV5cdrcLtBrI29ihxfJSg0sq7yxG8pA7 agrcXr4+q9n42usCpKNcxrh9nQahxtv7N20BWqoXcmzW27F/cTUoO8mcLSRwUYLFVpo8=; Received: from [194.176.114.54] (helo=[192.168.1.130]) by mail.irk.ru with esmtpa (Exim 4.89 (FreeBSD)) (envelope-from ) id 1fXoTW-0003xp-Bo for freebsd-questions@freebsd.org; Tue, 26 Jun 2018 21:57:42 +0800 Subject: Re: How to disable GELI selectively? To: freebsd-questions@freebsd.org References: <07733d85-d212-8866-b3eb-56ee42340294@irk.ru> <99c15b36-0a38-38f7-8fa1-53009759d038@cyberleo.net> From: thor Message-ID: <51a1ff0e-a5ed-7f65-c405-cbf8cdfef150@irk.ru> Date: Tue, 26 Jun 2018 22:05:19 +0800 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <99c15b36-0a38-38f7-8fa1-53009759d038@cyberleo.net> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Content-Language: en-US X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 14:05:57 -0000 Not acceptable. It's necessary to keep the option of changing the drives and booting from the second one. It's formatted exactly as the first one just for this purpose. On 06/26/18 21:23, CyberLeo Kitsana wrote: > On 06/18/2018 11:19 AM, thor wrote: >> Hello! >> >> Here I have a computer with 2 HDDs partitioned identically with GELI >> encrypted root as in >> https://forums.freebsd.org/threads/howto-full-disk-encryption-fast-way.19082/ >> >> >> When I boot the computer it properly asks the passphrase for /dev/ada0p3 >> and mounts /dev/ada0p3.eli as a root. >> >> Then, it asks "Enter passphrase for gptid...." which I don't want since >> the second HDD should be attached manually when needed ONLY and all >> other time it should be unmounted. I am to press enter enough times to >> make me mad. >> >> I have found >> https://lists.freebsd.org/pipermail/freebsd-stable/2012-July/068704.html >> but it resolves the problem how to mount /dev/ada1p3.eli on boot but not >> how not to mount it. >> >> kern.geom.eli.tries=0 makes geli not to ask for every passphrase >> including /dev/ada0p3 and the boot correspondingly totally fails. >> >> What should I do? > Try running geli configure -b on the root and geli configure -B on all > the others. That should set resp. clear the BOOT flag that geli.ko uses > to determine which geoms to attach at boot. > > See the documentation for the 'configure' command in geli(8) for more > information. > From owner-freebsd-questions@freebsd.org Tue Jun 26 15:13:51 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5ECB2102AABC for ; Tue, 26 Jun 2018 15:13:50 +0000 (UTC) (envelope-from kelly@rsw-power.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 3739674B88 for ; Tue, 26 Jun 2018 15:13:49 +0000 (UTC) (envelope-from kelly@rsw-power.com) Received: by mailman.ysv.freebsd.org (Postfix) id E6189102AABA; Tue, 26 Jun 2018 15:13:48 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3AEF5102AAB8 for ; Tue, 26 Jun 2018 15:13:48 +0000 (UTC) (envelope-from kelly@rsw-power.com) Received: from m97106.mail.qiye.163.com (m97106.mail.qiye.163.com [220.181.97.106]) by mx1.freebsd.org (Postfix) with ESMTP id 5FA5874B84 for ; Tue, 26 Jun 2018 15:13:44 +0000 (UTC) (envelope-from kelly@rsw-power.com) Received: from localhost (unknown [127.0.0.1]) by wmsvr3 (Coremail) with SMTP id TSWEB_000000070000730B5B325075; Tue, 26 Jun 2018 22:40:53 +0800 (CST) Received: from kelly$rsw-power.com ( [119.123.74.132] ) by ajax-webmail-wmsvr12 (Coremail) ; Mon, 25 Jun 2018 17:09:05 +0800 (CST) X-Originating-IP: [119.123.74.132] Date: Tue, 26 Jun 2018 22:40:00 +0800 (CST) From: kelly To: questions@freebsd.org Subject: Re: Handheld Inkjet Printer Manufacturer X-Priority: 3 X-Mailer: Coremail Webmail Server Version SP_ntes V3.5 build 20150911(74783.7961) Copyright (c) 2002-2018 www.mailtech.cn 163-hosting MIME-Version: 1.0 Message-ID: <123b8573.12e8c.16436342a0b.Coremail.kelly@rsw-power.com> X-Coremail-Locale: zh_CN X-CM-TRANSID: auCowADX5JZ9UDJbMYUgAA--.3W X-CM-SenderInfo: xnhoz546uv4gpsrzv2oofrz/1tbifR1wElrpMw+8fAABsM X-Coremail-Antispam: 1U5529EdanIXcx71UUUUU7vcSsGvfC2KfnxnUU== Content-Type: text/plain; charset=GBK Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 15:13:51 -0000 RGVhciBNYW5hZ2VyLAoKCkdvb2QgZGF5IQoKCldlIGluZGVwZW5kZW50bHkgZGV2ZWxvcGVkIGEg aGFuZGhlbGQgaW5ramV0IHByaW50ZXIgd2l0aCBnb29kIHF1YWxpdHksIHdoaWNoIGlzIHdpZGVs eSB1c2VkIGFuZCBwb3B1bGFyIHRocm91Z2hvdXQgZGlmZmVyZW50IGNvdW50cmllcy4gSG9wZSB0 aGUgYmVsb3cgcHJvZHVjdCBjYW4gaGVscCB5b3Ugc2F2ZSB0aGUgY29zdHMuCgoKRm9sbG93aW5n IGlzIG9uZSBvZiBvdXIgbW9kZWw6Ckl0ZW06IEhhbmRoZWxkIElua2pldCBQcmludGVyIHdpdGgg U29sdmVudCBJbmsgKFF1aWNrIERyeSkKLSBXaXRoIDMuNSBpbmNoIHRvdWNoYWJsZSBzY3JlZW4g dGhhdCB5b3UgY2FuIGVkaXQgdGhlIGNvbnRlbnRzIGRpcmVjdGx5IHZpYSBzY3JlZW4gb3IgaW1w b3J0ZWQgdGhlIGNvbnRlbnRzIGZyb20gVS1kaXNrLgotIFBvcnRhYmxlLCBzaW1wbGUgaW50ZXJm YWNlIGFuZCBlYXN5IHRvIG9wZXJhdGUuCi0gSXQgY2FuIHByaW50IG9uIGRpZmZlcmVudCBraW5k cyBvZiBtYXRlcmlhbHMsIHN1Y2ggYXMgcGFwZXJzLCBjYXJ0b25zLCBwbGFzdGljcywgZ2xhc3Nl cywgd29vZHMsIHN0b25lcywgd2FsbHMsIHN0ZWVscyBwaXBlcywgbWV0YWxzLCBjYWJsZXMsIGZp bG0gbWF0ZXJpYWxzLCBldGMuCi0gSXQgY2FuIHByaW50IENoaW5lc2UsIEVuZ2xpc2ggbGV0dGVy cywgbnVtYmVycywgUVIgY29kZSwgc2NhbiBjb2RlLCBiYXJjb2RlLCBiYXRjaCBjb2RlLCBleHBp cnkgZGF0ZSwgdGltZSwgY291bnRlciwgc3ltYm9scywgbG9nbywgbWFya3MsIHNtYWxsIHBpY3R1 cmVzIGV0Yy4KLVdlIGhhdmUgbGFyZ2UgZGF0YSBzdG9yZSB1cCB0byAyMDAgbWVzc2FnZXMuCi1X ZSBoYXZlIGRpZmZlcmVudCBjb2xvcnMgaW5rOiBibGFjaywgcmVkLCBidWxlLHllbGxvdywgd2hp dGUgYW5kIGludmlzaWJsZSBVViBsaWdodCBpbmsuCiAgICAKQW55IGludGVyZXN0cyBwbGVhc2Ug Y29udGFjdCB1cyBmb3IgbW9yZSBpbmZvcm1hdGlvbi5XZSBjYW4gc2hvdyB5b3Ugb3VyIGJyb2No dXJlIGFuZCB2aWRlby4gU2FtcGxlIGFyZSBhdmFpbGFibGUsIHRvbyEKICAgICAgICAgICAgICAg ICAKVGhhbmtzIGFuZCBSZWdhcmRzLAotLQoKS2VsbHkgQ2hlbgpTYWxlcyBSZXByZXNlbnRhdGl2 ZQpTaGVuemhlbiBTd2Fyb25pa2kgVGVjaG5vbG9neSBDby4sIEx0ZC4gICAgICAgICAKTW9iaWxl ICYgV2hhdHNhcHA6ODYtMTMyNjY2ODU2NjkKU2t5cGU6IGtlbGx5XzMxNjcKV2ViOnd3dy5iZXNo ZW5ncHJpbnRlcnMuY29t From owner-freebsd-questions@freebsd.org Tue Jun 26 16:46:00 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id AEDF11002437 for ; Tue, 26 Jun 2018 16:46:00 +0000 (UTC) (envelope-from mailinglist@diamondbox.dk) Received: from mailrelay4-3.pub.mailoutpod1-cph3.one.com (mailrelay4-3.pub.mailoutpod1-cph3.one.com [46.30.212.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 1F44E78F09 for ; Tue, 26 Jun 2018 16:45:59 +0000 (UTC) (envelope-from mailinglist@diamondbox.dk) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=diamondbox.dk; s=20140924; h=from:subject:date:message-id:to:mime-version:content-type: content-transfer-encoding; bh=692vTTGx/mzLOaNCdrYqEhJNL7MdE8lzOVi/lHritZo=; b=ONiWfiO8VLOMxSR771sxvdijuZGCIZivSDy06Lq+Txf7XwbMACa5FjH5Ciyr2pQzswo2EQYMyFttS vfBHDfG/iavLwd/GOWRmUK6q3A8yg+z/XMAqQNPqUvPBc6YAkJXTzqQLzr+6vQuf53EO9n3mCdwajE Lp+fw8KfuK4vOkcs= X-HalOne-Cookie: 0b39522271104356e613ea325c1887099ba4f046 X-HalOne-ID: 24421df6-795e-11e8-a331-d0431ea8bb10 Received: from diamond.diamondbox.dk (unknown [212.237.134.61]) by mailrelay4.pub.mailoutpod1-cph3.one.com (Halon) with ESMTPSA id 24421df6-795e-11e8-a331-d0431ea8bb10; Tue, 26 Jun 2018 16:29:47 +0000 (UTC) To: FreeBSD Questions From: Nikolaj Thygesen Subject: Small buffers for recv() Organization: diamondbox.dk Message-ID: Date: Tue, 26 Jun 2018 18:29:49 +0200 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: da X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 16:46:00 -0000 Hi,     I'm currently writing an application which passes data between sub-programs through non-blocking sockets. Today I experimented (for testing purposes) with using buffers of different sizes for recv(). When I do:     recv(fd, reinterpret_cast(buffer), size_of_buffer, 0); ... with *size_of_buffer* being e.g. 100 I get loads of EAGAIN's, but if I use e.g. 5000 everything works fine. I do understand why performance suffers, but the many EAGAIN's puzzle me a bit - what is the problem? Is there some way of detecting the optimal size to use? Google didn't bring me any closer to an answer.     br - Nikolaj FreeBSD fb.diamondbox.dk 11.1-RELEASE FreeBSD 11.1-RELEASE #3 r321520: Wed Jul 26 20:21:21 CEST 2017 user:/usr/obj/usr/src/sys/DIAMOND  amd64 From owner-freebsd-questions@freebsd.org Tue Jun 26 17:17:32 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0D7281003902 for ; Tue, 26 Jun 2018 17:17:32 +0000 (UTC) (envelope-from freebsd@fongaboo.com) Received: from h4lix.wtfayla.net (helix.wtfayla.net [64.246.134.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AAB6A7A2A0 for ; Tue, 26 Jun 2018 17:17:31 +0000 (UTC) (envelope-from freebsd@fongaboo.com) Received: from localhost (localhost [127.0.0.1]) by h4lix.wtfayla.net (Postfix) with ESMTP id D3D5C7ACF37; Tue, 26 Jun 2018 13:17:23 -0400 (EDT) Received: from h4lix.wtfayla.net ([127.0.0.1]) by localhost (h4lix.wtfayla.net [127.0.0.1]) (maiad, port 10024) with ESMTP id 72726-07; Tue, 26 Jun 2018 13:17:22 -0400 (EDT) Received: from h4lix.wtfayla.net (h4lix.wtfayla.net [64.246.134.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by h4lix.wtfayla.net (Postfix) with ESMTPS id 6A2F87ACF34; Tue, 26 Jun 2018 13:17:22 -0400 (EDT) Date: Tue, 26 Jun 2018 13:17:21 -0400 (EDT) From: Fongaboo X-X-Sender: fongaboo@h4lix.wtfayla.net To: "James B. Byrne via freebsd-questions" cc: Erich Dollansky , byrnejb@harte-lyne.ca Subject: Re: FreeBSD-11.1 - symbolic links in jails In-Reply-To: <20180626115421.26159ff8.freebsd.ed.lists@sumeritec.com> Message-ID: References: <5c01d3596c548d3bac00e22ff2fcd2a5.squirrel@webmail.harte-lyne.ca> <20180626115421.26159ff8.freebsd.ed.lists@sumeritec.com> User-Agent: Alpine 2.20 (BSF 67 2015-01-07) MIME-Version: 1.0 Content-Type: text/plain; format=flowed; charset=US-ASCII X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 17:17:32 -0000 I find nullfs to be the most rock-solid solution for stuff like this, because it transcends the relatively of jails, chroot, etc. It's like a wormhole for filesystems. But I believe you can only link two directories, not two files. But what if you did this: mkdir /usr/jails/mx32/host/etc mount_nullfs /etc /usr/jails/mx32/host/etc ln -s /usr/jails/mx32/host/etc/mail/aliases /usr/jails/mx32/etc/aliases I wonder if that would work? On Tue, 26 Jun 2018, Erich Dollansky wrote: > Hi, > > On Mon, 25 Jun 2018 12:59:06 -0400 > "James B. Byrne via freebsd-questions" > wrote: > >> I wish to confirm that this is intended behaviour; that a single >> symbolic link can have differing target files depending whether one is >> in a jail or not. >> >> > it is even a bit more confusing. When you access the same link from > outside the jail, it will target really the one in the root directory. > Symbolic links are always relative to the environment it is used in. > But they can cross mount points. > > If you want to make a link always pointing to the same thing, you will > have to use hard links. But you are not able to cross mount points then > and it opens the doors for software breaking out of the jail. > > Erich > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > From owner-freebsd-questions@freebsd.org Tue Jun 26 18:29:02 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EEFAC100F6ED for ; Tue, 26 Jun 2018 18:29:01 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: from carnota.searchmail.es (carnota.searchmail.es [178.60.30.17]) by mx1.freebsd.org (Postfix) with ESMTP id 5A70D7D05B for ; Tue, 26 Jun 2018 18:29:01 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: by carnota.searchmail.es (Postfix, from userid 0) id 529011A0D2C; Tue, 26 Jun 2018 20:29:06 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=searchmail.es; s=default; t=1530037746; bh=eKT1qKTMfcLqqw1UySaPjMZKMnTLwiuFxP4kJFMqelk=; h=Date:From:To:Subject:Reply-To; b=f3jgU4NOw0rhXnySZTYQOx8SFQXrAxvc7aABKki2R//tdbfaswRNsxIfoHOpKSBR9 S5CTebQne3bBfnLcGhHg+5jHprTN6WOf9CC+yVPTB8i4/2oEtLUb+LXgrxR1EALsGA KoyVVEzh5eL6OasI9juIjn6cAN5VoWD06Vo72148= User-Agent: CodeIgniter Date: Tue, 26 Jun 2018 20:29:01 +0200 From: "Cristina" To: freebsd-questions@freebsd.org Subject: =?utf-8?Q?Informaci=c3=b3n_sobre_ICO?= Reply-To: "junio2018@searchmail.es" X-Sender: junio2018@searchmail.es X-Mailer: CodeIgniter X-Priority: 3 (Normal) Message-ID: <5b3285f20cfd1@searchmail.es> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 26 Jun 2018 18:29:02 -0000 Iberfinancia @media only screen { html { min-height: 100%; background: #f3f3f3; } } @media only screen and (max-width: 596px) { .small-float-center { margin: 0 auto !important; float: none !important; text-align: center !important; } .small-text-center { text-align: center !important; } .small-text-left { text-align: left !important; } .small-text-right { text-align: right !important; } } @media only screen and (max-width: 596px) { .hide-for-large { display: block !important; width: auto !important; overflow: visible !important; max-height: none !important; font-size: inherit !important; line-height: inherit !important; } } @media only screen and (max-width: 596px) { table.body table.container .hide-for-large, table.body table.container .row.hide-for-large { display: table !important; width: 100% !important; } } @media only screen and (max-width: 596px) { table.body table.container .callout-inner.hide-for-large { display: table-cell !important; width: 100% !important; } } @media only screen and (max-width: 596px) { table.body table.container .show-for-large { display: none !important; width: 0; mso-hide: all; overflow: hidden; } } @media only screen and (max-width: 596px) { table.body img { width: auto; height: auto; } table.body center { min-width: 0 !important; } table.body .container { width: 95% !important; } table.body .columns, table.body .column { height: auto !important; -moz-box-sizing: border-box; -webkit-box-sizing: border-box; box-sizing: border-box; padding-left: 16px !important; padding-right: 16px !important; } table.body .columns .column, table.body .columns .columns, table.body .column .column, table.body .column .columns { padding-left: 0 !important; padding-right: 0 !important; } table.body .collapse .columns, table.body .collapse .column { padding-left: 0 !important; padding-right: 0 !important; } td.small-1, th.small-1 { display: inline-block !important; width: 8.33333% !important; } td.small-2, th.small-2 { display: inline-block !important; width: 16.66667% !important; } td.small-3, th.small-3 { display: inline-block !important; width: 25% !important; } td.small-4, th.small-4 { display: inline-block !important; width: 33.33333% !important; } td.small-5, th.small-5 { display: inline-block !important; width: 41.66667% !important; } td.small-6, th.small-6 { display: inline-block !important; width: 50% !important; } td.small-7, th.small-7 { display: inline-block !important; width: 58.33333% !important; } td.small-8, th.small-8 { display: inline-block !important; width: 66.66667% !important; } td.small-9, th.small-9 { display: inline-block !important; width: 75% !important; } td.small-10, th.small-10 { display: inline-block !important; width: 83.33333% !important; } td.small-11, th.small-11 { display: inline-block !important; width: 91.66667% !important; } td.small-12, th.small-12 { display: inline-block !important; width: 100% !important; } .columns td.small-12, .column td.small-12, .columns th.small-12, .column th.small-12 { display: block !important; width: 100% !important; } table.body td.small-offset-1, table.body th.small-offset-1 { margin-left: 8.33333% !important; Margin-left: 8.33333% !important; } table.body td.small-offset-2, table.body th.small-offset-2 { margin-left: 16.66667% !important; Margin-left: 16.66667% !important; } table.body td.small-offset-3, table.body th.small-offset-3 { margin-left: 25% !important; Margin-left: 25% !important; } table.body td.small-offset-4, table.body th.small-offset-4 { margin-left: 33.33333% !important; Margin-left: 33.33333% !important; } table.body td.small-offset-5, table.body th.small-offset-5 { margin-left: 41.66667% !important; Margin-left: 41.66667% !important; } table.body td.small-offset-6, table.body th.small-offset-6 { margin-left: 50% !important; Margin-left: 50% !important; } table.body td.small-offset-7, table.body th.small-offset-7 { margin-left: 58.33333% !important; Margin-left: 58.33333% !important; } table.body td.small-offset-8, table.body th.small-offset-8 { margin-left: 66.66667% !important; Margin-left: 66.66667% !important; } table.body td.small-offset-9, table.body th.small-offset-9 { margin-left: 75% !important; Margin-left: 75% !important; } table.body td.small-offset-10, table.body th.small-offset-10 { margin-left: 83.33333% !important; Margin-left: 83.33333% !important; } table.body td.small-offset-11, table.body th.small-offset-11 { margin-left: 91.66667% !important; Margin-left: 91.66667% !important; } table.body table.columns td.expander, table.body table.columns th.expander { display: none !important; } table.body .right-text-pad, table.body .text-pad-right { padding-left: 10px !important; } table.body .left-text-pad, table.body .text-pad-left { padding-right: 10px !important; } table.menu { width: 100% !important; } table.menu td, table.menu th { width: auto !important; display: inline-block !important; } table.menu.vertical td, table.menu.vertical th, table.menu.small-vertical td, table.menu.small-vertical th { display: block !important; } table.menu[align="center"] { width: auto !important; } table.button.small-expand, table.button.small-expanded { width: 100% !important; } table.button.small-expand table, table.button.small-expanded table { width: 100%; } table.button.small-expand table a, table.button.small-expanded table a { text-align: center !important; width: 100% !important; padding-left: 0 !important; padding-right: 0 !important; } table.button.small-expand center, table.button.small-expanded center { min-width: 0; } }   Hola, Muchos de nuestros clientes (y no clientes) nos preguntan por las líneas ICO. Son unas líneas muy conocidas pero muchos empresarios tienen dudas sobre como funcionan. Resumiendo (para no aburrirte) son líneas con fondos públicos pero que se gestionan a través de bancos... lo que tiene ventajas y desventajas: - Desventajas: bancos como intermediarios. Con sus gestiones, sus análisis y sus propios objetivos e intereses. - Ventajas: supone poder ampliar tu rango de acción y no presentar tu operación ante un único organismo, sino ante decenas. La matemática es clara: a más opciones, más posibilidades. En Iberfinancia nos hemos especializado en las líneas ICO porque creemos que son la mejor opción para muchas empresas a la hora de conseguir los fondos que necesitan. Si quieres saber más sobre el ICO y como podemos ayudarte a conseguir el tuyo, sigue el enlace y te llamo: Haz clic aquí para que te llame. Un saludo, Cristina   Deseamos que esta comunicación haya resultado de su agrado. No obstante, si prefiere no recibir más comunicaciones de este tipo, siga este enlace. Tenga en cuenta que esta comunicación está dirigida a: freebsd-questions@freebsd.org. De conformidad con lo establecido en la Ley 34/2002 Lssice le comunicamos que este escrito procede de Search Task, s.l.u con cif B70296009 y domicilio en Calle Benito Blanco Rajoy 7-9, 1º, 15006, A Coruña, con finalidad publicitaria. Search Task cumple estrictamente la normativa vigente en el ámbito de protección de sus datos en Internet. Según dispone la Ley Orgánica 15/1999, de 13 de diciembre, de Protección de Datos de Carácter Personal, le recordamos que tiene derecho legal de acceso, rectificación, cancelación u oposición escribiendo a searchtaskmail@gmail.com. De conformidad con lo dispuesto en dicha jurisprudencia, Search Task le comunica que los datos que nos proporcione formarán parte de un fichero automatizado de datos de carácter personal, responsabilidad de dicha entidad, con la finalidad de gestionar las comunicaciones con la misma. Sus datos han sido obtenidos de una fuente pública. El contenido del presente comunicado es confidencial y únicamente está dirigida y autorizada su lectura al consignatario original, quedando prohibidos cualquier comunicación, o difusión, tanto del comunicado como de su contenido. From owner-freebsd-questions@freebsd.org Wed Jun 27 04:03:46 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 42BC1102CB04 for ; Wed, 27 Jun 2018 04:03:46 +0000 (UTC) (envelope-from paultackes1946@gmail.com) Received: from mail-wm0-x234.google.com (mail-wm0-x234.google.com [IPv6:2a00:1450:400c:c09::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id B621192136 for ; Wed, 27 Jun 2018 04:03:45 +0000 (UTC) (envelope-from paultackes1946@gmail.com) Received: by mail-wm0-x234.google.com with SMTP id i139-v6so4061042wmf.4 for ; Tue, 26 Jun 2018 21:03:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=Is8VFdS26qg6swwise1BOe/+kwwZYd90kkAU74aN0N4=; b=L8QtG5qUW3cyQSn79cwog+nRxCL9dX+3eK8/m2DD0M54CvifWevynCvG98WM4cmYGi U8DetBR24S3Lr9iRzn1Fl2ERPKcRVk0VU6ecS3Xb+gbWw2B4Xbhf6uiHLXiSy8aySm8y L1pxsdOY5jcyvY7UnSv74vwc1dksk+QMI0bO9jJM7zdYSE90g+JG4866wUUljK1gYc+3 zd+XgZiMHurlA1gxMq7H3X7cWAUeFVzyJZ64pc4PELfk7iX9wXenYCqhQx92GuenwFeb 1gWEgL0JuSk6kd6K5RRsbQbIhGdc439O1HYL+AZFbJGwIO+kgMYSZhTl9xecdB8402wN FX+Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=Is8VFdS26qg6swwise1BOe/+kwwZYd90kkAU74aN0N4=; b=HGdXEUu1IuB1zogRQxXlAGbwQUxuq7MgysP3RrFIuj0RjAmg5JRt05ewj0b0PHm06R Pt3urauD9EZifwN/t8m51WzrHDoNsJim1DO/TcYZOjvF1KasNLi18BCDo0j9uGEdRmcq hI62KQdQEFD1oitCdmGK4kkfXNRq/XLcZYHvLlcH9OtDdlsywvWccvszZRwl0NcUOfcc TgbRjaSLAfgFpkvsRuFpC0pcIa2eQEZPmhw9zhw9gprVQTHruB/p4t3w8/9EotTTxVhQ GiA9yEAwbH+WHDMztwaBgE35eSlNXsQzcXGxJ8ALPqp057XyU+zyGCboFT0doQc3Ep9/ Cjnw== X-Gm-Message-State: APt69E1Hj6l7QRLg/K5evCvGKAEjihVpouKHyWL1V4Z0l4hR1ua9EiKd IckwgvnbDQCocRq7TE+tcFsk4WK8tljukUm67fMrLA== X-Google-Smtp-Source: AAOMgpc/suNUUlQe3I++6R33xGMmVGCsS/3v8SqhoXUSZ2Y7WWov74MU/2n9D9wJA1acsUfz8zHnV+kAM/oAvN5qayM= X-Received: by 2002:a1c:8410:: with SMTP id g16-v6mr3443353wmd.26.1530072224565; Tue, 26 Jun 2018 21:03:44 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:adf:ea85:0:0:0:0:0 with HTTP; Tue, 26 Jun 2018 21:03:43 -0700 (PDT) Received: by 2002:adf:ea85:0:0:0:0:0 with HTTP; Tue, 26 Jun 2018 21:03:43 -0700 (PDT) From: Paul Tackes Date: Tue, 26 Jun 2018 21:03:43 -0700 Message-ID: Subject: No internet To: freebsd-questions@freebsd.org X-Mailman-Approved-At: Wed, 27 Jun 2018 04:23:34 +0000 Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jun 2018 04:03:46 -0000 Help From owner-freebsd-questions@freebsd.org Wed Jun 27 05:11:17 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 09D2A10008D3 for ; Wed, 27 Jun 2018 05:11:17 +0000 (UTC) (envelope-from ralf.mardorf@rocketmail.com) Received: from sonic302-19.consmr.mail.ir2.yahoo.com (sonic302-19.consmr.mail.ir2.yahoo.com [87.248.110.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 83A3294844 for ; Wed, 27 Jun 2018 05:11:16 +0000 (UTC) (envelope-from ralf.mardorf@rocketmail.com) X-YMail-OSG: 7p4V7ykVM1mJztt1OTbTP2neboRyebHz7AKsY4moyheNN5t6sw5_Jtar4PaUC3Y DkbUOfg8MTX6jkXbsI0OWgTAUXSneDwUGBUXyNz4oHaftOarixJCXfA65SeMeot6hE.EBrM0Qmsc PiOytUSCG19oGknEI7L38nS6WNTC.lWRhtw4EcBQeUNFE5A4xQJp8wfT4_SycEW_1EzUYuLd9OSa CQeaglxCZeyrurgxroaYiWGTs.78X057_wOdEo6kI0PKlmo.lJOdJDGc.s4DGbsx5pDhofEHwVHq q7xBRSaln.VmWMbEaV6suTNtS15dBG0_2bkFKUtnZEzu5F7difio2HnRRN6yM7zE52JgCDNlz.og CMWZijvpsrIobNKYkoG9LKjcoxZVxxAgvGuT6pnsQ3b73dWIwLOqKfEiojhSOwq51IxGrOybGSwg Dzus33U6NkO3u53NkVj4Wo6ICWyDWmQeulsUcnPT5fEEx0rpwvoOEtAfaYTfdFVv5feBUXDqdQVM rKwsWr47Opcpa9kj_u5ODQIceFJfPQFQ.Bom18WK_6mwv7op_Xe70M0QJSGrm240ClWrZ3PhWBan TPWzrgdOrCGzwEHXBg4PT6X_yrMeyNCVHdKekawLdzfQi1PJ8Xzq8dB5YRhQG4rROoKKKwhYa1n. ULp36yKo8Ibeh0XM8bv8__5w_N2UeQBDm21NXwOKC7tcoRpFOwG1xO2CCItViqV.WB5l3OOdfkLR GZ0aZyDKjdADwfsySN2AE2s4grKgRbS02Uoyns6vh46_Tb0XE9rQL.bq.oLAPaG1H_chjzhp5uQA lxx3KuNRpaSRjqsJdGgFfexre.OFVNFycgH_SnZNuvl0O2ledc3vT6OWPV6WTisjTEth7a4dgtWf w8xsVHWj7eMhZ16hkKxELnGjmx5_928aLBVW_H1PUZEAraz.GEWil0tpb_qyJZ6YiVU81zjvdbsL _P90mDgyEsp2HVXlksglOAHga.uyf4GskUmMp0ydnjr4- Received: from sonic.gate.mail.ne1.yahoo.com by sonic302.consmr.mail.ir2.yahoo.com with HTTP; Wed, 27 Jun 2018 05:11:09 +0000 Received: from x4dbfc64a.dyn.telefonica.de (EHLO archlinux) ([77.191.198.74]) by smtp430.mail.ir2.yahoo.com (Oath Hermes SMTP Server) with ESMTPA ID 9abeb3a547bf008acf310fe699fa28c6; Wed, 27 Jun 2018 05:11:04 +0000 (UTC) Date: Wed, 27 Jun 2018 07:11:03 +0200 From: Ralf Mardorf To: freebsd-questions@freebsd.org Cc: Paul Tackes Subject: Re: No internet Message-ID: <20180627071103.680b4fd0@archlinux> In-Reply-To: References: X-Mailer: Claws Mail 3.16.0git213 (GTK+ 2.24.32; x86_64-arch-linux-gnu) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jun 2018 05:11:17 -0000 On Tue, 26 Jun 2018 21:03:43 -0700, Paul Tackes wrote: >Help You either want to sent the subject help with an empty message body to freebsd-questions-request@freebsd.org and _not_ to freebsd-questions@freebsd.org or you need to read http://www.catb.org/esr/faqs/smart-questions.html since the subject "No internet" without details makes no sense at all, since you are successfully using the Internet. From owner-freebsd-questions@freebsd.org Wed Jun 27 10:36:04 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8DC551019FF4 for ; Wed, 27 Jun 2018 10:36:04 +0000 (UTC) (envelope-from mehdizadeh.fatemeh@gmail.com) Received: from mail-ua0-x233.google.com (mail-ua0-x233.google.com [IPv6:2607:f8b0:400c:c08::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 163FF76E3B for ; Wed, 27 Jun 2018 10:36:04 +0000 (UTC) (envelope-from mehdizadeh.fatemeh@gmail.com) Received: by mail-ua0-x233.google.com with SMTP id g6-v6so943683uam.2 for ; Wed, 27 Jun 2018 03:36:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=D6n1qa8smPaXGYNWd++JfZ3iXOupiOH9zyMZIYWb6b8=; b=g0qKYQAMFrq3jmUpoTEVLqFVG1ml5L0Pg1BNzQlFh91UDxkujtje0kyshYTRY9buGk 0oMVG9ujDRjGeDpQ3ji/YWpkTth9lmkghrk8IP1SkFSCMVdW5lD/uAFWoLE+6bIvHc9X Qwk4bxnYusa4lS62IIq4dqo+BgrwSOEDfyJKiXUngjC/xzfBK59AEJwja+lhxanAorLM qPjO0kNoldPs7MEMoQrU2TDr55vK0kT6Bn4G/bzQi+bTbavnuQgjSsHYJcUfB1lGeFCl OQCVALFkwRWiA4aCnyH89oC73pPtg6m96IZBuCbAS/exgthkYfOl7uy1lcJC/xkiL479 3Dkw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=D6n1qa8smPaXGYNWd++JfZ3iXOupiOH9zyMZIYWb6b8=; b=VLpob5lQgpdjLzM5+K3vCnKTb8xfcLM2vEHXBppaWWshn26t5NmrY4gcelfcrYz2yi p5i2lV6ApdgZzxnzGA5RTwSVYktuSZcLRF9C5Eu1SDd7QYevstnVipY4CLvU4Go/ppso sKbFsYp0wDUAYSNSf3igO8Cqr5IdsU7JLhJGmcXrvhB70pdqjC86lRoPfxd326Pp7/ov iG5R0d0LH67n1Mdmqz1DqsSYyuc1lCaGOgLxqBAIe01FZNg0ZHLqcvgR5GROUhL4+mA+ NlhxQvpv9fUhnaSao/QIOh18we0tdI6ZKAEdAFSf8ffE78LUe0jqqS9FmftqiiYJRdrd d1QQ== X-Gm-Message-State: APt69E3jDCnUlvnKI9VHNfAE3Yc9HE0b7ZFJ+fNd9qsa1HOEAAR4AcSJ AjVoL9RblqD0Ej28Rr5pu/vOJwv0J26lyFJIaWo= X-Google-Smtp-Source: AAOMgpf6R+vgT02Zd4YTpu+M1BHJ6muOGoKFlFe0RFZD67IYRM/BO9tQ5UxLAOXj5M2NlG3Vj7vejB7Jr2i1hRirD0M= X-Received: by 2002:ab0:1855:: with SMTP id j21-v6mr3300271uag.4.1530095763414; Wed, 27 Jun 2018 03:36:03 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:ab0:4f16:0:0:0:0:0 with HTTP; Wed, 27 Jun 2018 03:36:03 -0700 (PDT) From: Fatemeh Mehdizadeh Date: Wed, 27 Jun 2018 15:06:03 +0430 Message-ID: Subject: remove messages at boot time To: freebsd-questions@freebsd.org Content-Type: text/plain; charset="UTF-8" X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 27 Jun 2018 10:36:04 -0000 Hi all. my system show this message at startup "syms=[- /boot/kernel/geom_eli.ko size 0x35ff8 at 0x1c17000 ". How can I remove this message? Thanks From owner-freebsd-questions@freebsd.org Thu Jun 28 05:05:26 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 219EC1012094 for ; Thu, 28 Jun 2018 05:05:26 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass DE-2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 910278986E for ; Thu, 28 Jun 2018 05:05:25 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([92.195.97.38]) by mrelayeu.kundenserver.de (mreue005 [212.227.15.167]) with ESMTPA (Nemesis) id 0MLCD7-1fYgEU32fZ-000ILH; Thu, 28 Jun 2018 07:05:15 +0200 Date: Thu, 28 Jun 2018 07:05:15 +0200 From: Polytropon To: Philipp Vlassakakis Cc: freebsd-questions@freebsd.org Subject: Re: FreeBSD 11.1: chroot users / provide pre-built binaries Message-Id: <20180628070515.3591314b.freebsd@edvax.de> In-Reply-To: References: Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-Provags-ID: V03:K1:khUMbM+y0uTw9h+XiAPPN6ow1CfZIC0/RBx2cw2r464Dcq7P7Cl cX0je3A4qwfC2N9a+88DzO2Sua8P5Y17sE6oEGW2vRf3mSxMxhYT+uLLuOnobPQrQdBG+G9 BDS/coU1Cl7sl40LHCB1HEDZWtBsa00H1Q5EvU5YvV78t/x4nFxIhOgkUF/ZQsRm4IRncnY x5iToDsonD41dF7NiHH5Q== X-UI-Out-Filterresults: notjunk:1;V01:K0:zIRp3AOLTnM=:HvbQgOlwlR0aUWMdPTiLoB Czy4+DJ6oQU3A8l06wjjYAalap4rvbw5j+nMSLRYalaGF7XV8OvSRX4Km0TIzEecPFTKkrhHg HT+RzmYmJbGnWsflbN/MJ04eppidXuAgNtwDLQ0LLsIa8d5xdbSXzghh+F+6054pirVNCqmdw b0p/ZN/oBYVYGDvKZuQ0yKWOleJbL5Sbz7nNhkZ+TvmFzOPQ52yrk1cbwlZmYkZ2b3h3dMxoT vQvQRKCNDMXvHuyIu1uTWmVBHpSaxsj8FJ/JL41oUw98lPdwB/ghp9gryqUbnpyEmF/DL4CHt 42JQh40ysEkaAMZVzy0d9Ig5eOP/KWvk9vI2D06RJVFPThZLI8JiisQf4u3oOgUYO8Vm1oKR+ PeXky5xE2k9a6dmcuq7lp4+4rNK21tdrpPkEQGYTSEjwkay3dwnUJS3f5DR5MEgMmJqBqO5rS XOFhmLs3DbGltrDZSS98oU2J0IIGHyoJ7ft/fvWG1F1Dux6mfW/4Y6CksIDoejFJBU+pjKfZE Fxazvc88FW9h3NceH9246+cxXCLKvXOaFw7oWBTmnshz0ZJ7wdo6ktFxD/7PluQ2wHSYamHyC LYwdkadbpelq2fpAO5aBgMFtuj6ENWXVArm+x4Sb5yWq5ELlNoYjQwsVDXp3E+mO5wMmH/bi8 iGWJa0raSHzlJ3Gu20W3QgckgcZbs9TpeBEWmgVCDapRPhRsn1AETkmpjc1fNGTh8HlTJA2NC r3cxq/BpnM9Nwq8x X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 05:05:26 -0000 On Mon, 25 Jun 2018 19:45:02 +0200, Philipp Vlassakakis wrote: > Scenario: I have a fileserver with several hundreds local users. > > Each user should be locked into his $HOME (so they can’t cd into > any other user-directory, /root etc.), but can login via SSH,SFTP > and upload files. This is commonly accomplished by setting the user directories permissions to rwx/---/---. When group and others don't have the x attribute (executable) on _directories_ they cannot be changed into. For /root, this should be standard. The typical permissions for new user directories are rwx/r-x/r-x which allows changing into other people's directories and reading them, which is what you want to prevent. But you're saying "fileserver" and "login via SSH". On a fileserver, you typically don't provide interactive logins. Is this intended? > Via ZFS exec,devices,setuid is set to „off", so they can't > execute any self-uploaded binaries, except binaries, which > are provided by me. (cp, mv, rm, rmdir, sh, touch, chgrp, > groups, pwd etc.). This can be done both with ZFS (easier due to datasets) or regular mountpoints (requires /home to be a separate partition that can get the -o noexec mount option). But sh (and whatever you have set as $SHELL for the user) is a problem. > The binaries are included via $PATH. Make sure the users cannot change $PATH. This is tricky as it is a variable that "advanced" users can add ~/bin or . to. They can then execute a previously uploaded binary without problems (even without the "advanced technique" of "./"). For scripts, being able to execute them (after setting +x) is not even needed - "sh " is suffient and doesn't require any execution permission. > On the one hand I want to save space, so that the binairies > don't have to be in every $HOME, > on the other hand the work is reduced if a binary needs to be > updated. If you want a set of "whitelisted binaries", i. e., a fixed and defined set of binaries a user can call interactively, you'll still be facing the problem mentioned above: The shell. If you allow interactive logins, it's more or less GAME OVER as the shell sadly has too much power. Sure, creating a directory like /secbin (secure binaries), making copies of the binaries you explicitely want to allow, and only have PATH=/secbin could be a starting point, but as mentioned above, this won't work. The easiest way to prevent execution of any (!) programs is to disallow interactive access. Tools like scp and sftp will still work, but ssh won't. Setting $SHELL to /sbin/nologin or /does/not/exist in /etc/passwd for those users will prevent the use of ssh (without completely deactivating it for the whole system), and still allow scp uploads. But changing $PATH isn't sufficient. If the user has access to /bin, /usr/bin or /usr/local/bin, he can manually call binaries from there (via full path). This is where chroot can help. > Is there any simple way to lock users into their Home-Directory > without editing sshd_config every time? No _simple_ way I know of... -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Thu Jun 28 05:14:53 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 8F6461012F2B for ; Thu, 28 Jun 2018 05:14:53 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from mout.kundenserver.de (mout.kundenserver.de [212.227.126.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "mout.kundenserver.de", Issuer "TeleSec ServerPass DE-2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id ECD5089E25 for ; Thu, 28 Jun 2018 05:14:52 +0000 (UTC) (envelope-from freebsd@edvax.de) Received: from r56.edvax.de ([92.195.97.38]) by mrelayeu.kundenserver.de (mreue001 [212.227.15.167]) with ESMTPA (Nemesis) id 0M1eUE-1gS0h5007O-00tmFE; Thu, 28 Jun 2018 07:14:45 +0200 Date: Thu, 28 Jun 2018 07:14:45 +0200 From: Polytropon To: Fatemeh Mehdizadeh Cc: freebsd-questions@freebsd.org Subject: Re: remove messages at boot time Message-Id: <20180628071445.347aa0a0.freebsd@edvax.de> In-Reply-To: References: Reply-To: Polytropon Organization: EDVAX X-Mailer: Sylpheed 3.1.1 (GTK+ 2.24.5; i386-portbld-freebsd8.2) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Provags-ID: V03:K1:tt+xxyFRXE2gL6Cf6Qu1QsMTs3ofDOd7XKZyMPYjE3+Xxk+944e m53DY5dvQ5SCRQPPWQ95Y3b6xcmB6D8kEzFG3FStuJU/0gwYhQvUfjYshCvaKkcc0h/QYI3 heMp4g6jAJno9xXeiNTQDGaOsFcUNfkiWZ/bIz+CqRiIMw4sbsd8smn8ropdKc/MdO8sSvP DsbIRU8tBokndEDvF1DHg== X-UI-Out-Filterresults: notjunk:1;V01:K0:2FyJrdwzkxk=:OfQdUXh0Hqo4GbPtw3nafS jW01QeTSL7d/5uhLX9akWwI6twbnN5UOzvy3TPjo3jZ7s++Eb7ZFLVfmc+net7Gs1ozHKlf7g u6Fn3rYjySDolCIw/Dp8LXnOKU2h9dlrSBvkvRV9/hzXCNPq6+oszAiJZkHvzmI6cVXS+3f+S nSFr87xDYQKEBqRVBB9m4UqbXSM6KTcLSSHa7QlcdFWwSXeBMdCDUmCrArmc8LAORA/GzbkIY QhutF0f/fU3cv2zxr/ucye0JScMgDu9rzNDqHy8tDFaHGorX2RePzYsg1F3UMWfvDzprvMkpd Z/ivjv6m3fxPz5So5vXDPxLWPsqqLy2boxIOYZQR66J5pPMxACjDn/mmB1gINbMDPIWPmx7Yp t1Clgok4otTO2dKSmK9/xxq8+278aA8Gebu+W/cB++BjlwTrUhTjG8gmYmwjqPjXWq/FaUs9J 9PXsvoCD6OYMA+lgD9kEvp3YdWvFnnjX69FIElMjJzIAtm9grTy1iS2ISt5EwDSRmX9DnYN1+ fl2OrVwihDynIXo87cWtZQvW7IbN7/j9BlHDfHQes2zIfLvCHSfmFZUNfwh/ZW9Gb1uidpB+P 2ZUzo1VTggJG/eDQ/ZjMR80Jv3fKAFuuoAfUIFyfDttZ0B0U0y1yrE0isHfxOSxm7S9LifIVx /9G9zkqxRNJhd2xbrjlaitgXIcrDVL674p9P2U7IWr2irRRZxr6AAbTmOR34hhedl7SZeZzdT m1GQnXpoHscpEkmz X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 05:14:53 -0000 On Wed, 27 Jun 2018 15:06:03 +0430, Fatemeh Mehdizadeh wrote: > Hi all. > my system show this message at startup "syms=[- > /boot/kernel/geom_eli.ko size 0x35ff8 at 0x1c17000 ". > > How can I remove this message? There is a compile-time preprocessor macro named ELF_VERBOSE having an effect in /usr/src/sys/boot/common/load_elf.c, but the message you see seems to be written to the console when ELF_VERBOSE is _not_ set. You could change that file and recompile + reinstall the corresponding parts of the OS to hide the (harmless) diagnostic message. -- Polytropon Magdeburg, Germany Happy FreeBSD user since 4.0 Andra moi ennepe, Mousa, ... From owner-freebsd-questions@freebsd.org Thu Jun 28 09:47:37 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DC8231028299 for ; Thu, 28 Jun 2018 09:47:36 +0000 (UTC) (envelope-from doruntina.alshiqi@universitetiaab.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 3FEE473B4D for ; Thu, 28 Jun 2018 09:47:36 +0000 (UTC) (envelope-from doruntina.alshiqi@universitetiaab.com) Received: by mailman.ysv.freebsd.org (Postfix) id F2C8B1028297; Thu, 28 Jun 2018 09:47:35 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 995651028295 for ; Thu, 28 Jun 2018 09:47:35 +0000 (UTC) (envelope-from doruntina.alshiqi@universitetiaab.com) Received: from mail-ot0-x22e.google.com (mail-ot0-x22e.google.com [IPv6:2607:f8b0:4003:c0f::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 12B9373B4C for ; Thu, 28 Jun 2018 09:47:34 +0000 (UTC) (envelope-from doruntina.alshiqi@universitetiaab.com) Received: by mail-ot0-x22e.google.com with SMTP id n24-v6so5430995otl.9 for ; Thu, 28 Jun 2018 02:47:34 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=universitetiaab-com.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to; bh=dsSDtW6MT6c/kht/wPWOXUwfjCYwWFV02GOKUqEIilA=; b=CZXFdl7vnBc42aSyd5w+Fr/MbvQPMi1K6hQ6XSfzb1pKPiCuCvA2Zvu2xKwBqARyxk HuGYNhp9nyC79Smt4cmJ0DYYKXaDwEQRoZt2JpIOALGW+1+L4O7sseTZaELVGF31479A U2Sa2N6ULJ8nE+mN64AgKFEcr0IjKMoJqYOK5ET0Ss5FQNJYC7l8yDxKgRQsSRhOOMFh p/LxPG+8rgiWe0K7RV8NwFb4ElY7fvA9CTNLZmIUaMXtUA912MW20n3oyNFQbojxJUlk eCOmGCsv4Pd86IxK4pmgSV7yui2yuGz9/uP8BrfDZhgGTxdh7fHGexjpP4TZGSfu31op hGoQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=dsSDtW6MT6c/kht/wPWOXUwfjCYwWFV02GOKUqEIilA=; b=L/iD+o/m9QrAsTxF45YK7dkffBc+OKYFFzuA5bRAgcaLDAzmm1pP0vlC8ayjeHf0wv LF3b1rUyinnWa766enHsGayut6RocYBKdX4ZKRPblFcZDRdgXLbpmxjpjbVzxBcPGFqJ EQEVSpi3oXwvgijS88dKBx/qnUbkv+FmFSvzcPm9bCPQiYqYd/Y7pQymB/z4aJl+JVO/ Vb2ywgZKGaBaefO69uGKcuABOl8I2RxGNFnXGbdov37gFuS/QxttgrPAwqPq8llxt+I9 0nvvTWtPbLfTfrsfhVy5sEzIyFUEinddRmWzZ4joJFRfeybetwHmC5CnZ2wxeoimZ2zr RXxQ== X-Gm-Message-State: APt69E00iXMcss8fkOcOFczUeu8A12rGkmHV4lbM8bRZ6bLHzPhWWKLT kW0JIaSfi1swj+7kkfSdVjtCoOytAbvdzcMK76LqOkM= X-Google-Smtp-Source: AAOMgpetMNYOL4XcPwNENmK63kSFpdairWNXzKMgjdLz/1uUMBqQDjrLAvVPX2xh0tAzJi9Z0Fc4w2f1A2zpNZxK6u8= X-Received: by 2002:a9d:3526:: with SMTP id o35-v6mr5284918otc.137.1530179253893; Thu, 28 Jun 2018 02:47:33 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:aca:c48d:0:0:0:0:0 with HTTP; Thu, 28 Jun 2018 02:46:53 -0700 (PDT) From: Doruntina Alshiqi Date: Thu, 28 Jun 2018 11:46:53 +0200 Message-ID: Subject: Article - AAB International Summer Academy To: questions@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 09:47:37 -0000 By way of introduction my name is Doruntina Alshiqi, a Public Relations Officer in AAB College, which is located in Pristina, Kosovo. I am writing to you regarding the AAB International Summer Academy that will be held in AAB College from 13-24th of August 2018. We are kindly inviting you to publish this article in your official website. Attached you can find the article. Also, please confirm your positive/negative response to our request. It will be our honor to have the article in your website. Here is the official link https://iss.aab-edu.net/ Should you have any questions furthermore, please contact us. Looking forward to hearing from you. Best regards, Doruntina Alshiqi From owner-freebsd-questions@freebsd.org Thu Jun 28 13:35:25 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 07DA61034934 for ; Thu, 28 Jun 2018 13:35:25 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from inet08.hamilton.harte-lyne.ca (inet08.hamilton.harte-lyne.ca [216.185.71.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "inet08.hamilton.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id A13B37C28D for ; Thu, 28 Jun 2018 13:35:24 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from localhost (localhost [127.0.0.1]) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTP id B0B4762614 for ; Thu, 28 Jun 2018 09:35:17 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from inet08.hamilton.harte-lyne.ca ([127.0.0.1]) by localhost (inet08.hamilton.harte-lyne.ca [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uNrkHck5E60y for ; Thu, 28 Jun 2018 09:35:15 -0400 (EDT) Received: from webmail.harte-lyne.ca (inet04.hamilton.harte-lyne.ca [216.185.71.24]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTPSA id B115B62600 for ; Thu, 28 Jun 2018 09:35:15 -0400 (EDT) Received: from 216.185.71.44 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Thu, 28 Jun 2018 09:35:15 -0400 Message-ID: <4c9d4c7bcb994b1e086ae55ebd0f64b3.squirrel@webmail.harte-lyne.ca> Date: Thu, 28 Jun 2018 09:35:15 -0400 Subject: Posfix and Amavisd-new in FreeBSD jail From: "James B. Byrne" To: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 13:35:25 -0000 Dose anyone on the list run Postfix with amavisd inside a FreeBSD jail? I am running into this problem: /usr/local/sbin/amavisd[42231]: (!)DENIED ACCESS from IP 127.0.32.1, policy bank '' The cloned lo interface used by the jail is assigned address 127.0.32.1: lo2: flags=8049 metric 0 mtu 16384 options=600003 inet 127.0.32.1 netmask 0xffffffff inet6 ::32 prefixlen 128 nd6 options=21 groups: lo The postfix and amavisd configuration files refer only to 127.0.0.1 The hosts file contains this: ::1 localhost localhost.harte-lyne.ca 127.0.0.1 localhost localhost.harte-lyne.ca Does anyone have this working properly inside a jail. What do I need to do to get it to work? -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 From owner-freebsd-questions@freebsd.org Thu Jun 28 13:54:41 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6A13E1035C71 for ; Thu, 28 Jun 2018 13:54:41 +0000 (UTC) (envelope-from security@mail.instagram.com) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id E04427D072 for ; Thu, 28 Jun 2018 13:54:40 +0000 (UTC) (envelope-from security@mail.instagram.com) Received: by mailman.ysv.freebsd.org (Postfix) id 9DC141035C70; Thu, 28 Jun 2018 13:54:40 +0000 (UTC) Delivered-To: questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5F2C21035C6F for ; Thu, 28 Jun 2018 13:54:40 +0000 (UTC) (envelope-from security@mail.instagram.com) Received: from mx-out.facebook.com (66-220-155-139.mail-mail.facebook.com [66.220.155.139]) (using TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8664E7D071 for ; Thu, 28 Jun 2018 13:54:39 +0000 (UTC) (envelope-from security@mail.instagram.com) Received: from facebook.com (5rFsedoKXdGVD/Qo4Esgt3FI5lGOoPLVC9+mtg3NKeOV/3IN5nTvH70K0JhVmXwe 2401:db00:1110:50e8:face:0000:0015:0000) by facebook.com with Thrift id cb1ffd787ada11e892e9248a0796b28a-2affaa28; Thu, 28 Jun 2018 06:54:36 -0700 X-Facebook: from 2401:db00:1120:8051:face:0:2a:0 ([MTI3LjAuMC4x]) by thrift.facebook.com with HTTP (ZuckMail); Date: Thu, 28 Jun 2018 06:54:36 -0700 To: questions@freebsd.org Subject: =?UTF-8?B?YmFyb25ldG9tbGksIM+Ez44=?= =?UTF-8?B?z4HOsSDOvM+Azr/Pgc61zq/PhM61IM69zrEg?= =?UTF-8?B?zrXPgM65z4PPhM+Bzq3PiM61z4TOtSDPg8+Ezr8=?= =?UTF-8?B?IEluc3RhZ3JhbSDOtc+NzrrOvw==?= =?UTF-8?B?zrvOsQ==?= X-Priority: 3 X-Mailer: ZuckMail [version 1.00] From: "Instagram" Reply-to: Instagram Errors-To: security@mail.instagram.com X-Facebook-Notify: ig_login_email; mailid=HMTUzMDE5Mjg0MTc5MDc1NzpxdWVzdGlvbnNAZnJlZWJzZC5vcmc6OTkx Feedback-ID: 9999:ig_login_email:Facebook X-FACEBOOK-PRIORITY: 0 X-Auto-Response-Suppress: All Message-ID: <2479cd692102bdec06b1c995aef25e65@thrift.facebook.com> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 13:54:41 -0000 From owner-freebsd-questions@freebsd.org Thu Jun 28 14:31:59 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id A7AA51001F3F for ; Thu, 28 Jun 2018 14:31:59 +0000 (UTC) (envelope-from herbert@gojira.at) Received: from mail.bsd4all.net (mail.bsd4all.net [IPv6:2a01:4f8:191:217b::25]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.bsd4all.net", Issuer "Let's Encrypt Authority X3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4ADF77E4CC for ; Thu, 28 Jun 2018 14:31:58 +0000 (UTC) (envelope-from herbert@gojira.at) Date: Thu, 28 Jun 2018 16:31:56 +0200 From: "Herbert J. Skuhra" To: freebsd-questions@freebsd.org Subject: Re: Posfix and Amavisd-new in FreeBSD jail Message-ID: <20180628143156.GA38122@mail.bsd4all.net> References: <4c9d4c7bcb994b1e086ae55ebd0f64b3.squirrel@webmail.harte-lyne.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4c9d4c7bcb994b1e086ae55ebd0f64b3.squirrel@webmail.harte-lyne.ca> User-Agent: Mutt/1.10.0 (2018-05-17) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 14:31:59 -0000 On Thu, Jun 28, 2018 at 09:35:15AM -0400, James B. Byrne via freebsd-questions wrote: > Dose anyone on the list run Postfix with amavisd inside a FreeBSD > jail? I am running into this problem: > > /usr/local/sbin/amavisd[42231]: (!)DENIED ACCESS from IP 127.0.32.1, > policy bank '' > > The cloned lo interface used by the jail is assigned address 127.0.32.1: > > lo2: flags=8049 metric 0 mtu 16384 > options=600003 > inet 127.0.32.1 netmask 0xffffffff > inet6 ::32 prefixlen 128 > nd6 options=21 > groups: lo > > The postfix and amavisd configuration files refer only to 127.0.0.1 > > The hosts file contains this: > > ::1 localhost localhost.harte-lyne.ca > 127.0.0.1 localhost localhost.harte-lyne.ca > > Does anyone have this working properly inside a jail. What do I need > to do to get it to work? Not tested, but check inet_acl. The default is: @inet_acl = qw( 127.0.0.1 [::1] ); # allow SMTP access only from localhost -- Herbert From owner-freebsd-questions@freebsd.org Thu Jun 28 14:48:59 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id BF2DD1002CC9 for ; Thu, 28 Jun 2018 14:48:59 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id 6F7AE7F12D for ; Thu, 28 Jun 2018 14:48:59 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from point.uchicago.edu (point.uchicago.edu [128.135.52.6]) by kicp.uchicago.edu (Postfix) with ESMTP id 018A17180B5 for ; Thu, 28 Jun 2018 09:48:52 -0500 (CDT) Subject: Re: Posfix and Amavisd-new in FreeBSD jail To: freebsd-questions@freebsd.org References: <4c9d4c7bcb994b1e086ae55ebd0f64b3.squirrel@webmail.harte-lyne.ca> From: Valeri Galtsev Message-ID: <944fff0f-6064-ccbb-a36b-f11752aaf2f7@kicp.uchicago.edu> Date: Thu, 28 Jun 2018 09:48:52 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <4c9d4c7bcb994b1e086ae55ebd0f64b3.squirrel@webmail.harte-lyne.ca> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 14:48:59 -0000 On 06/28/18 08:35, James B. Byrne via freebsd-questions wrote: > Dose anyone on the list run Postfix with amavisd inside a FreeBSD > jail? On larger servers I switched to maia (to the contrary to what I said earlier, one can configure and run it, not not only the way port maintainer has it, Thanks to port maintainer !!). One of the servers fully running in jail may at some point get passed to the project owner to [co]-administer it, for this reason it has postfix+clamav+spamassassin+amavisd > I am running into this problem: > > /usr/local/sbin/amavisd[42231]: (!)DENIED ACCESS from IP 127.0.32.1, > policy bank '' In my case jail has localhost IP 127.0.0.1, but I set jails "by the book", I do not use any scripts like ezjail... jail doesn't need to talk to localhos of host system. You may want to go though /usr/local/etc/amavisd.conf /usr/local/etc/postfix/master.cf ( and maybe /usr/local/etc/postfix/main.cf, depending on how you have amavis harnessed in postfix) and change localhost's IP referenced in their configurations to 127.0.32.1 (like in master.cf: smtp inet n - n - - smtpd -o content_filter=smtp-amavis:[127.0.32.1]:10024 ) check that that IP is covered in amavis access control list in /usr/local/etc/amavisd.conf: @inet_acl = qw( 127.0.0.0/8 [::1] ... ) and you can test them one at a time from shell in that jail by telnet 127.0.32.1 10024 and do all SMTP commands, see where you are thrown out. I hope, this helps. Valeri > > The cloned lo interface used by the jail is assigned address 127.0.32.1: > > lo2: flags=8049 metric 0 mtu 16384 > options=600003 > inet 127.0.32.1 netmask 0xffffffff > inet6 ::32 prefixlen 128 > nd6 options=21 > groups: lo > > The postfix and amavisd configuration files refer only to 127.0.0.1 > > The hosts file contains this: > > ::1 localhost localhost.harte-lyne.ca > 127.0.0.1 localhost localhost.harte-lyne.ca > > Does anyone have this working properly inside a jail. What do I need > to do to get it to work? > > > -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++ From owner-freebsd-questions@freebsd.org Thu Jun 28 15:25:08 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 93F5B1012274 for ; Thu, 28 Jun 2018 15:25:08 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: from conil.searchmail.es (conil.searchmail.es [178.60.30.16]) by mx1.freebsd.org (Postfix) with ESMTP id D51E480833 for ; Thu, 28 Jun 2018 15:25:07 +0000 (UTC) (envelope-from junio2018@searchmail.es) Received: by conil.searchmail.es (Postfix, from userid 0) id B38A180BBA; Thu, 28 Jun 2018 17:25:02 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=searchmail.es; s=default; t=1530199502; bh=nXnc5kknAmb3GTW3Vn+dpHMjYXr3e/lf9RVG8h/4bh0=; h=Date:From:To:Subject:Reply-To; b=ZGffeieHVzYzBXpL9X3k7MUBo9Kv6ssLQOFxz94ZkpQSJDzvSAjTK/OEwRfxYhLxf 9bFYe5bnYW4H+ultBrmiIuf9bCaeMeSjWpii9GJlbFAroGctBHVpFpt9D9SqW9edYF j1fA9zm2OeZJXCA8I+shqGuGir6cyhhRFVnGRug4= User-Agent: CodeIgniter Date: Thu, 28 Jun 2018 17:25:01 +0200 From: "Jorge" To: freebsd-questions@freebsd.org Subject: =?utf-8?Q?Inversi=c3=b3n_o_liquidez?= Reply-To: "junio2018@searchmail.es" X-Sender: junio2018@searchmail.es X-Mailer: CodeIgniter X-Priority: 3 (Normal) Message-ID: <5b34fdce7f459@searchmail.es> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 15:25:08 -0000 Iberfinancia @media only screen { html { min-height: 100%; background: #f3f3f3; } } @media only screen and (max-width: 596px) { .small-float-center { margin: 0 auto !important; float: none !important; text-align: center !important; } .small-text-center { text-align: center !important; } .small-text-left { text-align: left !important; } .small-text-right { text-align: right !important; } } @media only screen and (max-width: 596px) { .hide-for-large { display: block !important; width: auto !important; overflow: visible !important; max-height: none !important; font-size: inherit !important; line-height: inherit !important; } } @media only screen and (max-width: 596px) { table.body table.container .hide-for-large, table.body table.container .row.hide-for-large { display: table !important; width: 100% !important; } } @media only screen and (max-width: 596px) { table.body table.container .callout-inner.hide-for-large { display: table-cell !important; width: 100% !important; } } @media only screen and (max-width: 596px) { table.body table.container .show-for-large { display: none !important; width: 0; mso-hide: all; overflow: hidden; } } @media only screen and (max-width: 596px) { table.body img { width: auto; height: auto; } table.body center { min-width: 0 !important; } table.body .container { width: 95% !important; } table.body .columns, table.body .column { height: auto !important; -moz-box-sizing: border-box; -webkit-box-sizing: border-box; box-sizing: border-box; padding-left: 16px !important; padding-right: 16px !important; } table.body .columns .column, table.body .columns .columns, table.body .column .column, table.body .column .columns { padding-left: 0 !important; padding-right: 0 !important; } table.body .collapse .columns, table.body .collapse .column { padding-left: 0 !important; padding-right: 0 !important; } td.small-1, th.small-1 { display: inline-block !important; width: 8.33333% !important; } td.small-2, th.small-2 { display: inline-block !important; width: 16.66667% !important; } td.small-3, th.small-3 { display: inline-block !important; width: 25% !important; } td.small-4, th.small-4 { display: inline-block !important; width: 33.33333% !important; } td.small-5, th.small-5 { display: inline-block !important; width: 41.66667% !important; } td.small-6, th.small-6 { display: inline-block !important; width: 50% !important; } td.small-7, th.small-7 { display: inline-block !important; width: 58.33333% !important; } td.small-8, th.small-8 { display: inline-block !important; width: 66.66667% !important; } td.small-9, th.small-9 { display: inline-block !important; width: 75% !important; } td.small-10, th.small-10 { display: inline-block !important; width: 83.33333% !important; } td.small-11, th.small-11 { display: inline-block !important; width: 91.66667% !important; } td.small-12, th.small-12 { display: inline-block !important; width: 100% !important; } .columns td.small-12, .column td.small-12, .columns th.small-12, .column th.small-12 { display: block !important; width: 100% !important; } table.body td.small-offset-1, table.body th.small-offset-1 { margin-left: 8.33333% !important; Margin-left: 8.33333% !important; } table.body td.small-offset-2, table.body th.small-offset-2 { margin-left: 16.66667% !important; Margin-left: 16.66667% !important; } table.body td.small-offset-3, table.body th.small-offset-3 { margin-left: 25% !important; Margin-left: 25% !important; } table.body td.small-offset-4, table.body th.small-offset-4 { margin-left: 33.33333% !important; Margin-left: 33.33333% !important; } table.body td.small-offset-5, table.body th.small-offset-5 { margin-left: 41.66667% !important; Margin-left: 41.66667% !important; } table.body td.small-offset-6, table.body th.small-offset-6 { margin-left: 50% !important; Margin-left: 50% !important; } table.body td.small-offset-7, table.body th.small-offset-7 { margin-left: 58.33333% !important; Margin-left: 58.33333% !important; } table.body td.small-offset-8, table.body th.small-offset-8 { margin-left: 66.66667% !important; Margin-left: 66.66667% !important; } table.body td.small-offset-9, table.body th.small-offset-9 { margin-left: 75% !important; Margin-left: 75% !important; } table.body td.small-offset-10, table.body th.small-offset-10 { margin-left: 83.33333% !important; Margin-left: 83.33333% !important; } table.body td.small-offset-11, table.body th.small-offset-11 { margin-left: 91.66667% !important; Margin-left: 91.66667% !important; } table.body table.columns td.expander, table.body table.columns th.expander { display: none !important; } table.body .right-text-pad, table.body .text-pad-right { padding-left: 10px !important; } table.body .left-text-pad, table.body .text-pad-left { padding-right: 10px !important; } table.menu { width: 100% !important; } table.menu td, table.menu th { width: auto !important; display: inline-block !important; } table.menu.vertical td, table.menu.vertical th, table.menu.small-vertical td, table.menu.small-vertical th { display: block !important; } table.menu[align="center"] { width: auto !important; } table.button.small-expand, table.button.small-expanded { width: 100% !important; } table.button.small-expand table, table.button.small-expanded table { width: 100%; } table.button.small-expand table a, table.button.small-expanded table a { text-align: center !important; width: 100% !important; padding-left: 0 !important; padding-right: 0 !important; } table.button.small-expand center, table.button.small-expanded center { min-width: 0; } }   Si tienes proyectos de inversión o necesitas liquidez, ¡estás de suerte! En Iberfinancia somos los mejores ayudando a Pymes a conseguir financiación de cualquier tipo: pública, privada, bancaria, no tradicional, de pequeños inversores... En este 2018 (menos de 6 meses) ya hemos conseguido: - Más de 16 millones de euros - en 165 operaciones - para 76 empresas distintas. Si quieres alcanzar tus objetivos, cuenta con los mejores profesionales. Sigue el siguiente enlace y te llamaremos cuanto antes: Haz clic aquí para que te llamemos. Un saludo, El equipo de Iberfinancia   Deseamos que esta comunicación haya resultado de su agrado. No obstante, si prefiere no recibir más comunicaciones de este tipo, siga este enlace. Tenga en cuenta que esta comunicación está dirigida a: freebsd-questions@freebsd.org. De conformidad con lo establecido en la Ley 34/2002 Lssice le comunicamos que este escrito procede de Search Task, s.l.u con cif B70296009 y domicilio en Calle Benito Blanco Rajoy 7-9, 1º, 15006, A Coruña, con finalidad publicitaria. Search Task cumple estrictamente la normativa vigente en el ámbito de protección de sus datos en Internet. Según dispone la Ley Orgánica 15/1999, de 13 de diciembre, de Protección de Datos de Carácter Personal, le recordamos que tiene derecho legal de acceso, rectificación, cancelación u oposición escribiendo a searchtaskmail@gmail.com. De conformidad con lo dispuesto en dicha jurisprudencia, Search Task le comunica que los datos que nos proporcione formarán parte de un fichero automatizado de datos de carácter personal, responsabilidad de dicha entidad, con la finalidad de gestionar las comunicaciones con la misma. Sus datos han sido obtenidos de una fuente pública. El contenido del presente comunicado es confidencial y únicamente está dirigida y autorizada su lectura al consignatario original, quedando prohibidos cualquier comunicación, o difusión, tanto del comunicado como de su contenido. From owner-freebsd-questions@freebsd.org Thu Jun 28 15:48:17 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id CDD331016AB7 for ; Thu, 28 Jun 2018 15:48:16 +0000 (UTC) (envelope-from o1e9.cherkasov@yandex.com) Received: from forward102p.mail.yandex.net (forward102p.mail.yandex.net [IPv6:2a02:6b8:0:1472:2741:0:8b7:102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "forwards.mail.yandex.net", Issuer "Yandex CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 1F09581892 for ; Thu, 28 Jun 2018 15:48:15 +0000 (UTC) (envelope-from o1e9.cherkasov@yandex.com) Received: from mxback8j.mail.yandex.net (mxback8j.mail.yandex.net [IPv6:2a02:6b8:0:1619::111]) by forward102p.mail.yandex.net (Yandex) with ESMTP id ED6734305224 for ; Thu, 28 Jun 2018 18:48:13 +0300 (MSK) Received: from smtp2o.mail.yandex.net (smtp2o.mail.yandex.net [2a02:6b8:0:1a2d::26]) by mxback8j.mail.yandex.net (nwsmtp/Yandex) with ESMTP id PQY7c4Fe8I-m7w4vY87; Thu, 28 Jun 2018 18:48:07 +0300 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1530200887; bh=BFUh1as3JZV5f81SLrqszGKNFrRP/QnokK0S9qtOHM8=; h=Reply-To:Subject:To:References:From:Message-ID:Date:In-Reply-To; b=IYxTosYWybI/Y2G7Z3skdQ4IpNPWJVm0XqRKBE20K9I7AK62wlCaLpFKHOINqAfom Xxw8WC+ILhWK/sAk2uKk1GZkeLjVrQNB3Pq1axXanwWaozb55FSj77Z0o6L8ZhsARA MaXl2U+9o1QxiInE7SsK9xHHSavvnuiJoV0NYia8= Received: by smtp2o.mail.yandex.net (nwsmtp/Yandex) with ESMTPSA id 516TXlk0VX-m654lQqE; Thu, 28 Jun 2018 18:48:06 +0300 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client certificate not present) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yandex.com; s=mail; t=1530200886; bh=BFUh1as3JZV5f81SLrqszGKNFrRP/QnokK0S9qtOHM8=; h=Reply-To:Subject:To:References:From:Message-ID:Date:In-Reply-To; b=f6m1amfSE7R/neYZ7Y4F0oq0zAQQkQRNgtdFTClu6h1B4w3jJWEj0eIiHaF+ZHFEZ 746ZCedfc+ALl4NQPYUsKMMAKnysNa80rnJC0lsJEbWqlo9db36bTsdRFLk/pSht28 wTi26TJK1CsUtQRm7wSY4VB4lu3GayqqC2dDoLDU= Authentication-Results: smtp2o.mail.yandex.net; dkim=pass header.i=@yandex.com Reply-To: o1e9@member.fsf.org Subject: Re: FreeBSD 11.1: chroot users / provide pre-built binaries To: freebsd-questions@freebsd.org References: <20180628070515.3591314b.freebsd@edvax.de> From: Oleg Cherkasov Message-ID: <6aec1872-509a-5807-23fe-cc22089d58eb@yandex.com> Date: Thu, 28 Jun 2018 17:48:05 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 In-Reply-To: <20180628070515.3591314b.freebsd@edvax.de> Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 15:48:17 -0000 On 28. juni 2018 07:05, Polytropon wrote: > On Mon, 25 Jun 2018 19:45:02 +0200, Philipp Vlassakakis wrote: > >> On the one hand I want to save space, so that the binairies >> don't have to be in every $HOME, >> on the other hand the work is reduced if a binary needs to be >> updated. > > If you want a set of "whitelisted binaries", i. e., a fixed > and defined set of binaries a user can call interactively, > you'll still be facing the problem mentioned above: The shell. > If you allow interactive logins, it's more or less GAME OVER > as the shell sadly has too much power. Sure, creating a > directory like /secbin (secure binaries), making copies of > the binaries you explicitely want to allow, and only have > PATH=/secbin could be a starting point, but as mentioned > above, this won't work. > > The easiest way to prevent execution of any (!) programs is > to disallow interactive access. Tools like scp and sftp will > still work, but ssh won't. Setting $SHELL to /sbin/nologin > or /does/not/exist in /etc/passwd for those users will > prevent the use of ssh (without completely deactivating it > for the whole system), and still allow scp uploads. > > But changing $PATH isn't sufficient. If the user has access > to /bin, /usr/bin or /usr/local/bin, he can manually call > binaries from there (via full path). This is where chroot > can help. Bash has RESTRICTED SHELL mode with -r option or may be soft linked as rbash to run in restricted mode. Check man bash and search for RESTRICTED SHELL for more details. From owner-freebsd-questions@freebsd.org Thu Jun 28 18:49:50 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 004C91023DB3 for ; Thu, 28 Jun 2018 18:49:49 +0000 (UTC) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from be-well.ilk.org (be-well.ilk.org [23.30.133.173]) by mx1.freebsd.org (Postfix) with ESMTP id 9D53C88F2E for ; Thu, 28 Jun 2018 18:49:49 +0000 (UTC) (envelope-from freebsd-questions-local@be-well.ilk.org) Received: from lowell-desk.lan (router.lan [172.30.250.2]) by be-well.ilk.org (Postfix) with ESMTP id 4480633C0B; Thu, 28 Jun 2018 14:49:41 -0400 (EDT) Received: by lowell-desk.lan (Postfix, from userid 1147) id 77B1C39828; Thu, 28 Jun 2018 14:49:40 -0400 (EDT) From: Lowell Gilbert To: freebsd-questions@freebsd.org, o1e9@member.fsf.org Subject: Re: FreeBSD 11.1: chroot users / provide pre-built binaries References: <20180628070515.3591314b.freebsd@edvax.de> <6aec1872-509a-5807-23fe-cc22089d58eb@yandex.com> Date: Thu, 28 Jun 2018 14:49:40 -0400 In-Reply-To: <6aec1872-509a-5807-23fe-cc22089d58eb@yandex.com> (Oleg Cherkasov's message of "Thu, 28 Jun 2018 17:48:05 +0200") Message-ID: <44a7reagqj.fsf@lowell-desk.lan> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (berkeley-unix) MIME-Version: 1.0 Content-Type: text/plain X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 28 Jun 2018 18:49:50 -0000 Oleg Cherkasov writes: > On 28. juni 2018 07:05, Polytropon wrote: >> On Mon, 25 Jun 2018 19:45:02 +0200, Philipp Vlassakakis wrote: >> >>> On the one hand I want to save space, so that the binairies >>> don't have to be in every $HOME, >>> on the other hand the work is reduced if a binary needs to be >>> updated. >> >> If you want a set of "whitelisted binaries", i. e., a fixed >> and defined set of binaries a user can call interactively, >> you'll still be facing the problem mentioned above: The shell. >> If you allow interactive logins, it's more or less GAME OVER >> as the shell sadly has too much power. Sure, creating a >> directory like /secbin (secure binaries), making copies of >> the binaries you explicitely want to allow, and only have >> PATH=/secbin could be a starting point, but as mentioned >> above, this won't work. >> >> The easiest way to prevent execution of any (!) programs is >> to disallow interactive access. Tools like scp and sftp will >> still work, but ssh won't. Setting $SHELL to /sbin/nologin >> or /does/not/exist in /etc/passwd for those users will >> prevent the use of ssh (without completely deactivating it >> for the whole system), and still allow scp uploads. >> >> But changing $PATH isn't sufficient. If the user has access >> to /bin, /usr/bin or /usr/local/bin, he can manually call >> binaries from there (via full path). This is where chroot >> can help. > > Bash has RESTRICTED SHELL mode with -r option or may be soft linked as > rbash to run in restricted mode. Check man bash and search for > RESTRICTED SHELL for more details. Like other restricted shells, bash's restricted mode is very fragile. You should never trust that sort of configuration to keep you safe when an actively hostile attacker might gain access. From owner-freebsd-questions@freebsd.org Fri Jun 29 01:00:26 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 68705102E59D; Fri, 29 Jun 2018 01:00:26 +0000 (UTC) (envelope-from jiefei9021052liao@163.com) Received: from m12-11.163.com (m12-11.163.com [220.181.12.11]) by mx1.freebsd.org (Postfix) with ESMTP id AC1EB76233; Fri, 29 Jun 2018 01:00:24 +0000 (UTC) (envelope-from jiefei9021052liao@163.com) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=163.com; s=s110527; h=From:Subject:Message-ID:Date:MIME-Version; bh=XjQmX boyY2oE9UUa+3ndLK+t7DPfoMFKNQSQRmnoV6c=; b=TcMqNkE0oBV2KcpAoZ+YN xDLiLgI5qXYxI+4l3XI9it49dFI0WiZDKFiB815tL2NWkjRUidCZDi18O6/z78vT ThZSQF+BEVf4eLAVno53UJNgnHCh4qdwWkr/TeRvUeAmk/QAnyDR06X4Mkw64Yab kfy0d1+nsAR+Lh9yC7QPbM= Received: from mqwbgk (unknown [182.105.209.235]) by smtp7 (Coremail) with SMTP id C8CowAA3lbKfhDVbOK3tHQ--.22050S2; Fri, 29 Jun 2018 09:00:15 +0800 (CST) From: Fmptx To: "freebsd-questions" Cc: freebsd-questions-unsubscribe@freebsd.org Subject: 56.19.125.255 Message-ID: <201806290900101256801@163.com> Date: Fri, 29 Jun 2018 09:00:10 +0800 X-Mailer: Foxmail 6, 10, 201, 20 [cn] MIME-Version: 1.0 X-Priority: 3 X-CM-TRANSID: C8CowAA3lbKfhDVbOK3tHQ--.22050S2 X-Coremail-Antispam: 1Uf129KBjDUn29KB7ZKAUJUU5mk529EdanIXcx71UUUUU7v73 VFW2AGmfu7bjvjm3AaLaJ3UbIYCTnIWIevJa73UjIFyTuYvjxU2oqcUUUUU X-Originating-IP: [182.105.209.235] X-CM-SenderInfo: xmlhwvrlzqjiqqvszxldr6il2tof0z/1tbiRx90nlc7DIS22AAAs4 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: base64 X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 01:00:26 -0000 MjguMjEwLjE5My45OSA= From owner-freebsd-questions@freebsd.org Fri Jun 29 08:35:31 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 7FF6F10349CA for ; Fri, 29 Jun 2018 08:35:30 +0000 (UTC) (envelope-from b-otg1oteyodg4nzywmzc-1530260970-nzi5oty1nzvlnwy2odnkodk2@kideco-direct.co.uk) Received: from mail.kideco-direct.co.uk (kideco-direct.co.uk [80.90.203.252]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 80F5D820B9 for ; Fri, 29 Jun 2018 08:35:29 +0000 (UTC) (envelope-from b-otg1oteyodg4nzywmzc-1530260970-nzi5oty1nzvlnwy2odnkodk2@kideco-direct.co.uk) Received: (Haraka outbound); Fri, 29 Jun 2018 09:35:18 +0100 Authentication-Results: mail.kideco-direct.co.uk; auth=pass (cram-md5) Received: from localhost (Unknown [127.0.0.1]) by mail.kideco-direct.co.uk (Haraka/2.8.16) with ESMTPA id 8AB2259D-F4B7-419D-B84F-C23D5BCCBDCA.88 envelope-from (authenticated bits=0); Fri, 29 Jun 2018 09:35:18 +0100 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ofpdirect.co.uk; q=dns/txt; s=em-sl; bh=CWjBVMWT7DST9Mbgcw7g2YxjevkngA3gyXN1x19irD0=; h=from:subject:date:message-id:to:mime-version:content-type:list-unsubscribe; b=P1BssEMXdGLqb8h5gOkr9iHtYUW9VM5+Of60U1GyUjWr+oLLnrB6lReRNDa9BjwAyzLKzkpfp UC+hdBCt3mL87p6Us84g2Sd2JOUgDvHvU9FgLRtxeFLQUCzg3JjaMZXvdoMLrmH561QzAdsUOI9 JzPawOZEQG30CO/ZqwsPsBA+I4Cwvo0DMOzRA/Dy5MvgH4YR7za39CmfObOyFgYufCJcbivHc/v KdBBRupQ1A8MBWTTGzHFcbQwp04opARqfVSFisr2TPfQjt5b2WBnEqyocYinufF4BnpJvz+DZ8K 8QYS5nM23ZUSD56UA09fcCsvatQFDXZ3zT5LKcjYGUpw== Precedence: bulk Feedback-ID: c156:a445435:em:kideco-vps From: OFP Direct To: Cybernet Media Limited Subject: Cybernet Media Limited, The luxury Indiana Executive Chair Message-ID: Date: Fri, 29 Jun 2018 08:35:18 +0000 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 08:35:31 -0000 Cybernet Media Limited, The luxury Indiana Executive Chair=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1151-MYTh]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1155-nXCT]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1151-MYTh]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1151-MYTh]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1155-nXCT]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1155-nXCT]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1155-nXCT]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1155-nXCT] The luxury = Indiana Executive Chair Top grain leather for a luxurious feel Elegant look= and style=20 Upholstered Curved armrests Deep padded seat and back 2 year = warranty Just =C2=A3235 +VAT Call us on 01476 515933 or email = sales@ofpdirect.co.uk=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/115= 5-nXCT]=20 [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1156-q0tj] To = unsubscribe please click here. [https://ctrl.em.3wmltd.= com/t/39620735-otg1/us] Our e-marketing policy can be read here. [https://ctrl.em.3wmltd.com/t/39620735-otg1/ct/1154-2pVe]=20 OFP Direct=20 Grantham=20 NG31 7QH=20 0870 2643048 From owner-freebsd-questions@freebsd.org Fri Jun 29 10:12:39 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E18001036A4D for ; Fri, 29 Jun 2018 10:12:39 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 92BB684FB9 for ; Fri, 29 Jun 2018 10:12:39 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: swap_pager_getswapspace Message-Id: Date: Fri, 29 Jun 2018 04:13:54 -0600 To: freebsd-questions X-Mailer: Apple Mail (2.3445.100.13.1) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 10:12:40 -0000 Getting a lot of swap_pager_getswapspace errors and erratic behavior = from my FreeBSD 11.1 mail server. # pstat -sm Device 1M-blocks Used Avail Capacity /dev/ada0p3 3656 647 3008 18% /dev/md99 1024 444 579 43% Total 4680 1092 3588 23% Which seems like I have enough... =3D> 40 468862048 ada0 GPT (224G) 40 1024 1 freebsd-boot (512K) 1064 461372408 2 freebsd-ufs (220G) 461373472 7488615 3 freebsd-swap (3.6G) 468862087 1 - free - (512B) Should I made the md99 file larger, or should I try to expand the = freebsd-swap partition (the drive is about half full) From owner-freebsd-questions@freebsd.org Fri Jun 29 11:35:37 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 0C4271038226 for ; Fri, 29 Jun 2018 11:35:37 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id AEE55873BA for ; Fri, 29 Jun 2018 11:35:36 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: Re: swap_pager_getswapspace Date: Fri, 29 Jun 2018 05:36:58 -0600 References: To: freebsd-questions In-Reply-To: Message-Id: <5F3EF470-75BF-43A6-9007-93DAC698D614@kreme.com> X-Mailer: Apple Mail (2.3445.100.13.1) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 11:35:37 -0000 On 29 Jun 2018, at 04:13, @lbutlr wrote: >=20 > Getting a lot of swap_pager_getswapspace errors and erratic behavior = from my FreeBSD 11.1 mail server. ...=20 > Should I made the md99 file larger, or should I try to expand the = freebsd-swap partition (the drive is about half full) I went ahead and increased it. Device 1M-blocks Used Avail Capacity /dev/ada0p3 3656 0 3656 0% /dev/md97 6144 0 6144 0% Total 9800 0 9800 0% About an hour and a half later, the machine spontaneously restarted. = After getting back in, dmesg is filled with nothing but swap errors = except for one line: pid 53649 (rsync), uid 0, was killed: out of swap space after reboot there are two (??) rsync daemons running, and I do use = rsnapshot which is using rsync hourly. root 89523 3.6 3.0 119892 106724 - S 05:25 0:17.10 = /usr/local/bin/rsync --daemon --config /usr/local/etc/rsync/rsyncd.conf root 39964 0.0 0.1 7252 1848 - Is 05:21 0:00.00 = /usr/local/bin/rsync --daemon --config /usr/local/etc/rsync/rsyncd.conf The top one is the 'current' one listed in /var/run/rsync.pid and the = other appears to be orphaned. --=20 Eyes the shady night has shut/Cannot see the record cut And silence sounds no worse than cheers/After earth has stopped the ears. From owner-freebsd-questions@freebsd.org Fri Jun 29 13:10:16 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 89939EF7855 for ; Fri, 29 Jun 2018 13:10:16 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor.nl2k.ab.ca (doctor.nl2k.ab.ca [204.209.81.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 2AF238AC5A for ; Fri, 29 Jun 2018 13:10:16 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.91 (FreeBSD)) (envelope-from ) id 1fYt8f-000Keh-Eb; Fri, 29 Jun 2018 07:08:37 -0600 Date: Fri, 29 Jun 2018 07:08:37 -0600 From: The Doctor To: "@lbutlr" Cc: freebsd-questions Subject: Re: swap_pager_getswapspace Message-ID: <20180629130837.GE77205@doctor.nl2k.ab.ca> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.10.0 (2018-05-17) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 13:10:16 -0000 On Fri, Jun 29, 2018 at 04:13:54AM -0600, @lbutlr wrote: > Getting a lot of swap_pager_getswapspace errors and erratic behavior from my FreeBSD 11.1 mail server. > > # pstat -sm > Device 1M-blocks Used Avail Capacity > /dev/ada0p3 3656 647 3008 18% > /dev/md99 1024 444 579 43% > Total 4680 1092 3588 23% > > Which seems like I have enough... > > => 40 468862048 ada0 GPT (224G) > 40 1024 1 freebsd-boot (512K) > 1064 461372408 2 freebsd-ufs (220G) > 461373472 7488615 3 freebsd-swap (3.6G) > 468862087 1 - free - (512B) > > Should I made the md99 file larger, or should I try to expand the freebsd-swap partition (the drive is about half full) > My rule of thumb is your swap should RAM x 2 . Adjust accordingly. Best to adjust /dev/md99 > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" -- Member - Liberal International This is doctor@@nl2k.ab.ca Ici doctor@@nl2k.ab.ca Yahweh, Queen & country!Never Satan President Republic!Beware AntiChrist rising! https://www.empire.kred/ROOTNK?t=94a1f39b Look at Psalms 14 and 53 on Atheism By the work one knows the workmen. -Jean De La Fontaine From owner-freebsd-questions@freebsd.org Fri Jun 29 15:31:17 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id EF80CEFB2D7 for ; Fri, 29 Jun 2018 15:31:16 +0000 (UTC) (envelope-from pulley@dabus.com) Received: from aegir.dabus.com (aegir.dabus.com [166.70.184.35]) by mx1.freebsd.org (Postfix) with ESMTP id 8592A8F505 for ; Fri, 29 Jun 2018 15:31:16 +0000 (UTC) (envelope-from pulley@dabus.com) Received: from aegir.dabus.com (aegir [166.70.184.35]) by aegir.dabus.com (Processor) with ESMTP id BDA0013088F for ; Fri, 29 Jun 2018 09:33:32 -0600 (MDT) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=dabus.com; h=date:from:to :subject:message-id:mime-version:content-type :content-transfer-encoding; s=aegir1; bh=Xnbr/n2Dx6NG/8+OT6qCYk1 1BCs=; b=DBncylpilYawjGdjCKtTVIiBjZ57MkR6Te4UlIGcVN/sHAs5i+FbA2B S2VY6SpZtC/Xfc0wpba4PmCT+UCOCVNckkGSYufq7mQOF1A70ShkWja7qLmcBcHK zzmpUzqCFW9ec3MoWvNLidQnmeVEmspIZP4zHlHUmSY86oLfeV1Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=dabus.com; h=date:from:to :subject:message-id:mime-version:content-type :content-transfer-encoding; q=dns; s=aegir1; b=O1Wt6sVT+l6sYjI0u /ROywc1iNaC6OZ/cQv8ybwZ/zFtLvUDQpqhuUCXEy+8E+Xnt7kMeI+Qol2zNjAl2 el5fDwipX1VUowHqOKr+430kn4fZHMTmkl0+pPvQyYMf2fXSIRSxqF4hmeJ6Yxnm E23zCJqv2aP1S6gR5CsXk+iPgI= Received: from misery.dabus.com (unknown [192.168.10.2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aegir.dabus.com (Dabus) with ESMTPSA id B6B7813088B for ; Fri, 29 Jun 2018 09:33:32 -0600 (MDT) Date: Fri, 29 Jun 2018 09:31:08 -0600 From: Eric S Pulley To: freebsd-questions@freebsd.org Subject: 4K displays and window garbage. Message-ID: <20180629093108.56a9d08b@misery.dabus.com> Organization: Dabus X-Mailer: Claws Mail 3.16.0 (GTK+ 2.24.32; amd64-portbld-freebsd11.1) MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 15:31:17 -0000 I should probably ask this in a more specific mailing group but... Anyone else using 2 4K displays getting the contents of the window jumbled to unreadable muck if they resize a window more than 2000ish wide? I'm primarily seeing it under KDE but XFCE will do it too. Only happens about 20% of the time... Except: Gwenview always. and Dolphin 60% of the time. Seems to only happen with 2 4k monitors with a single X session spanning both windows. Problem is in all current Release version of FreeBSD and I'm using the Nvidia driver for my GTX970. Just curious wondering if anyone has seen it and if there is something I can pass in xconf that might fix it. I's most likely a problem with the Nvidia code but I don't think I'll have a lot of luck getting them to fix it... Wish they we not so anal about their driver code. Its pretty easy to work around just don't get greedy with how large you make you windows. But once it mucks up the only way to really fix it is restart X since the affected app will come back up messed up even if you kill it and start a new window. -- esp From owner-freebsd-questions@freebsd.org Fri Jun 29 15:40:26 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id E95F1EFB6DE for ; Fri, 29 Jun 2018 15:40:25 +0000 (UTC) (envelope-from srs0=vqyv=jp=mail.sermon-archive.info=doug@sermon-archive.info) Received: from mail.sermon-archive.info (sermon-archive.info [71.177.216.148]) by mx1.freebsd.org (Postfix) with ESMTP id 7E89B8F808 for ; Fri, 29 Jun 2018 15:40:25 +0000 (UTC) (envelope-from srs0=vqyv=jp=mail.sermon-archive.info=doug@sermon-archive.info) Received: from [10.0.1.251] (mini [10.0.1.251]) by mail.sermon-archive.info (Postfix) with ESMTPSA id 41HLSf29wjz2fjSV for ; Fri, 29 Jun 2018 08:40:18 -0700 (PDT) From: Doug Hardie Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 11.4 \(3445.8.2\)) Subject: Signal 6 Message-Id: <0D66C7A3-EBE6-475C-8360-CAFEAEA4D328@mail.sermon-archive.info> Date: Fri, 29 Jun 2018 08:40:17 -0700 To: freebsd-questions X-Mailer: Apple Mail (2.3445.8.2) X-Virus-Scanned: clamav-milter 0.99.4 at mail X-Virus-Status: Clean X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 15:40:26 -0000 I have a daemon process that runs forever (almost). Something is = killing it with a signal 6, but no core dump is done. If I manually = kill it with kill -6, then the log message shows core dumped and a core = file is created. The process has no reference to SIG_ABRT, so I suspect = the kernel is doing the kill and is overriding the core dump. I have = previously encountered a similar issue where swap space was running out = and the kernel killed this process without a core dump. In that case = there were quite a few messages logged about swap space issues before = the process was killed. There are no swap messages logged this time. /etc/sysctl.conf contains: kern.sugid_coredump=3D1 kern.corefile=3D/crash/%N.core /crash is a directory in the root file system. Other than swap issues, when would the kernel kill a process without a = core dump? -- Doug From owner-freebsd-questions@freebsd.org Fri Jun 29 15:56:45 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D38A1EFC376 for ; Fri, 29 Jun 2018 15:56:44 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: from mail-qt0-x244.google.com (mail-qt0-x244.google.com [IPv6:2607:f8b0:400d:c0d::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 79AA470315 for ; Fri, 29 Jun 2018 15:56:44 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: by mail-qt0-x244.google.com with SMTP id z6-v6so8245004qti.2 for ; Fri, 29 Jun 2018 08:56:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tenebras-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=472skaBKpY/NaKybwEokeZ/Mt/QG7OoA4H3FyAIVomk=; b=y37ibioaYMxn0L1j3uL+EvJjwd9i432bBKz4gHO8TNZZiZEJkZc0ci8ATK19GC6zFd c9BkHQqlKikMJ04ZbCiyYfkRqJiJr1aB+O+T9/9DxR29/a27Ya3DqnhM1PYAfNC3Voal olIF9UVsCw92Ohjf2qNVCFBwVuQqwWQpnzsypeGW/Ygs8SzYgatWScMfXsTsr4loE8bS EzkpyGCkleezEca4A6EnyV/dyLI4FO8L37st3p51aukOWbWpXddqAp21T13jAY0ZCUs7 zqqK+nnkHvRRGxOigDtmgRiJhkOaeeAMR22Z+IZjJDYWCBaP3moSYr1UXhKYF/MF0ywB CjwQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=472skaBKpY/NaKybwEokeZ/Mt/QG7OoA4H3FyAIVomk=; b=iFH3/VIizde09aR6bNJifqBKRYVE4YsqNZq+sxEcRM1n/9hQ3ZIsFbumQDHo+W1dOr QnnZY+zcv/OKr8xZ5XdPNJb3UuDSqMe45wT91jJhma/T6/99bT6aGb6iLCxRYEO/gWUm KE5KYSiT2WBLi/lE++iGpxhJs5xd2Vn1O6OTXnkSjaP9t0NVy0yBHRFyJbQdXNgnlkPu VX5bc2Ks3/eheOf7mWjam0eGODGCnzgFBLfvw83G9KQ+5Psr1RBV/8dAxmJj+a9Kst+f JoY6VDQbAxcX59d2ABDN1hP1WEJIi8B9pAyqqenZVTwM9LL8BQC59uZsaqJoPbTBpHTa Dj2g== X-Gm-Message-State: APt69E1a9UozoHWKXzRtffNv/emEfqB/bG39vwV0+yNfC2n8EP5iAR17 sOA20x1+pNImZsnfXkYIZql2xrYqJ7ix95lSw66nbk9r X-Google-Smtp-Source: AAOMgpef65tKQzPoVlQPwOMIzPI1KctyciBc8VusNoSxhY0oVBry4XS4+Qp6HaY72FCEgC2aqnkke0Btd38gYshMN5U= X-Received: by 2002:ac8:2bc7:: with SMTP id n7-v6mr14406423qtn.293.1530287803770; Fri, 29 Jun 2018 08:56:43 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:ac8:297d:0:0:0:0:0 with HTTP; Fri, 29 Jun 2018 08:56:43 -0700 (PDT) In-Reply-To: <0D66C7A3-EBE6-475C-8360-CAFEAEA4D328@mail.sermon-archive.info> References: <0D66C7A3-EBE6-475C-8360-CAFEAEA4D328@mail.sermon-archive.info> From: Michael Sierchio Date: Fri, 29 Jun 2018 08:56:43 -0700 Message-ID: Subject: Re: Signal 6 To: Doug Hardie Cc: freebsd-questions Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 15:56:45 -0000 Are there process limits? malloc() will call abort() if internal structures are munged (e.g., by heap overflow). calling free() on a corrupted pointer does that reliably is the root partition big enough for the dump? =3D M On Fri, Jun 29, 2018 at 8:40 AM, Doug Hardie wrote: > I have a daemon process that runs forever (almost). Something is killing > it with a signal 6, but no core dump is done. If I manually kill it with > kill -6, then the log message shows core dumped and a core file is > created. The process has no reference to SIG_ABRT, so I suspect the kern= el > is doing the kill and is overriding the core dump. I have previously > encountered a similar issue where swap space was running out and the kern= el > killed this process without a core dump. In that case there were quite a > few messages logged about swap space issues before the process was killed= . > There are no swap messages logged this time. > > /etc/sysctl.conf contains: > kern.sugid_coredump=3D1 > kern.corefile=3D/crash/%N.core > > /crash is a directory in the root file system. > > Other than swap issues, when would the kernel kill a process without a > core dump? > > -- Doug > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions- > unsubscribe@freebsd.org" > --=20 "Well," Brahma said, "even after ten thousand explanations, a fool is no wiser, but an intelligent person requires only two thousand five hundred." - The Mah=C4=81bh=C4=81rata From owner-freebsd-questions@freebsd.org Fri Jun 29 15:57:59 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6B79DEFC459 for ; Fri, 29 Jun 2018 15:57:59 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: from mail-qt0-x242.google.com (mail-qt0-x242.google.com [IPv6:2607:f8b0:400d:c0d::242]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id F17C87040A for ; Fri, 29 Jun 2018 15:57:58 +0000 (UTC) (envelope-from kudzu@tenebras.com) Received: by mail-qt0-x242.google.com with SMTP id f1-v6so1221022qti.3 for ; Fri, 29 Jun 2018 08:57:58 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tenebras-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=wCAii19by/nBGhginKa4uFTfOVEAdKYm2MV1ZvIhbO0=; b=lWmV3FPdJHkr5ez7gTxHqQ1/O0msFAlraldpj2Vu3tuiSUo8yv1o8PECG/VdSjQkki b0DXe9KezuAya66z2jGprTEO+Imw0Tgy3ZBXqFO0CN+ybFqp3fNbd/YtfIJaoUErFTIP lyrO07Qj++4VfVilvgp+6lf0dhbhKsK1osZllURnUdXH6wEOJYnSvEWN8/zg4H9hnWap HEXiD/VO4E9SyHSW/jHDxgWTOm8ADJP/QkzEBgb5EMCgjw94E5I525q6fs4JqB7MEKO2 jw3ARHLVFUiv8c3R3EmTajA+yPHxqgDtBdJc6XbILZx0R1VqtjjtGBabPDecFApDTl0o BlRQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=wCAii19by/nBGhginKa4uFTfOVEAdKYm2MV1ZvIhbO0=; b=thAkQW1kCMYUlXaDJedoS7xdvxjdbb7AcQp6+8f4zNrMYOGY8tnhZZOGggutVXkWwA +NVh/84JufdnZM1xSfqjH6hZ1qDuRtv2K6YXMbrVTyqBcyVjlP8KOQUvS9nhOBeKckov eqwQ9cFPDwFjvYCbo4Gnid5TfiQDrS4DcA/ZElSOeytzUy+Ld4VXeMcvKhY4YfM1WdtA 1DTIGVXGVXShpYmuMXMhkE2gbHXn6r32Fpn5sTDPx0xyS8/o7DZNNLrtkgDQ6+jfFTRe nQOQJA+FUMtp/Aj4dqqtZPoKJso2TRWiiJj24d64LBID98q4mzrE+EuEbzEC0KpEirSy ApRA== X-Gm-Message-State: APt69E1R8hxLKGWHKZu4GxXumA+e8Ra6DxqxFtWT6ivbJDPhjn6HEX5q 3cELpZfQeeyksVg6m7sA68vJDzhT91Hn14kioA+eBw== X-Google-Smtp-Source: AAOMgpeaYz51qGwwjQVsn2jA3cDtOt+gff0Xx5nEPHbJLkc8NecxvxhzBBP0LSK/AmVw1+r4wdAQWZt5L4M0hhjOVRk= X-Received: by 2002:a0c:afb8:: with SMTP id s53-v6mr1162626qvc.164.1530287878365; Fri, 29 Jun 2018 08:57:58 -0700 (PDT) MIME-Version: 1.0 Received: by 2002:ac8:297d:0:0:0:0:0 with HTTP; Fri, 29 Jun 2018 08:57:57 -0700 (PDT) In-Reply-To: References: <0D66C7A3-EBE6-475C-8360-CAFEAEA4D328@mail.sermon-archive.info> From: Michael Sierchio Date: Fri, 29 Jun 2018 08:57:57 -0700 Message-ID: Subject: Re: Signal 6 To: Doug Hardie Cc: freebsd-questions Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 15:57:59 -0000 One way to find out is to register a handler for SIGABRT and print and flush the context. On Fri, Jun 29, 2018 at 8:56 AM, Michael Sierchio wrote: > Are there process limits? > > malloc() will call abort() if internal structures are munged (e.g., by > heap overflow). > > calling free() on a corrupted pointer does that reliably > > is the root partition big enough for the dump? > > =3D M > > On Fri, Jun 29, 2018 at 8:40 AM, Doug Hardie wrote: > >> I have a daemon process that runs forever (almost). Something is killin= g >> it with a signal 6, but no core dump is done. If I manually kill it wit= h >> kill -6, then the log message shows core dumped and a core file is >> created. The process has no reference to SIG_ABRT, so I suspect the ker= nel >> is doing the kill and is overriding the core dump. I have previously >> encountered a similar issue where swap space was running out and the ker= nel >> killed this process without a core dump. In that case there were quite = a >> few messages logged about swap space issues before the process was kille= d. >> There are no swap messages logged this time. >> >> /etc/sysctl.conf contains: >> kern.sugid_coredump=3D1 >> kern.corefile=3D/crash/%N.core >> >> /crash is a directory in the root file system. >> >> Other than swap issues, when would the kernel kill a process without a >> core dump? >> >> -- Doug >> >> _______________________________________________ >> freebsd-questions@freebsd.org mailing list >> https://lists.freebsd.org/mailman/listinfo/freebsd-questions >> To unsubscribe, send any mail to "freebsd-questions-unsubscribe >> @freebsd.org" >> > > > > -- > "Well," Brahma said, "even after ten thousand explanations, a fool is no > wiser, but an intelligent person requires only two thousand five hundred.= " > > - The Mah=C4=81bh=C4=81rata > --=20 "Well," Brahma said, "even after ten thousand explanations, a fool is no wiser, but an intelligent person requires only two thousand five hundred." - The Mah=C4=81bh=C4=81rata From owner-freebsd-questions@freebsd.org Fri Jun 29 16:54:21 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F33E6EFE82D for ; Fri, 29 Jun 2018 16:54:20 +0000 (UTC) (envelope-from freebsd.ed.lists@sumeritec.com) Received: from out1-7.antispamcloud.com (out1-7.antispamcloud.com [185.201.16.7]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 71D9172691 for ; Fri, 29 Jun 2018 16:54:19 +0000 (UTC) (envelope-from freebsd.ed.lists@sumeritec.com) Received: from [153.92.8.106] (helo=srv31.niagahoster.com) by mx61.antispamcloud.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.89) (envelope-from ) id 1fYsUM-0000V1-BP for freebsd-questions@freebsd.org; Fri, 29 Jun 2018 14:26:59 +0200 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sumeritec.com; s=default; h=Content-Transfer-Encoding:Content-Type: MIME-Version:References:In-Reply-To:Message-ID:Subject:Cc:To:From:Date:Sender :Reply-To:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help: List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=3ISRmpocXjOC+rKpbXYUdOpSSAqWCWuJoEhmPPYINPs=; b=P+MasSWo4gv4K/gurmLwf2Sg58 Df+yYM5z0829avFQC47ZlH/kVfNZoBfzbxzFJ4taLREgP53zkAZG1vId1hh5eQ8F00EE4+lSkP6QV 5GKdkWemqVGdMFbMIl3QPFV+W3iL8vO0qKZgOeTEcjzXDgbGD2XGg5z959jM1RscGuTIU9bKbCchB fjlml9g351PvMPuWY2+s1lTTVFkEaUQ2XEJyMCbLy3A3sTqeeTKRMEDyq+sQ3tHB56npAQFnjvy7l JU5AAWOUfy53Ci7NCBcTnWLzcUbdlIXfsfz0dK5lvs5k6QE4HHQjUh3T2HH+whnb53arF6czyNB0R G+E+56uA==; Received: from [182.1.74.53] (port=40491 helo=X220.sumeritec.com) by srv31.niagahoster.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256) (Exim 4.89_1) (envelope-from ) id 1fYsTU-0004nv-PC; Fri, 29 Jun 2018 19:26:11 +0700 Date: Fri, 29 Jun 2018 20:26:03 +0800 From: Erich Dollansky To: "@lbutlr" Cc: freebsd-questions Subject: Re: swap_pager_getswapspace Message-ID: <20180629202603.0492ab82.freebsd.ed.lists@sumeritec.com> In-Reply-To: References: MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-OutGoing-Spam-Status: No, score=-1.0 X-AuthUser: freebsd.ed.lists@sumeritec.com X-Originating-IP: 153.92.8.106 X-AntiSpamCloud-Domain: out.niagahoster.com X-AntiSpamCloud-Username: niaga Authentication-Results: antispamcloud.com; auth=pass (login) smtp.auth=niaga@out.niagahoster.com X-AntiSpamCloud-Outgoing-Class: unsure X-AntiSpamCloud-Outgoing-Evidence: Combined (0.16) X-Recommended-Action: accept X-Filter-ID: EX5BVjFpneJeBchSMxfU5g/+pBooMkww4zscrp7ze7F602E9L7XzfQH6nu9C/Fh9KJzpNe6xgvOx q3u0UDjvO16ABlNNUDIJIcF7N1k9wYur48C+/LzRqVzELXf1NLUsbNbo7palBZjCExzO+3olYpYA zu5kHBGUdC/aZiJWYs7O4k7ydv2Rs1VgfbHBQGgnSBWlL1zfgiPkRstzHteqQaPOkgHSemy7YOTU rTHPBdcf0wQn+qGFwFhnrZWr3AIw/crUMSB3/ZTeY4yyWjyvJUSUj3/0l2xJw0rGpf82c3OJ/VWX a+0QBQ+ZkcKKFGIcDD2gT2inkFvv0JWjnb/IrH7z+YauX/TUnX9nBqcvEWtGC53MZRR6sQBUf+3R GI7qa79VWvIC7YhNSc5yi7SDTTW5KDfvCgzPRFW9kOuxXwthYiyAm6HMnFRMH2XEM34an71UyEAm SYRWDakYlAJqAMcksCiD7GGgTVI22JLT+xx6UYABPEJmokgMViEN6xeV5xw+1JGTSb+RC3fnxNB9 mtjlDHh8k6TTdHl8m1/8O/9GdTBtdXUKO/O6WszodTDWWbQtePY27N+zj0M4GWTk2F6ZJ6jUSPgk Vd7ca7Vh+D7wB4KXwOGHMdCYNltiusneB5hQ6nsDvccjqgmDvD9Wh8h5QZDw2Glt87yeT4eNbI71 r/By9WC92Z/ExP3uCDI0N/kxUwE2fwTj8G7sDFT0fs0BGji0kUvhpmitD1Kk+2xE9dVWPMgt7WcA P3KoMcwSctgzcDoFd+96Xw4QUNtTncDTVmNP4h4hHW4W3FZBHvoP/6nnOTzuWNRjx34Wtjqqsnhg d0PJoh9pE/Qh+DBNrhiXYpmGRqLoqCVipDGlRxr4YiFPnuFy2mGGjEOFutm9c8akPXl1rSwDcf9K l92R02ti1C+8zrvIuFHNqxhfHcjaWlktivzVM5fl1rJHKB/g3mGyjSnaoQr28ssfojBfD+azqbrx /09hywAjAcAQ/dI= X-Report-Abuse-To: spam@quarantine1.antispamcloud.com X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 16:54:21 -0000 Hi, there was recently a long discussion regarding this. My solution is to create a file-backed memory disk and use it for swap when the media is not able or has to be reformatted. I still use the old-fashioned 2 * RAM size to determine my swap space. It seems overkill but I never had problems with this saving a lot of my time. Erich On Fri, 29 Jun 2018 04:13:54 -0600 "@lbutlr" wrote: > Getting a lot of swap_pager_getswapspace errors and erratic behavior > from my FreeBSD 11.1 mail server. > > # pstat -sm > Device 1M-blocks Used Avail Capacity > /dev/ada0p3 3656 647 3008 18% > /dev/md99 1024 444 579 43% > Total 4680 1092 3588 23% > > Which seems like I have enough... > > => 40 468862048 ada0 GPT (224G) > 40 1024 1 freebsd-boot (512K) > 1064 461372408 2 freebsd-ufs (220G) > 461373472 7488615 3 freebsd-swap (3.6G) > 468862087 1 - free - (512B) > > Should I made the md99 file larger, or should I try to expand the > freebsd-swap partition (the drive is about half full) > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" From owner-freebsd-questions@freebsd.org Fri Jun 29 17:58:51 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id C56A4F72789 for ; Fri, 29 Jun 2018 17:58:51 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 6456474CBF for ; Fri, 29 Jun 2018 17:58:51 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: Re: swap_pager_getswapspace Date: Fri, 29 Jun 2018 12:00:12 -0600 References: <20180629202603.0492ab82.freebsd.ed.lists@sumeritec.com> To: freebsd-questions In-Reply-To: <20180629202603.0492ab82.freebsd.ed.lists@sumeritec.com> Message-Id: <8D5A0F22-4017-4A37-843E-07931CE94D32@kreme.com> X-Mailer: Apple Mail (2.3445.100.13.1) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 17:58:52 -0000 On 29 Jun 2018, at 06:26, Erich Dollansky = wrote: > there was recently a long discussion regarding this. My solution is to > create a file-backed memory disk and use it for swap when the media is > not able or has to be reformatted. I still use the old-fashioned 2 * > RAM size to determine my swap space. It seems overkill but I never had > problems with this saving a lot of my time. Top, after killing off some processes: Mem: 1204M Active, 424M Inact, 1072K Laundry, 219M Wired, 85M Buf, 1542M = Free It looks like what is happening is that many rsync daemon processes are = bing created and do not die. I just checked and there were 49 running = and nearly no free memory (17M). after a killall rysnc the free memory = jumped to 1542M and left 9 processes still running for several minutes. = By the time those died, memory was up to 2300M free. So it appears the = issue is less swap and more rsync spawning many processes for some = reason. # rsyncd.log # Set this if you want to stop rsync daemon with rc.d scripts pid file =3D /var/run/rsyncd.pid uid =3D root gid =3D wheel [root] path =3D / auth users =3D root secrets file =3D /usr/local/etc/rsyncd.secrets From owner-freebsd-questions@freebsd.org Fri Jun 29 18:29:39 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DDED2F73A52 for ; Fri, 29 Jun 2018 18:29:39 +0000 (UTC) (envelope-from kremels@kreme.com) Received: from mail.covisp.net (mail.covisp.net [65.121.55.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 8967A75CF6 for ; Fri, 29 Jun 2018 18:29:39 +0000 (UTC) (envelope-from kremels@kreme.com) From: "@lbutlr" Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Subject: Re: swap_pager_getswapspace Date: Fri, 29 Jun 2018 12:31:01 -0600 References: <20180629202603.0492ab82.freebsd.ed.lists@sumeritec.com> <8D5A0F22-4017-4A37-843E-07931CE94D32@kreme.com> To: freebsd-questions In-Reply-To: <8D5A0F22-4017-4A37-843E-07931CE94D32@kreme.com> Message-Id: <539C34C5-BB4B-48D4-BAF1-A8CF55536235@kreme.com> X-Mailer: Apple Mail (2.3445.100.13.1) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 18:29:40 -0000 On 29 Jun 2018, at 12:00, @lbutlr wrote: > So it appears the issue is less swap and more rsync spawning many = processes for some reason. Seems to be one every 5 minutes, so have disabled the daemon process for = now until I figure this out. # psa rsync root 71810 43.2 3.0 119892 106036 - S 12:20 0:16.97 = /usr/local/bin/rsync --daemon --config /usr/local/etc/rsync/rsyncd.conf root 15003 0.0 3.0 119892 107112 - S 12:15 0:18.35 = /usr/local/bin/rsync --daemon --config /usr/local/etc/rsync/rsyncd.conf root 68099 0.0 0.1 7252 2104 - Ss 12:05 0:00.00 = /usr/local/bin/rsync --daemon --config /usr/local/etc/rsync/rsyncd.conf Where psa is a bash function: psa () { ps auxww | grep -i $* | grep -v grep } I assume this is a runaway process on anchor machine that is backing up = files. Thanks all. --=20 Love seeketh not itself to please Nor for itself hath any care But for another gives its ease And builds a heaven in Hell's despair From owner-freebsd-questions@freebsd.org Fri Jun 29 18:40:38 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id CA7CAF743EE for ; Fri, 29 Jun 2018 18:40:38 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from inet08.hamilton.harte-lyne.ca (inet08.hamilton.harte-lyne.ca [216.185.71.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "inet08.hamilton.harte-lyne.ca", Issuer "CA_HLL_ISSUER_2016" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 726AD764BD for ; Fri, 29 Jun 2018 18:40:38 +0000 (UTC) (envelope-from byrnejb@harte-lyne.ca) Received: from localhost (localhost [127.0.0.1]) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTP id A664B62568; Fri, 29 Jun 2018 14:40:30 -0400 (EDT) X-Virus-Scanned: amavisd-new at harte-lyne.ca Received: from inet08.hamilton.harte-lyne.ca ([127.0.0.1]) by localhost (inet08.hamilton.harte-lyne.ca [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UMS4Fidms_VM; Fri, 29 Jun 2018 14:40:27 -0400 (EDT) Received: from webmail.harte-lyne.ca (inet04.hamilton.harte-lyne.ca [216.185.71.24]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by inet08.hamilton.harte-lyne.ca (Postfix) with ESMTPSA id 531576260C; Fri, 29 Jun 2018 14:40:26 -0400 (EDT) Received: from 216.185.71.44 (SquirrelMail authenticated user byrnejb_hll) by webmail.harte-lyne.ca with HTTP; Fri, 29 Jun 2018 14:40:27 -0400 Message-ID: <497404fbb369d43b1bd42af561ff414b.squirrel@webmail.harte-lyne.ca> In-Reply-To: References: Date: Fri, 29 Jun 2018 14:40:27 -0400 Subject: Re: Posfix and Amavisd-new in FreeBSD jail From: "James B. Byrne" To: "Herbert J. Skuhra" Cc: freebsd-questions@freebsd.org Reply-To: byrnejb@harte-lyne.ca User-Agent: SquirrelMail/1.4.22-5.el6 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 18:40:39 -0000 On Thu, June 28, 2018 10:31, Herbert J. Skuhra wrote: > > Not tested, but check inet_acl. The default is: > > @inet_acl = qw( 127.0.0.1 [::1] ); # allow SMTP access only from > localhost > That was the problem. I only needed to specify the exact jail lo assigned address in two places for everything to start working: 1. main.cf:inet_interfaces = 127.0.32.1, 192.168.216.32, . . . 2. amavisd.conf:@inet_acl = qw( 127.0.0.1 [::1] 127.0.32.1 [::32]); Everything else in the relevant configuration files remains as 127.0.0.1 -- *** e-Mail is NOT a SECURE channel *** Do NOT transmit sensitive data via e-Mail Do NOT open attachments nor follow links sent by e-Mail James B. Byrne mailto:ByrneJB@Harte-Lyne.ca Harte & Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 From owner-freebsd-questions@freebsd.org Fri Jun 29 23:36:10 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id D1D25FD35E8 for ; Fri, 29 Jun 2018 23:36:10 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor.nl2k.ab.ca (doctor.nl2k.ab.ca [204.209.81.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 686C88130D for ; Fri, 29 Jun 2018 23:36:10 +0000 (UTC) (envelope-from doctor@doctor.nl2k.ab.ca) Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.91 (FreeBSD)) (envelope-from ) id 1fZ2uv-000FYQ-Mp for freebsd-questions@freebsd.org; Fri, 29 Jun 2018 17:35:05 -0600 Date: Fri, 29 Jun 2018 17:35:05 -0600 From: The Doctor To: freebsd-questions@freebsd.org Subject: Server rebuild time Message-ID: <20180629233505.GA59174@doctor.nl2k.ab.ca> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.10.0 (2018-05-17) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 29 Jun 2018 23:36:11 -0000 Yet again FreeBsd 11.1 to 11.2 chokes Most likely due to lack of swap space. Time to back up and rebuild. Question are: Upon manual install how do you 1) Dictate that the Swap Space be a 32 GB size partition and 2) The rest use for ZFS? upon reinstallation. Time to move up! -- Member - Liberal International This is doctor@@nl2k.ab.ca Ici doctor@@nl2k.ab.ca Yahweh, Queen & country!Never Satan President Republic!Beware AntiChrist rising! https://www.empire.kred/ROOTNK?t=94a1f39b Look at Psalms 14 and 53 on Atheism By the work one knows the workmen. -Jean De La Fontaine From owner-freebsd-questions@freebsd.org Sat Jun 30 12:37:39 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 6CDC0102E3EB for ; Sat, 30 Jun 2018 12:37:39 +0000 (UTC) (envelope-from paul@ifdnrg.com) Received: from outbound.ifdnrg.com (outbound2.ifdnrg.com [193.200.98.38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "outbound.ifdnrg.com", Issuer "COMODO RSA Domain Validation Secure Server CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id DFA887C0E9 for ; Sat, 30 Jun 2018 12:37:38 +0000 (UTC) (envelope-from paul@ifdnrg.com) Received: from [192.168.1.11] ([195.26.58.22]) (authenticated bits=0) by outbound.ifdnrg.com (8.15.2/8.15.2) with ESMTPSA id w5UCJYk3036151 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Sat, 30 Jun 2018 13:19:34 +0100 (BST) (envelope-from paul@ifdnrg.com) X-Authentication-Warning: outbound.ifdnrg.com: Host [195.26.58.22] claimed to be [192.168.1.11] To: freebsd-questions@freebsd.org Cc: erdgeist@erdgeist.org From: Paul Macdonald Subject: 11.2 + ezjail Message-ID: <199f0a91-8140-d21e-3381-daf80c965f88@ifdnrg.com> Date: Sat, 30 Jun 2018 13:19:37 +0100 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0 MIME-Version: 1.0 Content-Language: en-GB Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.26 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.26 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 30 Jun 2018 12:37:39 -0000 ezjail updates post upgrade to 11.2 get stuck on this, anyone got a solution/know about it? src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. Run '/usr/sbin/freebsd-update fetch' first. src component not installed, skipped No updates are available to install. -- ------------------------- Paul Macdonald IFDNRG Ltd Web and video hosting ------------------------- t: 0131 5548070 m: 07970339546 e: paul@ifdnrg.com w: http://www.ifdnrg.com ------------------------- IFDNRG 40 Maritime Street Edinburgh EH6 6SA ---------------------------------------------------- Virtual Servers from £50.00pm High specification Dedicated Servers from £150.00pm ----------------------------------------------------