From nobody Mon Aug 19 20:50:42 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Wnl9m028Cz5TTqS for ; Mon, 19 Aug 2024 20:50:52 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Wnl9l0D4tz4m8h for ; Mon, 19 Aug 2024 20:50:50 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@dreamchaser.org designates 66.109.141.57 as permitted sender) smtp.mailfrom=freebsd@dreamchaser.org Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47JKog6t004196 for ; Mon, 19 Aug 2024 14:50:43 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: Date: Mon, 19 Aug 2024 12:50:42 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Content-Language: en-US To: FreeBSD Mailing List Reply-To: freebsd@dreamchaser.org From: Gary Aitken Subject: freebsd-update "No changes have been downloaded" "files have been modified locally" Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 14:50:43 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 14:50:43 -0600 (MDT) X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.18 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.99)[-0.994]; R_SPF_ALLOW(-0.20)[+mx]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; XM_UA_NO_VERSION(0.01)[]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US]; TO_DN_ALL(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_ONE(0.00)[1]; ARC_NA(0.00)[]; R_DKIM_NA(0.00)[]; RCVD_TLS_LAST(0.00)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[dreamchaser.org]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; HAS_REPLYTO(0.00)[freebsd@dreamchaser.org] X-Rspamd-Queue-Id: 4Wnl9l0D4tz4m8h Upgrading from 13.2 to 13.3, wanted to install 13.2 security patches first. Not sure if that's necessary or not. freebsd-update fetch ... The following files are affected by updates. No changes have been downloaded, however, because the files have been modified locally: /etc/ssh/sshd_config Looking at https://github.com/freebsd/freebsd-src/tree/releng/13.2/etc there is not even a /etc/ssh directory Since these are updates to 13.2-RELEASE, I can see why the updated file wouldn't be in the releng tree, but shouldn't the original be there? Where are the sources for the updates, i.e. Where is the source for the file it wants to install? I think I don't understand what the releng tree is showing, as it also lists subdirs root and sendmail which aren't present in 13.2 /etc. If I look in /var/db/etcupdate/current/etc/ssh I see an sshd_config What, exactly, is in the "current" tree? Are these the files prior to performing an update, so it can be rolled back? Thanks, Gary From nobody Mon Aug 19 23:48:20 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Wnq6n3VD9z5TmMW for ; Mon, 19 Aug 2024 23:48:33 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Received: from echo.brtsvcs.net (echo.brtsvcs.net [IPv6:2607:f740:c::4ae]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4Wnq6n1Vf1z52pl for ; Mon, 19 Aug 2024 23:48:33 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Authentication-Results: mx1.freebsd.org; none Received: from chombo.houseloki.net (65-100-43-2.dia.static.qwest.net [65.100.43.2]) by echo.brtsvcs.net (Postfix) with ESMTPS id 0F37E38D3F; Mon, 19 Aug 2024 23:48:24 +0000 (UTC) Received: from [10.26.25.100] (ivy.pas.ds.pilgrimaccounting.com [10.26.25.100]) by chombo.houseloki.net (Postfix) with ESMTPSA id 7F1D54ADCD; Mon, 19 Aug 2024 16:48:22 -0700 (PDT) Message-ID: Date: Mon, 19 Aug 2024 16:48:20 -0700 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1 Subject: Re: freebsd-update "No changes have been downloaded" "files have been modified locally" To: freebsd@dreamchaser.org, FreeBSD Mailing List References: Content-Language: en-US From: list_freebsd@bluerosetech.com In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:36236, ipnet:2607:f740:c::/48, country:US] X-Rspamd-Queue-Id: 4Wnq6n1Vf1z52pl On 2024-08-19 13:50, Gary Aitken wrote: > Upgrading from 13.2 to 13.3, wanted to install 13.2 security patches first. > Not sure if that's necessary or not. > > freebsd-update fetch > ... > The following files are affected by updates. No changes have > been downloaded, however, because the files have been modified > locally: > /etc/ssh/sshd_config > > Looking at > https://github.com/freebsd/freebsd-src/tree/releng/13.2/etc > there is not even a /etc/ssh director > > Since these are updates to 13.2-RELEASE, I can see why the updated > file wouldn't be in the releng tree, but shouldn't the original be > there? > Where are the sources for the updates, i.e. > Where is the source for the file it wants to install? For Cold War legacy[1] reasons[2], the in-tree copy of sshd_config lives at: src/crypto/openssh/sshd_config 1: https://en.wikipedia.org/wiki/Export_of_cryptography_from_the_United_States 2: https://cgit.freebsd.org/src/tree/crypto/README > I think I don't understand what the releng tree is showing, as it > also lists subdirs root and sendmail which aren't present in 13.2 /etc. > > If I look in > /var/db/etcupdate/current/etc/ssh > I see an sshd_config > > What, exactly, is in the "current" tree? Are these the files prior to > performing an update, so it can be rolled back? /var/db/etcupdate/current contains the most recent reference tree extracted from /usr/src by etcupdate(8). etcupdate uses it to update /etc and a few other bits as part of a source upgrade. It isn't used by freebsd-update, so won't necessarily be correct for the installed OS. From nobody Tue Aug 20 04:38:37 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WnxYY2JLpz5VDHY for ; Tue, 20 Aug 2024 04:38:41 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WnxYX32Nrz4LSZ for ; Tue, 20 Aug 2024 04:38:40 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@dreamchaser.org designates 66.109.141.57 as permitted sender) smtp.mailfrom=freebsd@dreamchaser.org Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47K4cbKS059329 for ; Mon, 19 Aug 2024 22:38:37 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> Date: Mon, 19 Aug 2024 20:38:37 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Content-Language: en-US To: FreeBSD Mailing List Reply-To: freebsd@dreamchaser.org From: Gary Aitken Subject: package 1303001 but running kernel 1302001 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 22:38:37 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 22:38:37 -0600 (MDT) X-Spamd-Bar: - X-Spamd-Result: default: False [-1.27 / 15.00]; NEURAL_HAM_MEDIUM(-0.92)[-0.924]; NEURAL_HAM_LONG(-0.81)[-0.811]; NEURAL_SPAM_SHORT(0.65)[0.653]; R_SPF_ALLOW(-0.20)[+mx]; ONCE_RECEIVED(0.10)[]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; TO_DN_ALL(0.00)[]; ARC_NA(0.00)[]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_ONE(0.00)[1]; MID_RHS_MATCH_FROM(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; RCVD_TLS_LAST(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; R_DKIM_NA(0.00)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[dreamchaser.org]; HAS_REPLYTO(0.00)[freebsd@dreamchaser.org] X-Rspamd-Queue-Id: 4WnxYX32Nrz4LSZ After upgrading 13.2 to 13.3, and rebooting, an attempt to upgrade packages shows: # pkg upgrade -F Updating FreeBSD repository catalogue... Fetching meta.conf: 100% 178 B 0.2kB/s 00:01 Fetching packagesite.pkg: 100% 7 MiB 1.1MB/s 00:07 Processing entries: 0% Newer FreeBSD version for package zziplib: To ignore this error set IGNORE_OSVERSION=yes - package: 1303001 - running kernel: 1302001 yet: #uname -a FreeBSD ... 13.3-RELEASE-p5 FreeBSD 13.3-RELEASE-p5 GENERIC amd64 Why does it say the running kernel is 1302001 and not 1303001? Gary From nobody Tue Aug 20 05:09:28 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WnyF834Gpz5VGSg for ; Tue, 20 Aug 2024 05:09:32 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WnyF812hMz4SrR for ; Tue, 20 Aug 2024 05:09:32 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47K59SWh001170; Mon, 19 Aug 2024 23:09:28 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: <0556eb13-5b41-4670-ad48-827867a2b3c9@dreamchaser.org> Date: Mon, 19 Aug 2024 21:09:28 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Reply-To: freebsd@dreamchaser.org Subject: Re: freebsd-update "No changes have been downloaded" "files have been modified locally" To: list_freebsd@bluerosetech.com, FreeBSD Mailing List References: Content-Language: en-US From: Gary Aitken In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 23:09:29 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Mon, 19 Aug 2024 23:09:29 -0600 (MDT) X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US] X-Rspamd-Queue-Id: 4WnyF812hMz4SrR On 8/19/24 15:48, list_freebsd@bluerosetech.com wrote: > On 2024-08-19 13:50, Gary Aitken wrote: >> freebsd-update fetch ... The following files are affected by >> updates. No changes have been downloaded, however, because the >> files have been modified locally: /etc/ssh/sshd_config > For Cold War legacy[1] reasons[2], the in-tree copy of sshd_config > lives at: > > src/crypto/openssh/sshd_config ... > /var/db/etcupdate/current contains the most recent reference tree > extracted from /usr/src by etcupdate(8). etcupdate uses it to update > /etc and a few other bits as part of a source upgrade. > > It isn't used by freebsd-update, so won't necessarily be correct for > the installed OS. Thanks, forgot about all that. Why doesn't "freebsd-update" attempt to merge the existing shd_config file with the RELEASE one like it does for other files, and give me an editor to resolve differences? Is that because it lives in a non-standard place? Thanks, Gary Gary From nobody Tue Aug 20 11:56:14 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Wp7GV5JYbz5Syrf for ; Tue, 20 Aug 2024 11:56:18 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Received: from echo.brtsvcs.net (echo.brtsvcs.net [IPv6:2607:f740:c::4ae]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4Wp7GV3Pccz4MMs for ; Tue, 20 Aug 2024 11:56:18 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Authentication-Results: mx1.freebsd.org; none Received: from chombo.houseloki.net (65-100-43-2.dia.static.qwest.net [65.100.43.2]) by echo.brtsvcs.net (Postfix) with ESMTPS id 4908138D41; Tue, 20 Aug 2024 11:56:15 +0000 (UTC) Received: from [10.26.25.100] (ivy.pas.ds.pilgrimaccounting.com [10.26.25.100]) by chombo.houseloki.net (Postfix) with ESMTPSA id DA1034C73A; Tue, 20 Aug 2024 04:56:14 -0700 (PDT) Message-ID: <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> Date: Tue, 20 Aug 2024 04:56:14 -0700 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1 Subject: Re: package 1303001 but running kernel 1302001 Content-Language: en-US To: freebsd@dreamchaser.org, FreeBSD Mailing List References: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> From: list_freebsd@bluerosetech.com In-Reply-To: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:36236, ipnet:2607:f740:c::/48, country:US] X-Rspamd-Queue-Id: 4Wp7GV3Pccz4MMs On 2024-08-19 21:38, Gary Aitken wrote: > After upgrading 13.2 to 13.3, and rebooting, > an attempt to upgrade packages shows: > > # pkg upgrade -F > Updating FreeBSD repository catalogue... > Fetching meta.conf: 100% 178 B 0.2kB/s 00:01 > Fetching packagesite.pkg: 100% 7 MiB 1.1MB/s 00:07 > Processing entries: 0% > Newer FreeBSD version for package zziplib: > To ignore this error set IGNORE_OSVERSION=yes > - package: 1303001 > - running kernel: 1302001 > > yet: > > #uname -a > FreeBSD ... 13.3-RELEASE-p5 FreeBSD 13.3-RELEASE-p5 GENERIC amd64 > > Why does it say the running kernel is 1302001 and not 1303001? Did you run `freebsd-update install` again after rebooting? What are the outputs of these commands: # freebsd-version -kru # file /usr/bin/uname From nobody Tue Aug 20 12:15:09 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Wp7hP5nkfz5T1Sl for ; Tue, 20 Aug 2024 12:15:17 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Received: from echo.brtsvcs.net (echo.brtsvcs.net [208.111.40.118]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4Wp7hP1nLyz4P9W for ; Tue, 20 Aug 2024 12:15:17 +0000 (UTC) (envelope-from list_freebsd@bluerosetech.com) Authentication-Results: mx1.freebsd.org; none Received: from chombo.houseloki.net (65-100-43-2.dia.static.qwest.net [65.100.43.2]) by echo.brtsvcs.net (Postfix) with ESMTPS id B2E6438D3F; Tue, 20 Aug 2024 12:15:10 +0000 (UTC) Received: from [10.26.25.100] (ivy.pas.ds.pilgrimaccounting.com [10.26.25.100]) by chombo.houseloki.net (Postfix) with ESMTPSA id 21FCF4C73B; Tue, 20 Aug 2024 05:15:10 -0700 (PDT) Message-ID: <557e371a-4348-a23e-199c-d47c36a6649a@bluerosetech.com> Date: Tue, 20 Aug 2024 05:15:09 -0700 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1 Subject: Re: freebsd-update "No changes have been downloaded" "files have been modified locally" To: freebsd@dreamchaser.org, FreeBSD Mailing List References: <0556eb13-5b41-4670-ad48-827867a2b3c9@dreamchaser.org> Content-Language: en-US From: list_freebsd@bluerosetech.com In-Reply-To: <0556eb13-5b41-4670-ad48-827867a2b3c9@dreamchaser.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:36236, ipnet:208.111.40.0/24, country:US] X-Rspamd-Queue-Id: 4Wp7hP1nLyz4P9W On 2024-08-19 22:09, Gary Aitken wrote: > Why doesn't "freebsd-update" attempt to merge the existing > shd_config file with the RELEASE one like it does for other files, > and give me an editor to resolve differences? Is that because it > lives in a non-standard place? It's because freebsd-update only provides the three-way merge functionality during release upgrades. It's not done for regular updates. I haven't the slightest why. Unfortunately you're left to do the merge by hand in this case. FWIW, you can have a local config while leaving the distributed file unmodified by using a separate sshd_config.local file. Put your changes in that, add: Include /etc/ssh/sshd_config as the last line, and add: sshd_flags="-f /etc/ssh/sshd_config.local" to /etc/rc.conf. From nobody Tue Aug 20 14:10:47 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WpBFm4mXqz5TBtp for ; Tue, 20 Aug 2024 14:10:52 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WpBFl6mFVz4hd6 for ; Tue, 20 Aug 2024 14:10:51 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47KEAmvb002921; Tue, 20 Aug 2024 08:10:48 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: <63acbc1e-467b-4498-9840-f3461f792e16@dreamchaser.org> Date: Tue, 20 Aug 2024 06:10:47 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Reply-To: freebsd@dreamchaser.org Subject: Re: package 1303001 but running kernel 1302001 To: list_freebsd@bluerosetech.com, FreeBSD Mailing List References: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> Content-Language: en-US From: Gary Aitken In-Reply-To: <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:10:48 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:10:48 -0600 (MDT) X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US] X-Rspamd-Queue-Id: 4WpBFl6mFVz4hd6 On 8/20/24 03:56, list_freebsd@bluerosetech.com wrote: > On 2024-08-19 21:38, Gary Aitken wrote: >> After upgrading 13.2 to 13.3, and rebooting, an attempt to upgrade >> packages shows: >> >> # pkg upgrade -F >> Updating FreeBSD repository catalogue... >> Fetching meta.conf: 100% 178 B 0.2kB/s 00:01 >> Fetching packagesite.pkg: 100% 7 MiB 1.1MB/s 00:07 >> Processing entries: 0% >> Newer FreeBSD version for package zziplib: >> To ignore this error set IGNORE_OSVERSION=yes >> - package: 1303001 >> - running kernel: 1302001 >> >> yet: >> >> #uname -a FreeBSD ... 13.3-RELEASE-p5 FreeBSD 13.3-RELEASE-p5 >> GENERIC amd64 >> >> Why does it say the running kernel is 1302001 and not 1303001? > > Did you run `freebsd-update install` again after rebooting? Yes, twice > What are the outputs of these commands: > # freebsd-version -kru # freebsd-version -kru 13.3-RELEASE-p5 13.3-RELEASE-p5 13.2-RELEASE-p12 I guess that explains it, although I don't understand why "userland" is out of date. What is the "installed userland" that the manpage refers to? And how does it get updated? > # file /usr/bin/uname # file /usr/bin/uname /usr/bin/uname: ELF 64-bit LSB pie executable, x86-64, version 1 (FreeBSD), dynamically linked, interpreter /libexec/ld-elf.so.1, for FreeBSD 13.2, FreeBSD-style, stripped Gary From nobody Tue Aug 20 14:19:56 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WpBSH6jVlz5TD0f for ; Tue, 20 Aug 2024 14:19:59 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WpBSH35YSz4kN5 for ; Tue, 20 Aug 2024 14:19:59 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47KEJuLZ002970; Tue, 20 Aug 2024 08:19:56 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: <21e976cb-b6e5-4198-8c9d-1dbdfe4fa631@dreamchaser.org> Date: Tue, 20 Aug 2024 06:19:56 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Reply-To: freebsd@dreamchaser.org Subject: Re: package 1303001 but running kernel 1302001 To: list_freebsd@bluerosetech.com, FreeBSD Mailing List References: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> Content-Language: en-US From: Gary Aitken In-Reply-To: <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:19:56 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:19:56 -0600 (MDT) X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US] X-Rspamd-Queue-Id: 4WpBSH35YSz4kN5 On 8/20/24 03:56, list_freebsd@bluerosetech.com wrote: > On 2024-08-19 21:38, Gary Aitken wrote: >> After upgrading 13.2 to 13.3, and rebooting, an attempt to upgrade >> packages shows: >> >> # pkg upgrade -F >> Updating FreeBSD repository catalogue... >> Fetching meta.conf: 100% 178 B 0.2kB/s 00:01 >> Fetching packagesite.pkg: 100% 7 MiB 1.1MB/s 00:07 >> Processing entries: 0% >> Newer FreeBSD version for package zziplib: >> To ignore this error set IGNORE_OSVERSION=yes >> - package: 1303001 >> - running kernel: 1302001 >> >> yet: >> >> #uname -a FreeBSD ... 13.3-RELEASE-p5 FreeBSD 13.3-RELEASE-p5 >> GENERIC amd64 >> >> Why does it say the running kernel is 1302001 and not 1303001? > > Did you run `freebsd-update install` again after rebooting? Yes, twice > What are the outputs of these commands: > # freebsd-version -kru # freebsd-version -kru 13.3-RELEASE-p5 13.3-RELEASE-p5 13.2-RELEASE-p12 That explains the complaint, although I don't understand why "userland" is out of date. What is the "installed userland" that the manpage refers to? And how does it get updated? > # file /usr/bin/uname # file /usr/bin/uname /usr/bin/uname: ELF 64-bit LSB pie executable, x86-64, version 1 (FreeBSD), dynamically linked, interpreter /libexec/ld-elf.so.1, for FreeBSD 13.2, FreeBSD-style, stripped Gary From nobody Tue Aug 20 14:27:30 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WpBd114V1z5TDYv for ; Tue, 20 Aug 2024 14:27:33 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WpBd06JJcz4mFp for ; Tue, 20 Aug 2024 14:27:32 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47KERUYc002995; Tue, 20 Aug 2024 08:27:30 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: Date: Tue, 20 Aug 2024 06:27:30 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Reply-To: freebsd@dreamchaser.org Subject: Re: freebsd-update "No changes have been downloaded" "files have been modified locally" To: list_freebsd@bluerosetech.com, FreeBSD Mailing List References: <0556eb13-5b41-4670-ad48-827867a2b3c9@dreamchaser.org> <557e371a-4348-a23e-199c-d47c36a6649a@bluerosetech.com> Content-Language: en-US From: Gary Aitken In-Reply-To: <557e371a-4348-a23e-199c-d47c36a6649a@bluerosetech.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:27:30 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 08:27:30 -0600 (MDT) X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US] X-Rspamd-Queue-Id: 4WpBd06JJcz4mFp On 8/20/24 04:15, list_freebsd@bluerosetech.com wrote: > On 2024-08-19 22:09, Gary Aitken wrote: >> Why doesn't "freebsd-update" attempt to merge the existing >> shd_config file with the RELEASE one like it does for other files, >> and give me an editor to resolve differences? Is that because it >> lives in a non-standard place? > > It's because freebsd-update only provides the three-way merge > functionality during release upgrades. It's not done for regular > updates. I haven't the slightest why. > > Unfortunately you're left to do the merge by hand in this case. > > FWIW, you can have a local config while leaving the distributed file > unmodified by using a separate sshd_config.local file. Put your > changes in that, add: > > Include /etc/ssh/sshd_config > > as the last line, and add: > > sshd_flags="-f /etc/ssh/sshd_config.local" > > to /etc/rc.conf. Thanks. Still debating whether to do this or not, as the error was a reminder that I've tweaked it and to review it. Gary From nobody Tue Aug 20 17:39:06 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WpGtC4Qrlz5TVqc for ; Tue, 20 Aug 2024 17:39:15 +0000 (UTC) (envelope-from gray@nxg.name) Received: from mx2.mythic-beasts.com (mx2.mythic-beasts.com [IPv6:2a00:1098:0:82:1000:0:2:1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4WpGtB01Zmz4HpM for ; Tue, 20 Aug 2024 17:39:14 +0000 (UTC) (envelope-from gray@nxg.name) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=nxg.name header.s=mythic-beasts-k1 header.b=agnmRXyv; dmarc=none; spf=pass (mx1.freebsd.org: domain of gray@nxg.name designates 2a00:1098:0:82:1000:0:2:1 as permitted sender) smtp.mailfrom=gray@nxg.name DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=nxg.name; s=mythic-beasts-k1; h=Date:Subject:To:From; bh=ikfrzCG8gVKF5CLZ7z4F6PcMsM008CSj8pIYYm6kru8=; b=agnmRXyv1g0fSJjnSEzLkia1MM 3Zv4SBq7bvShIctDMV6H/1pZtx3tjEtxkVSZaNkk85bF6YEvF2a5s5feX6xWxymo4qOSq++pu1EwF L1yuaEvwl1aD4MhQerbNbbZI02a8X1GW99kKbXWpTb5b1bIKKoB+nlUqIvxz3bZvwdvCdOmYaZDZ+ l2P+TolNv50AbxNBRbXk/G4OxjWuTzETdWHy+UDemK+CfcC6o/hCBL3hJX9SxxCkRx7zrSAaV41NS ov19OwQaV9u0F2UXogJ/3i7AyjgRDeKApwYXACLuYrQP6l77XpVPj54+sIeJGZQywUyczDhgB+N5f 2Bl9HcJg==; Received: by mailhub-hex-d.mythic-beasts.com with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from ) id 1sgSp5-006kLz-Ee; Tue, 20 Aug 2024 18:39:11 +0100 From: Norman Gray To: FreeBSD Questions Subject: ypldap and ypserv -- frenemies? Date: Tue, 20 Aug 2024 18:39:06 +0100 X-Mailer: MailMate (1.14r5964) Message-ID: <90F7E969-FBC8-4CD9-A62B-D2E84B8953ED@nxg.name> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: quoted-printable X-BlackCat-Spam-Score: 34 X-Spam-Status: No, score=3.4 X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.60 / 15.00]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; SUBJECT_ENDS_QUESTION(1.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-0.998]; RCVD_DKIM_ARC_DNSWL_MED(-0.50)[]; R_MISSING_CHARSET(0.50)[]; RCVD_IN_DNSWL_MED(-0.20)[2a00:1098:0:82:1000:0:2:1:from]; R_DKIM_ALLOW(-0.20)[nxg.name:s=mythic-beasts-k1]; R_SPF_ALLOW(-0.20)[+ip6:2a00:1098:0:82:1000:0:2:0/112]; MIME_GOOD(-0.10)[text/plain]; ONCE_RECEIVED(0.10)[]; DMARC_NA(0.00)[nxg.name]; MID_RHS_MATCH_FROM(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; ARC_NA(0.00)[]; TO_DN_ALL(0.00)[]; RCVD_TLS_ALL(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; ASN(0.00)[asn:44684, ipnet:2a00:1098::/32, country:GB]; RCVD_VIA_SMTP_AUTH(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_COUNT_ONE(0.00)[1]; DKIM_TRACE(0.00)[nxg.name:+]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[] X-Rspamd-Queue-Id: 4WpGtB01Zmz4HpM Greetings. I'm trying to use ypldap, to ease one stage in a move away from NIS. I h= ave a test/transitional configuration which works when I invoke ypldap wi= th the -d flag (which avoids daemonisation), but which _doesn't_ work whe= n I invoke it the expected way, daemonised. 'Doesn't work' here, means that a client querying the daemonised ypldap s= erver gets a 'do_ypcall: clnt_call: RPC: Unable to receive; errno =3D Con= nection refused' response. It gets a normal working response when it que= ries the undaemonised one. I'm perplexed at why this should be so. It's _presumably_ something to d= o with the permissions of the _ypldap user, but I haven't done anything c= lever there. I've confirmed that the _ypldap user can do the relevant LDAP lookup. An odd thing is that the /etc/rc.d/ypldap script includes ypldap_precmd() { force_depend ypserv nis_server || return 1 } That seems to include a dependency on ypserv, but as the ypldap(8) manpag= e very intelligibly notes, 'ypldap has the same role as ypserv(8) and the= two daemons are exclusive.' And when I try to start ypldap that way, I = get a warning /etc/rc.d/ypserv: WARNING: NIS domainname(1) is not set. but ypserv does start. If I do the basic configuration to let ypserv sta= rt without error, I still don't get a working response from ypldap (and I= don't really expect to in that case). The only online commentary I can find is at [1], from 2016, which seems t= o be reporting similar behaviour. I feel I'm substantially misunderstanding something. Any ideas? Best wishes, Norman [1] https://groups.google.com/g/muc.lists.freebsd.stable/c/nO0NMaSbD7o -- = Norman Gray : https://nxg.me.uk From nobody Tue Aug 20 19:04:38 2024 X-Original-To: questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WpJmp5krqz5SPn7 for ; Tue, 20 Aug 2024 19:04:42 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Received: from ns.dreamchaser.org (ns.dreamchaser.org [66.109.141.57]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature ECDSA (P-256) client-digest SHA256) (Client CN "discoveriesinwood.com", Issuer "E5" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WpJmn3qfMz4W2j for ; Tue, 20 Aug 2024 19:04:41 +0000 (UTC) (envelope-from freebsd@dreamchaser.org) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=none; spf=pass (mx1.freebsd.org: domain of freebsd@dreamchaser.org designates 66.109.141.57 as permitted sender) smtp.mailfrom=freebsd@dreamchaser.org Received: from [192.168.151.122] (breakaway.dreamchaser.org [192.168.151.122]) by ns.dreamchaser.org (8.17.1/8.17.1) with ESMTP id 47KJ4cDI085974 for ; Tue, 20 Aug 2024 13:04:39 -0600 (MDT) (envelope-from freebsd@dreamchaser.org) Message-ID: Date: Tue, 20 Aug 2024 11:04:38 -0800 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: package 1303001 but running kernel 1302001 To: questions@freebsd.org References: <976f1d7a-f335-4593-a190-06bded7be3a0@dreamchaser.org> <911dfca4-a7a9-d5cc-8206-881e09f92a39@bluerosetech.com> <63acbc1e-467b-4498-9840-f3461f792e16@dreamchaser.org> Content-Language: en-US Reply-To: freebsd@dreamchaser.org From: Gary Aitken In-Reply-To: <63acbc1e-467b-4498-9840-f3461f792e16@dreamchaser.org> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Greylist: inspected by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 13:04:39 -0600 (MDT) for IP:'192.168.151.122' DOMAIN:'breakaway.dreamchaser.org' HELO:'[192.168.151.122]' FROM:'freebsd@dreamchaser.org' RCPT:'' X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.6.4 (ns.dreamchaser.org [192.168.151.101]); Tue, 20 Aug 2024 13:04:39 -0600 (MDT) X-Spamd-Bar: -- X-Spamd-Result: default: False [-2.67 / 15.00]; NEURAL_HAM_SHORT(-0.94)[-0.944]; NEURAL_HAM_MEDIUM(-0.88)[-0.883]; NEURAL_HAM_LONG(-0.66)[-0.655]; R_SPF_ALLOW(-0.20)[+mx]; ONCE_RECEIVED(0.10)[]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; RCPT_COUNT_ONE(0.00)[1]; ASN(0.00)[asn:21947, ipnet:66.109.128.0/19, country:US]; RCVD_TLS_LAST(0.00)[]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_ONE(0.00)[1]; FROM_HAS_DN(0.00)[]; R_DKIM_NA(0.00)[]; ARC_NA(0.00)[]; TO_DN_NONE(0.00)[]; REPLYTO_ADDR_EQ_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DMARC_NA(0.00)[dreamchaser.org]; PREVIOUSLY_DELIVERED(0.00)[questions@freebsd.org]; MLMMJ_DEST(0.00)[questions@freebsd.org]; HAS_REPLYTO(0.00)[freebsd@dreamchaser.org] X-Rspamd-Queue-Id: 4WpJmn3qfMz4W2j Apparently I rebooted but never reran freebsd-update: # freebsd-update fetch You have a partially completed upgrade pending Run '/usr/sbin/freebsd-update install' first. Run '/usr/sbin/freebsd-update fetch -F' to proceed anyway. # /usr/sbin/freebsd-update install Installing updates...rm: ///usr/src/contrib/llvm-project/libcxx/include/__tuple: is a directory rm: ///usr/src/contrib/llvm-project/libcxx/include/__string: is a directory rm: ///usr/include/c++/v1/__tuple: is a directory rm: ///usr/include/c++/v1/__string: is a directory Restarting sshd after upgrade Performing sanity check on sshd configuration. Stopping sshd. Waiting for PIDS: 1029. Performing sanity check on sshd configuration. Starting sshd. Scanning //usr/share/certs/blacklisted for certificates... Scanning //usr/share/certs/trusted for certificates... Scanning //usr/local/share/certs for certificates... done. duh. Thanks for questions and pointers. Gary On 8/20/24 06:10, Gary Aitken wrote: > On 8/20/24 03:56, list_freebsd@bluerosetech.com wrote: >> On 2024-08-19 21:38, Gary Aitken wrote: >>> After upgrading 13.2 to 13.3, and rebooting, an attempt to upgrade >>> packages shows: >>> >>> # pkg upgrade -F >>> Updating FreeBSD repository catalogue... >>> Fetching meta.conf: 100%    178 B   0.2kB/s    00:01 >>> Fetching packagesite.pkg: 100%    7 MiB   1.1MB/s    00:07 >>> Processing entries:   0% >>> Newer FreeBSD version for package zziplib: >>> To ignore this error set IGNORE_OSVERSION=yes >>> - package: 1303001 >>> - running kernel: 1302001 >>> >>> yet: >>> >>> #uname -a FreeBSD ... 13.3-RELEASE-p5 FreeBSD 13.3-RELEASE-p5 >>> GENERIC amd64 >>> >>> Why does it say the running kernel is 1302001 and not 1303001? >> >> Did you run `freebsd-update install` again after rebooting? > > Yes, twice > >> What are the outputs of these commands: >> # freebsd-version -kru > # freebsd-version -kru > 13.3-RELEASE-p5 > 13.3-RELEASE-p5 > 13.2-RELEASE-p12 > > I guess that explains it, although I don't understand why "userland" is > out of date. > What is the "installed userland" that the manpage refers to? > And how does it get updated? > >> # file /usr/bin/uname > # file /usr/bin/uname > /usr/bin/uname: ELF 64-bit LSB pie executable, x86-64, version 1 (FreeBSD), dynamically linked, interpreter /libexec/ld-elf.so.1, for FreeBSD 13.2, FreeBSD-style, stripped From nobody Thu Aug 22 14:03:40 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WqQ0k4pXsz5Syxh for ; Thu, 22 Aug 2024 14:03:50 +0000 (UTC) (envelope-from ml@netfence.it) Received: from soth.netfence.it (mailserver.netfence.it [78.134.96.152]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mailserver.netfence.it", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WqQ0j03jSz4kT1 for ; Thu, 22 Aug 2024 14:03:48 +0000 (UTC) (envelope-from ml@netfence.it) Authentication-Results: mx1.freebsd.org; dkim=none; dmarc=pass (policy=none) header.from=netfence.it; spf=pass (mx1.freebsd.org: domain of ml@netfence.it designates 78.134.96.152 as permitted sender) smtp.mailfrom=ml@netfence.it Received: from [10.1.2.18] (alamar.local.netfence.it [10.1.2.18]) (authenticated bits=0) by soth.netfence.it (8.18.1/8.17.2) with ESMTPSA id 47ME3eZe087388 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO) for ; Thu, 22 Aug 2024 16:03:41 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: soth.netfence.it: Host alamar.local.netfence.it [10.1.2.18] claimed to be [10.1.2.18] Message-ID: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> Date: Thu, 22 Aug 2024 16:03:40 +0200 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Content-Language: en-US To: freebsd-questions@freebsd.org From: Andrea Venturoli Subject: security.bsd.see_other_uids/gids and jails Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: --- X-Spamd-Result: default: False [-3.79 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-1.00)[-1.000]; DMARC_POLICY_ALLOW(-0.50)[netfence.it,none]; R_SPF_ALLOW(-0.20)[+ip4:78.134.96.152]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; ASN(0.00)[asn:35612, ipnet:78.134.0.0/17, country:IT]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; RCVD_COUNT_ONE(0.00)[1]; RCVD_TLS_ALL(0.00)[]; R_DKIM_NA(0.00)[]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; FROM_HAS_DN(0.00)[]; HAS_XAW(0.00)[]; MID_RHS_MATCH_FROM(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; TO_DN_NONE(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; ARC_NA(0.00)[] X-Rspamd-Queue-Id: 4WqQ0j03jSz4kT1 Hello. Is there any way to set security.bsd.see_other_uids and security.bsd.see_other_gids per jail? I'd like to keep them to 0 for better security, but I've got a couple of software that requires one or the other. Since those software are in their own jail, is it possible to disable them globally, but allow them only in those jail? Guess the answer is no :(, but I thought I'd ask... bye & Thanks av. From nobody Thu Aug 22 19:07:05 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WqXkn2sFKz5TSst for ; Thu, 22 Aug 2024 19:07:13 +0000 (UTC) (envelope-from doug@safeport.com) Received: from fledge.watson.org (fledge.watson.org [147.160.157.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "A1-48603", Issuer "A1-48603" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WqXkm4Z4Dz4KYk for ; Thu, 22 Aug 2024 19:07:12 +0000 (UTC) (envelope-from doug@safeport.com) Authentication-Results: mx1.freebsd.org; none Received: from fledge.watson.org (doug@localhost [127.0.0.1]) by fledge.watson.org (8.17.1/8.17.1) with ESMTPS id 47MJ76Aq020616 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Thu, 22 Aug 2024 19:07:06 GMT (envelope-from doug@safeport.com) Received: from localhost (doug@localhost) by fledge.watson.org (8.17.1/8.17.1/Submit) with ESMTP id 47MJ75ev020610; Thu, 22 Aug 2024 19:07:06 GMT (envelope-from doug@safeport.com) X-Authentication-Warning: fledge.watson.org: doug owned process doing -bs Date: Thu, 22 Aug 2024 19:07:05 +0000 (UTC) From: doug Reply-To: doug@safeport.com To: Andrea Venturoli cc: freebsd-questions@freebsd.org Subject: Re: security.bsd.see_other_uids/gids and jails In-Reply-To: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> Message-ID: <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> References: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:6405, ipnet:147.160.157.0/24, country:US] X-Rspamd-Queue-Id: 4WqXkm4Z4Dz4KYk On Thu, 22 Aug 2024, Andrea Venturoli wrote: > Hello. > > Is there any way to set security.bsd.see_other_uids and > security.bsd.see_other_gids per jail? > > I'd like to keep them to 0 for better security, but I've got a couple of > software that requires one or the other. > Since those software are in their own jail, is it possible to disable them > globally, but allow them only in those jail? > > Guess the answer is no :(, but I thought I'd ask... > > bye & Thanks > av. > > The rules of the road here are: make an effort to answer the question, which I doing anyway: echo 'security.bsd.see_other_uids=0' >> /etc/sysctl.conf echo 'security.bsd.see_other_gids=0' >> /etc/sysctl.conf This assume you installed FreeBSD. During installation you are asked if you want to do this. From nobody Fri Aug 23 10:56:36 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WqlTj2VtDz5V84V for ; Fri, 23 Aug 2024 03:11:37 +0000 (UTC) (envelope-from hlyg2023@outlook.com) Received: from HK2PR02CU002.outbound.protection.outlook.com (mail-eastasiaazolkn19010007.outbound.protection.outlook.com [52.103.64.7]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.protection.outlook.com", Issuer "DigiCert Cloud Services CA-1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WqlTg4zV3z56Jl for ; Fri, 23 Aug 2024 03:11:35 +0000 (UTC) (envelope-from hlyg2023@outlook.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=outlook.com header.s=selector1 header.b=d1oHypgK; dmarc=pass (policy=none) header.from=outlook.com; spf=pass (mx1.freebsd.org: domain of hlyg2023@outlook.com designates 52.103.64.7 as permitted sender) smtp.mailfrom=hlyg2023@outlook.com; arc=pass ("microsoft.com:s=arcselector10001:i=1") ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=xbO5NUTxKTLC57mYyK04PuqIDmbYNMbVmwk8BQbhF9TZ7eYtlw13YGT0UwUeE/XBIHLxIcHG4mYptu4RTn4tsLFp/DSXPL6srJrpA9wquC9r/AASpxHlVo2JqGonsFhLkUWO5U7ZgSoDjYUiVXEj3c5tKLLQMkTLGU1c64fVnajIPmFz/Yasbzh4pG8nHkc+re2t/A55smyK3Z3rqwaWHoHe44SLy2WLXY5ocOM1wXeMAi4n7aex2zkCLzOt1mRFFEnLGyy5PwcI3CmbmjNith7Yv7mhstDzhEI6MTcGD+wx3Lb4S5tfrBbJ1YLlW0bXbwe0Ou/vCRdFmJXxwuY46A== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=6iXOmFAbMbgBFmwSp8w+/jrePGvWNhWawaldXf/iGZ0=; b=KtAipExWljIg1SMTmV8WmEa2UqYXlnQcxQ4NmACtnmXt+RM2/rhLLPpUFOZ4Pk7F+p8VEtqZTyDn+daQDWmAmONtUgcoRwpE0WwH6lt1YP5ZZc3ch3mJQ04PATcv7KmPNgf/INkD7jaSeLmJ8kU+ufkk3aE8MHjrL3b7xl8jq4LHKTbT9B0RzT3bBQLGfO1lZQEEFOArR1kXgZLuTUV8WrLpo1Fp4DVbUTHeUYfPtuIkesyh7P7vnzyuRfEv+dVKRx0QFC7gNKaR+N2v8MUXJ5xe/sgGjoWR/PHNxDZ3c3aCrOB86o2xWOS1uvp0JsqurGVztiicK8kuJnPMtQTvBw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6iXOmFAbMbgBFmwSp8w+/jrePGvWNhWawaldXf/iGZ0=; b=d1oHypgKXlvV7PeflMMskjYWgglenTk1TYn9ZhnKe1sQLT3wZuR+FC2Lu8JTe6XBdCmtRmXKk+zvlRSCvIvIheofCoVYw7FI3B+ndCvykP/obbOEAVEEJxSN/D7dIB1Oe9BlmVFu3Euq2JYvc5Y2atB1VHD3D2cWuVbjlYkY/zwMpua8MdNOlXfSQ7UapEQGDv9N/jituWCvvfnt/lH116yB+FYEw5nEyYRkaSFbXF80NBcF+GXFiGAmJWFJAnX+7Ta4/FVZDLdGjQanND7nz4XnsJb+sRdPiXnNaVcINm77dFz0bGlMtlHdBWWaUsMArSAZYrbOiCCo5U5tHeYBpw== Received: from TYSPR02MB8382.apcprd02.prod.outlook.com (2603:1096:405:c6::11) by TY0PR02MB5972.apcprd02.prod.outlook.com (2603:1096:400:211::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7875.22; Fri, 23 Aug 2024 02:56:40 +0000 Received: from TYSPR02MB8382.apcprd02.prod.outlook.com ([fe80::3c53:7f8e:1607:787c]) by TYSPR02MB8382.apcprd02.prod.outlook.com ([fe80::3c53:7f8e:1607:787c%5]) with mapi id 15.20.7875.019; Fri, 23 Aug 2024 02:56:40 +0000 Message-ID: Date: Fri, 23 Aug 2024 18:56:36 +0800 User-Agent: Mozilla Thunderbird To: freebsd-questions@freebsd.org Content-Language: en-US From: hlyg Subject: problem with jmtpfs Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-TMN: [F0gl96axUNkVxJKZLz0Acot0CYdfiyxM] X-ClientProxiedBy: TYCP286CA0067.JPNP286.PROD.OUTLOOK.COM (2603:1096:400:31a::9) To TYSPR02MB8382.apcprd02.prod.outlook.com (2603:1096:405:c6::11) X-Microsoft-Original-Message-ID: <4415f39d-ca34-4524-9941-efcbd79d9821@outlook.com> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 X-MS-Exchange-MessageSentRepresentingType: 1 X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: TYSPR02MB8382:EE_|TY0PR02MB5972:EE_ X-MS-Office365-Filtering-Correlation-Id: 724f21cf-9b2b-483f-5bb0-08dcc31f35d0 X-Microsoft-Antispam: BCL:0;ARA:14566002|15080799003|5072599009|19110799003|8060799006|461199028|3412199025|440099028; X-Microsoft-Antispam-Message-Info: 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 X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1 X-MS-Exchange-AntiSpam-MessageData-0: =?utf-8?B?a1FYSG9qeGZWVlBhT253bTMzRjBMZzhDVVY4VGs1ZE1DaWdYUWZOTGdKR05z?= =?utf-8?B?Zm44Wk5TOWF6Yll6QmVnV1JkeEFCVzhYUXNUTTJEWGYwTkc4Z0Jjb3BRTnhM?= =?utf-8?B?QjFtcGNvTnVGbDNqNytkNGhGMnNQNXlQWVQxV1FHRTRvL2VXNzJ3T3RPckcx?= =?utf-8?B?NEVXN01kcUJWV0phQUJmVVVnSXhod3k2YlVGcDVnUHdQL3ZaZGduM3ZMM2xS?= =?utf-8?B?TThtcG9yVkY5RzB2NTZhMW5hdGtLdDlOUXhQejJDSFI3NDl3WnRwekljSFcr?= =?utf-8?B?OEpnYWI3bytEczRSZVlyWVpGa3dyUjM4NzZ3NFVLNkNRWS9PbW5lRHpkeG40?= =?utf-8?B?bFpOU2xyRk5WVEw0bW5JN0pGd3ZhM3E3K2U5bkJMUjFXS2FWT3Fjd29RQXJI?= =?utf-8?B?NEc1Vlo2TGdOL2ZJdzJOaEJPSWo0WmVlQmlGaUdyY2hLdUQ5K2dBU3FJUGdJ?= =?utf-8?B?bFhJd3ZqRnlvNW5aWDYxQm9KVlZ5dnRNMzZRNVltZ3V0NUUrTHdSaFBuNlhM?= =?utf-8?B?bWpxSEt5c2cvNnV0M3ZUd0YrSEs1MHBBbGMrdUdpVS9KN1RRUHRkRXRvT2Fo?= =?utf-8?B?UG1KdG8yUDZPQ0R3ZlIrVjNIbldLNEVYcGJ5TlpUaGJpSnJMR0ZWQmc2ajNy?= =?utf-8?B?UXV1V0lzeWI3ZjdqZHBiVmtOT25xSC9jN21zQXQ1QytqUWt4dFBrVjY5dDlk?= =?utf-8?B?VHhWc0pvaDRINEtiYWJ5MlZ5Mm0wZUpJWUxpRzRxV0VDdjRzaW1PL3R6Nnl2?= =?utf-8?B?dllKZyt4TGp0a2UwSFNXdHY5enF1OHpOSWxoMGNSSUd0UCt6VllQWjRWVkhM?= =?utf-8?B?MStPMGJyRjZIbm5nY001K2labUxreHNDRnpEazBZNjNsbGovUzVmSzZMOGpQ?= =?utf-8?B?TEJ2ZUwvQVhDSWRqT1Mxc0xGcklWdCtwL0VCdVZaMytqc0hxZ2hKWnhWTHc3?= =?utf-8?B?ZEpjenBSZDZMR203N2xmUDBmWEN3OThROTJENlkvUjVtMG5QcXFicXJWdFpH?= =?utf-8?B?aUJqTDRZaEtIcHlsV1gwcFg5ekx6LytXZmVraG1FS3FvNlZsV3hPVmdMOVVj?= =?utf-8?B?MEE3ejdPemFEc01SYkdqcTBJTEpvbG82cHdxRW9vb0RMYlRJeCtRK1RtdjZk?= =?utf-8?B?UGdwU0NQNjlRRDBIWjRybnV2VFptV3gvV05NTWZaNW5tWDI5ajExY1dseGhY?= =?utf-8?B?TjZzN2g2ZzNOck1DbWxuRDhHMTJteG5DTXhKbThYZjI2ZFl6djlESkhnR1dB?= =?utf-8?B?V3FuQkhyRkk1Y2MrMGZzQWFtSHQydGlibm4wN1gwL3hkQytQVHpCY1dWTmV4?= =?utf-8?B?YmVYYlpzd0IzY1c3Zjk5ZDNjb0QrTGhDREVvdHhIZlpXaVdHRUluU3FOUDNC?= =?utf-8?B?Ry9EYTFkWVA5QWNBSWtSVmorTEZtWnBvY2xScXh3QTVid0pEdnhKY0JzM2Mr?= =?utf-8?B?Ky9PUDY2bytJS2YvVnJ2ZmQ5Q1Vidy9NeWpQcHJ0WDFaSlZQTDdHcUZiOUsz?= =?utf-8?B?NFZhRmxCZ0JmZDI0a1BzU09jQ0wrWnh1L2lUejhydVd6ZGFHYTY0bWlySS94?= =?utf-8?B?QmR4K1orVGN0RnNCREphMmVBKzRNYUhBcWRVb3NYR3JwVUQycHVVNUQ3NDZt?= =?utf-8?Q?z1PF0MZzx7rV5w1hUONmjOEPNYjtjwA450Tst0XKZR2s=3D?= X-OriginatorOrg: outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 724f21cf-9b2b-483f-5bb0-08dcc31f35d0 X-MS-Exchange-CrossTenant-AuthSource: TYSPR02MB8382.apcprd02.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-OriginalArrivalTime: 23 Aug 2024 02:56:40.2584 (UTC) X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted X-MS-Exchange-CrossTenant-Id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000 X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY0PR02MB5972 X-Spamd-Bar: ++ X-Spamd-Result: default: False [2.33 / 15.00]; DATE_IN_FUTURE(4.00)[7]; FORGED_MUA_THUNDERBIRD_MSGID_UNKNOWN(2.50)[]; ARC_ALLOW(-1.00)[microsoft.com:s=arcselector10001:i=1]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; DMARC_POLICY_ALLOW(-0.50)[outlook.com,none]; R_SPF_ALLOW(-0.20)[+ip4:52.100.0.0/14]; R_DKIM_ALLOW(-0.20)[outlook.com:s=selector1]; NEURAL_HAM_SHORT(-0.18)[-0.179]; MIME_GOOD(-0.10)[text/plain]; XM_UA_NO_VERSION(0.01)[]; GREYLIST(0.00)[pass,body]; TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_TLS_LAST(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; DWL_DNSWL_NONE(0.00)[outlook.com:dkim]; FREEMAIL_FROM(0.00)[outlook.com]; FROM_HAS_DN(0.00)[]; FREEMAIL_ENVFROM(0.00)[outlook.com]; TO_DN_NONE(0.00)[]; RCVD_COUNT_TWO(0.00)[2]; FROM_EQ_ENVFROM(0.00)[]; DKIM_TRACE(0.00)[outlook.com:+]; MID_RHS_MATCH_FROMTLD(0.00)[]; RWL_MAILSPIKE_POSSIBLE(0.00)[52.103.64.7:from]; MLMMJ_DEST(0.00)[freebsd-questions@freebsd.org]; ASN(0.00)[asn:8075, ipnet:52.96.0.0/12, country:US]; RCVD_IN_DNSWL_NONE(0.00)[52.103.64.7:from] X-Rspamd-Queue-Id: 4WqlTg4zV3z56Jl the only doc i find seems to be written for linux, not bsd /usr/local/share/doc/jmtpfs/README.rst it tells me to "Unmount with fusermount" but fusermount isn't available or isn't installed? or shall i use umount instead? From nobody Fri Aug 23 06:42:09 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4Wqr8j5RZGz5VQQt for ; Fri, 23 Aug 2024 06:42:13 +0000 (UTC) (envelope-from ml@netfence.it) Received: from soth.netfence.it (mailserver.netfence.it [78.134.96.152]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mailserver.netfence.it", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4Wqr8j1cFqz4Cvq for ; Fri, 23 Aug 2024 06:42:13 +0000 (UTC) (envelope-from ml@netfence.it) Authentication-Results: mx1.freebsd.org; none Received: from [10.1.2.18] (alamar.local.netfence.it [10.1.2.18]) (authenticated bits=0) by soth.netfence.it (8.18.1/8.17.2) with ESMTPSA id 47N6gAI0056537 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Fri, 23 Aug 2024 08:42:10 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: soth.netfence.it: Host alamar.local.netfence.it [10.1.2.18] claimed to be [10.1.2.18] Message-ID: <0fe260da-43ff-4c14-9807-7b81cec37c83@netfence.it> Date: Fri, 23 Aug 2024 08:42:09 +0200 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: security.bsd.see_other_uids/gids and jails Content-Language: en-US To: doug@safeport.com Cc: freebsd-questions@freebsd.org References: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> From: Andrea Venturoli In-Reply-To: <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:35612, ipnet:78.134.0.0/17, country:IT] X-Rspamd-Queue-Id: 4Wqr8j1cFqz4Cvq On 8/22/24 21:07, doug wrote: > The rules of the road here are: make an effort to answer the question, > which I doing anyway: > > echo 'security.bsd.see_other_uids=0' >> /etc/sysctl.conf > echo 'security.bsd.see_other_gids=0' >> /etc/sysctl.conf This was not my question actually. My question was: after I did the above, is it possible to reenable these values selectively in a jail? bye & Thanks av. From nobody Fri Aug 23 09:46:52 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WqwFy3zCcz5Sx48 for ; Fri, 23 Aug 2024 09:47:02 +0000 (UTC) (envelope-from che@bein.link) Received: from mail.bein.link (bein.link [37.252.124.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 4WqwFy0YBZz4Ypk for ; Fri, 23 Aug 2024 09:47:02 +0000 (UTC) (envelope-from che@bein.link) Authentication-Results: mx1.freebsd.org; none Received: from [192.168.10.12] (unknown [141.136.88.209]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.bein.link (Postfix) with ESMTPSA id 44913238389; Fri, 23 Aug 2024 09:46:06 +0000 (UTC) Message-ID: <05186568-cf4e-4b11-a725-964403e68b85@bein.link> Date: Fri, 23 Aug 2024 13:46:52 +0400 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: problem with jmtpfs To: hlyg , freebsd-questions@freebsd.org References: Content-Language: en-US From: Maxim V Filimonov In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=bein.link; s=mail; t=1724406366; bh=+YkbZJY3Ea/Qcj2m22GJVRXoj8Q=; h=Message-ID:Date:MIME-Version:Subject:To:References:From:In-Reply-To:Content-Type:Content-Transfer-Encoding; b=cbx+N8M/j5ZIOOFs81eQmdYcZesAz3yAKU8pPRhiKEq/xTM+eSbyfi56ENtyNP4P3dg41Imt7qRizDkHb98u8CgDWv2MfjhN6Gm8uDkcJZnCTKZLJ6uocJ2+pqAsptZW8z/ySRBy1OSKM1G+EblxFeud3AvHq0NN0cQv3Rsdr3c= X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:196752, ipnet:37.252.120.0/21, country:NL] X-Rspamd-Queue-Id: 4WqwFy0YBZz4Ypk Hello, Use `umount` instead, right. Works with any (?) fusefs file system. On 23.08.2024 14:56, hlyg wrote: > the only doc i find seems to be written for linux, not bsd > > /usr/local/share/doc/jmtpfs/README.rst > > it tells me to "Unmount with fusermount" > > but fusermount isn't available or isn't installed? > > or shall i use umount instead? > > -- wbr, Maxim Filimonov From nobody Fri Aug 23 23:58:40 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WrH8m6YZwz5TjCs for ; Fri, 23 Aug 2024 23:58:48 +0000 (UTC) (envelope-from doug@safeport.com) Received: from fledge.watson.org (fledge.watson.org [147.160.157.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "A1-48603", Issuer "A1-48603" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WrH8m4gFSz4nPH for ; Fri, 23 Aug 2024 23:58:48 +0000 (UTC) (envelope-from doug@safeport.com) Authentication-Results: mx1.freebsd.org; none Received: from fledge.watson.org (doug@localhost [127.0.0.1]) by fledge.watson.org (8.17.1/8.17.1) with ESMTPS id 47NNwgv9083080 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Fri, 23 Aug 2024 23:58:42 GMT (envelope-from doug@safeport.com) Received: from localhost (doug@localhost) by fledge.watson.org (8.17.1/8.17.1/Submit) with ESMTP id 47NNweZn083073; Fri, 23 Aug 2024 23:58:42 GMT (envelope-from doug@safeport.com) X-Authentication-Warning: fledge.watson.org: doug owned process doing -bs Date: Fri, 23 Aug 2024 23:58:40 +0000 (UTC) From: doug@safeport.com Reply-To: doug@fledge.watson.org To: Andrea Venturoli cc: freebsd-questions@freebsd.org Subject: Re: security.bsd.see_other_uids/gids and jails In-Reply-To: <0fe260da-43ff-4c14-9807-7b81cec37c83@netfence.it> Message-ID: References: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> <0fe260da-43ff-4c14-9807-7b81cec37c83@netfence.it> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:6405, ipnet:147.160.157.0/24, country:US] X-Rspamd-Queue-Id: 4WrH8m4gFSz4nPH On Fri, 23 Aug 2024, Andrea Venturoli wrote: > On 8/22/24 21:07, doug wrote: > >> The rules of the road here are: make an effort to answer the question, >> which I doing anyway: >> >> echo 'security.bsd.see_other_uids=0' >> /etc/sysctl.conf >> echo 'security.bsd.see_other_gids=0' >> /etc/sysctl.conf > > This was not my question actually. > My question was: after I did the above, is it possible to reenable these > values selectively in a jail? > > bye & Thanks > av. > These setting can be changed in a running jail. See sysctl. From nobody Sat Aug 24 10:02:23 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WrXYV3Z3Kz5VX0y for ; Sat, 24 Aug 2024 10:02:38 +0000 (UTC) (envelope-from ml@netfence.it) Received: from soth.netfence.it (mailserver.netfence.it [78.134.96.152]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "mailserver.netfence.it", Issuer "R11" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WrXYS4Plvz4rMN for ; Sat, 24 Aug 2024 10:02:36 +0000 (UTC) (envelope-from ml@netfence.it) Authentication-Results: mx1.freebsd.org; none Received: from [10.1.2.18] (mailserver.netfence.it [78.134.96.152]) (authenticated bits=0) by soth.netfence.it (8.18.1/8.17.2) with ESMTPSA id 47OA2NXY031230 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Sat, 24 Aug 2024 12:02:23 +0200 (CEST) (envelope-from ml@netfence.it) X-Authentication-Warning: soth.netfence.it: Host mailserver.netfence.it [78.134.96.152] claimed to be [10.1.2.18] Message-ID: Date: Sat, 24 Aug 2024 12:02:23 +0200 List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Subject: Re: security.bsd.see_other_uids/gids and jails Content-Language: en-US To: doug@fledge.watson.org Cc: freebsd-questions@freebsd.org References: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> <0fe260da-43ff-4c14-9807-7b81cec37c83@netfence.it> From: Andrea Venturoli In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Scanned-By: MIMEDefang 2.86 X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:35612, ipnet:78.134.0.0/17, country:IT] X-Rspamd-Queue-Id: 4WrXYS4Plvz4rMN On 8/24/24 01:58, doug@safeport.com wrote: > These setting can be changed in a running jail. See sysctl. Thanks, but this does not seem to work. root@myhost:~ # freebsd-version -ku 13.3-RELEASE-p5 13.3-RELEASE-p5 root@myhost:~ # sysctl security.bsd.see_other_uids=0 security.bsd.see_other_uids: 0 -> 0 root@myhost:~ # ezjail-admin console myjail root@myjail:~ # sysctl security.bsd.see_other_uids=1 security.bsd.see_other_uids: 0 sysctl: security.bsd.see_other_uids=1: Operation not permitted Is a newer version of FreeBSD required? Some jail settings? Something else? bye & Thanks av. From nobody Sat Aug 24 17:30:37 2024 X-Original-To: freebsd-questions@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4WrkVS1dPwz5TThH for ; Sat, 24 Aug 2024 17:30:40 +0000 (UTC) (envelope-from doug@safeport.com) Received: from fledge.watson.org (fledge.watson.org [147.160.157.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "A1-48603", Issuer "A1-48603" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4WrkVR5Xh0z4M7b for ; Sat, 24 Aug 2024 17:30:39 +0000 (UTC) (envelope-from doug@safeport.com) Authentication-Results: mx1.freebsd.org; none Received: from fledge.watson.org (doug@localhost [127.0.0.1]) by fledge.watson.org (8.17.1/8.17.1) with ESMTPS id 47OHUca2049530 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=NO); Sat, 24 Aug 2024 17:30:38 GMT (envelope-from doug@safeport.com) Received: from localhost (doug@localhost) by fledge.watson.org (8.17.1/8.17.1/Submit) with ESMTP id 47OHUbt3049524; Sat, 24 Aug 2024 17:30:38 GMT (envelope-from doug@safeport.com) X-Authentication-Warning: fledge.watson.org: doug owned process doing -bs Date: Sat, 24 Aug 2024 17:30:37 +0000 (UTC) From: doug@safeport.com Reply-To: doug@fledge.watson.org To: Andrea Venturoli cc: freebsd-questions@freebsd.org Subject: Re: security.bsd.see_other_uids/gids and jails In-Reply-To: Message-ID: References: <902826c1-fc50-48aa-867d-8010b5814df2@netfence.it> <61ed9412-563-a5f-a3c0-66ff23cb5ac4@safeport.com> <0fe260da-43ff-4c14-9807-7b81cec37c83@netfence.it> List-Id: User questions List-Archive: https://lists.freebsd.org/archives/freebsd-questions List-Help: List-Post: List-Subscribe: List-Unsubscribe: X-BeenThere: freebsd-questions@freebsd.org Sender: owner-freebsd-questions@FreeBSD.org MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII; format=flowed X-Spamd-Bar: ---- X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:6405, ipnet:147.160.157.0/24, country:US] X-Rspamd-Queue-Id: 4WrkVR5Xh0z4M7b On Sat, 24 Aug 2024, Andrea Venturoli wrote: > On 8/24/24 01:58, doug@safeport.com wrote: > >> These setting can be changed in a running jail. See sysctl. > > Thanks, but this does not seem to work. > > root@myhost:~ # freebsd-version -ku > 13.3-RELEASE-p5 > 13.3-RELEASE-p5 > root@myhost:~ # sysctl security.bsd.see_other_uids=0 > security.bsd.see_other_uids: 0 -> 0 > root@myhost:~ # ezjail-admin console myjail > root@myjail:~ # sysctl security.bsd.see_other_uids=1 > security.bsd.see_other_uids: 0 > sysctl: security.bsd.see_other_uids=1: Operation not permitted > > > > Is a newer version of FreeBSD required? > Some jail settings? > Something else? > If you did this command as root, your system is seriously messed up. I did this on a 12.2 system runing as 12.2 jail.