@evilham@chaos.social
@evilham@chaos.social avatar

evilham

@evilham@chaos.social

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Ransil, to random Spanish
@Ransil@todon.eu avatar

deleted_by_author

    •
    evilham,
    @evilham@chaos.social avatar

    @Ransil mi profe de euskara mencionó esto: https://www.inguraonline.eus/

    evilham, to ipv6
    @evilham@chaos.social avatar

    rocks. Flawless physical migration with only a very minor downtime :-).
    Thinking about networks as segregated network segments is just SO MUCH easier, this time around, I went and didn't even bother with setting up IPv4.

    evilham,
    @evilham@chaos.social avatar

    @goetz @feld afaik, yes. But I don't use DHCPv6 beyond as a client for prefix delegation from ISP, internally I use SLAAC with the privacy extensions disabled for machines.
    This means I just assign and route the /64s I need, and apply changes to the DNS zones, which I manage with the prefixes as a variable.
    Then, ofc, firewalls usually have to be checked a tad, but provisioning takes care of the pf macros :-) and of programs that need the IP addresses (like pg_hba to limit hosts).

    evilham,
    @evilham@chaos.social avatar

    @feld @goetz is it stupid though?

    Yes, in certain cases it can be an overhead, but it really is just layered security. Should sth be funky with my firewall, each database can still only be accessed by their allowed hosts, also using authentication.

    Of course this depends on the nature of the service, but I'd argue most of the time, the list of hosts that need access to a given database is pretty static and short.

    I do prefer adding effective layers of security for little overhead :-).

    evilham, to random
    @evilham@chaos.social avatar

    I somehow ended up programming some Pascal today, it had been... several years XD.

    subpop, to random
    @subpop@floss.social avatar

    Genuinely curious, and not able to research much right now. How are the #BSD affected by the #xz #libLZMA exploit and how are they responding?

    evilham,
    @evilham@chaos.social avatar

    @subpop
    TL;DR: probs no remote OpenSSH vuln in #BSD, but maybe things to be discovered along with Linux'

    From what I gathered: it relies on glibc, and on OpenSSH-server being patched to depend on libsystemd0.
    So, in theory, the #BSD s would not vulnerable to this instance of issues.

    HOWEVER: xz 5.4.4 is included in e.g. #FreeBSD base, and it is posterior to the account being involved in xz, and a similar thing happens with libarchive.
    I can imagine something similar happens with other #BSD

    vicgrinberg, to fediverse
    @vicgrinberg@mastodon.social avatar

    The last two things I loved watching were "Sense 8" and "She Ra" (this one following a recommendation here in the !)

    What would you recommend me to watch next based on the above?

    Old stuff welcome, I likely haven't watched it - I want perhaps one episode every two weeks or so on average. Has to be available in some way in the Netherlands in English or German. Finished series preferred.

    (Things I definitely dislike: romcoms and comedy.)

    evilham,
    @evilham@chaos.social avatar

    @vicgrinberg @david yeeeees, totally Kipo!
    And adding to that: The Owlhouse :-)

    evilham, to random
    @evilham@chaos.social avatar

    I got shutdown by stripe, because "crowdfunding-like endeavours are not allowed".

    Checking their ToS, it seems like that is correct: https://stripe.com/en-de/legal/restricted-businesses

    How do people using @Liberapay or #fosspay solve this? Just pretend a service is being offered?

    noellemitchell, to random
    @noellemitchell@mstdn.social avatar

    Now I remember why I started my book blog 😅 So that it would motivate me to read and so I wouldn't spend time on social media and YouTube lol 😆 Guess maybe I need to start it back up again. 🤔

    evilham,
    @evilham@chaos.social avatar

    @noellemitchell you could also look for a BookWyrm instance on the fediverse that targets your interests or community :-)

    viennawriter, to random German
    @viennawriter@literatur.social avatar

    Hey @nextcloud, with who should I talk about the forms plugin and probable feature-requests?

    evilham,
    @evilham@chaos.social avatar

    @pludikovsky @viennawriter @nextcloud this, yes.

    They are quite responsive over there.

    JustineSmithies, to FreeBSD
    @JustineSmithies@fosstodon.org avatar

    I think I'm going to put #FreeBSD aside for a while as since the 14.0 update and believe me I have even done a fresh install. I cannot get any #Wayland compositor to run. I've read the handbook and even went back through the previous help I got from @evilham . I know seatd is working and I have XDG_RUNTIME_DIR set correct it's just that sway,river or hyprland just exit on signal 6 ( core dumped) the seat is running fine. I have my i915kms driver loaded according to kldstat. :void: #Linux is home

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies it shouldn't!

    This is one of those instances where the separation of ports and base isn't great.

    Mind trying a last thing before giving up?

    I happen to build drm-kmod packages for 14 on each commit, that ought to work for you, I am pretty sure this should be your issue.

    You can get the matching packages from:
    https://pkg.freebsd.evilham.com/packages-kmod/FreeBSD%3A14%3Aamd64/All/

    And use pkg add -f to install them.

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies download the .pkg files :-) then pkg add expects a local file.

    You probs only need
    https://pkg.freebsd.evilham.com/packages-kmod/FreeBSD%3A14%3Aamd64/All/drm-515-kmod-5.15.118_2.pkg

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies puzzled! Sure you didnt get that before?

    I'd need an actual computer to check, but you can also try getting the appropriate intel firmware pkg from the same link (pkg info | grep firmware should tell you the name of the package).

    Will tell you more tomorrow!

    neurothing, to random Italian
    @neurothing@metalhead.club avatar

    Hello, people!

    Glad to be here again! And to start a new , hoping to give you all a good time!

    And "time" will be the word of the day. Time flows, time is made by eras, years, days, hours... what's asked for today is: five songs about time!

    You can refer to time in whatever way you want: talking about age, seconds that passes, the topic is so wide!

    is passing!

    Mine in the next toot

    evilham,
    @evilham@chaos.social avatar

    @neurothing
    Queen: '39
    Rocky Horror Picture Show: Time Warp
    Björk: I miss you
    Pink Floyd: Wish you were here
    Nightwish: where were you last night?

    evilham, to FreeBSD
    @evilham@chaos.social avatar

    Question for the #FreeBSD #bhyve people: is booting Linux from XFS partitions not supported?

    It's not the first time that seemingly the same installation fails to boot with XFS, but does boot when installing with ext4.

    Having a journaling file system like ext4 on top of ZFS doesn't seem very... sane.

    evilham,
    @evilham@chaos.social avatar

    @feld I thought this was something related to our boot-loader, but no, it seems like it's grub2 itself which cannot boot from XFS and Debian will happily let one install things like that :-).

    So I guess that if one doesn't want a journaling FS, the answer is to make sure there is an ext2 partition for grub2 and then the XFS partition for the rest.

    JustineSmithies, to FreeBSD
    @JustineSmithies@fosstodon.org avatar

    Has anyone ever installed #FreeBSD on a ThinkPad P14s Gen 1 AMD Ryzen 7 pro 4750u with integrated AMD Renoir GPU and got the GPU working out of interest ???
    Just wondering how I could test comparability without wiping what's already installed ? 🤔

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies as someone else mentioned: GhostBSD should help you test.

    As someone with an AMD Ryzen too, but a different GPU: I can conjecture that it does work, there is actually a DRM package for your Renoir!

    This is how I did it in 2019: https://evilham.com/en/blog/2019-ThinkPad-A485-FreeBSD/
    It should be super outdated and the issues I found there are already solved in main / by events (like newer BIOS)

    JustineSmithies, to FreeBSD
    @JustineSmithies@fosstodon.org avatar

    I have to say that after a bit of a faff to get window managers to run caused most probably by yours truly. I am finding to be really better than expected. I can run the likes of Sway, River, Hyprland without issue and I'm really liking ZFS with encryption and OMG Geli doesn't half unlock the filesystem fast. It unlocks on this poor wee Celeron faster than my AMD Thinkpad P14s does with luks and grub. Not saying I'm a convert just saying that's all. 😉 :freebsd:

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies hah, that's how it starts!

    FWIW: I just had one of those "OMG #FreeBSD keeps making my life easier" moments.

    Turns out, routing tables are surprisingly easy to manage, I just had never had a need for that, but was able to figure a "complex" networking situation in a matter of a couple minutes by looking at tcpdumps and a couple manuals :-).

    JustineSmithies, to FreeBSD
    @JustineSmithies@fosstodon.org avatar

    #FreeBSD folks I have an issue and I think I need to either change permissions or add my user to a group ? I have installed the following #Wayland #WM Sway, River and to see if it works Hyprland. I can run Sway no problem as my user justine but both River and Hyprland refuse as my user but I am able to run them up as root which I know is very wrong. So how do I fix this as cannot see anything in the FreeBSD manual ??

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies nice! Soooo, how do the permissins for /tmp look like? is it backed by ZFS's tmp dataset? or is it a tmpfs?

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies I think the 777 for XDG_RUNTIME_DIR is not critical, but rather a warning (should be: 700).

    The critical error seems to be /tmp/dbus-....! which is also /tmp! :-D

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies great, so your user doesn't have permissions there! (try with your user mkdir /tmp/test)

    That's probably the issue, are you sure it's a temporary file system? (mount -l should say something like tmpfs)
    The permissions should probably look like this: drwxrwxrwt

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies haha, no biggy, we've all been in these situations, it is better not to go alone :-).

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies

    ooh, so, to figure out which FS is actually under /tmp (I'd bet on ZFS' tmp as IIRC that runs later) you can run: df -h /tmp

    In any case, to isolate that, you can force yet another mount on the same dir (mount -t tmpfs tmpfs /tmp) and check / change the permissions, then try to run river :-D.
    If it works we can make these changes permanent!

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies oooh, the thing is: by default I think the permissions are 1777 as @feld was mentioning.

    Maybe along the tests something changed that!

    I'm glad it's fixed :-) in any case!

    evilham,
    @evilham@chaos.social avatar

    @JustineSmithies I'd think so! But I'd leave it, it doesn't matter really and in certain cases can be useful (e.g. you are booting in recovery and not all datasets are mounted)

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • thenastyranch
  • rosin
  • GTA5RPClips
  • osvaldo12
  • love
  • Youngstown
  • slotface
  • khanakhh
  • everett
  • kavyap
  • mdbf
  • DreamBathrooms
  • ngwrru68w68
  • provamag3
  • magazineikmin
  • InstantRegret
  • normalnudes
  • tacticalgear
  • cubers
  • ethstaker
  • modclub
  • cisconetworking
  • Durango
  • anitta
  • Leos
  • tester
  • JUstTest
  • All magazines
    •