@jana I have no problems on FreeBSD with this. I use keychain from funtoo, and resident keys, without issue. I have a short function to run at login to load the key via pin, and then after that it’s touch and go each time. I can dig out some notes if you need it.
dch 
@dch@bsd.network
Warning: may occasionally contain content. Consume in moderation. Finest dumpster fire curation on the fedi.
Posts
Latest notes
No posts yet.
@brnrd and yet not all port maintainers do this @distrowatch @grahamperrin @kaidenshi
@brnrd if you have a suggestion for the upstream sources I can write a thing to simplify it. flua or perl probably.
@dexter what's missing? I would probably want to fix that.
@dexter so in the podman world we have a FreeBSD-toolchain container. This is supposed to be sufficient to build most programs, and also FreeBSD itself.
This list of packages is https://cgit.freebsd.org/src/tree/release/tools/ and is recursive:
with a dash of grep this ends up as:
FreeBSD-base
FreeBSD-bmake
FreeBSD-certctl **
FreeBSD-clibs
FreeBSD-dma **
FreeBSD-fetch **
FreeBSD-inetd **
FreeBSD-ipf **
FreeBSD-ipfw **
FreeBSD-kerberos-lib
FreeBSD-libarchive
FreeBSD-libexecinfo
FreeBSD-libucl
FreeBSD-mtree
FreeBSD-natd **
FreeBSD-netmap **
FreeBSD-openssl-lib
FreeBSD-pf **
FreeBSD-pkg-bootstrap
FreeBSD-rc
FreeBSD-runtime
FreeBSD-set-devel
FreeBSD-set-minimal-jail
FreeBSD-ssh **
FreeBSD-telnet **
FreeBSD-xz
FreeBSD-zfs **
FreeBSD-zoneinfo
** indicates we needed it for jail stuff but not strictly toolchain.
I've started this now & will report back!
@mwl you can probably run pkg clean -a and get a bunch more free too from /var/cache/pkg.
Nobody can afford to waste or buy storage these days.
@AFresh1 wrt smart, actually I did this a few years ago on a customer project if nobody else knows better that's probably sufficient. I'm not up on smartmon tooling, YMMV. I just wait for the zpool scrubs to get angry.
https://gist.skunkwerks.at/dch/2c709cffb61b4e8ba1ed0bf17dfe5af4
@feld the bulk of FLOSS is still done by a relatively small % of developers, and the vast majority consume it without contribution. I think github has become a large part of the problem.
@feld it is. I’m hoping for a summer where I don’t burn out which happened last year in Poland and finding my limits beforehand is key. I can do 2-3 hours of walking in a stretch and not got hit the next day, but I need a day off in between each time.
@pitrh @nuintari Colin Percival puts his own spiped in front of his sshd and I like this a lot. It’s less complicated than wireguard as a kernel module, and doesn’t run as root either. I had issues to access servers at work today due to heavy ssh port scanning so I’ll need to implement some countermeasures this week anyway. Have you any preferred ways to deal with ssh connection saturation? FreeBSD has blocklistd integrated and that’s a pretty good addition, along with pf ofc.
Some good news in my long covid challenges.
In March I started going 3x a week to the local climbing wall. At first I was very tired, and didn't really get a lot done. A couple of times I overdid things, and paid the PEM (Post Exercise Malaise / exhausation) tax for a few days afterwards.
But I've kept going back, staying within my limits, and with the enthusiasm of kid#2 who is super into climbing, there's always somebody to kick my butt into going.
I've done a lot of climbing in the past, from alpine to trad, and it's really nice to get back into it.
Surprisingly, my shoes still fit, even if they're almost worn out, it's more than sufficient for bouldering and traversing.
Given my wide range of other older injuries, I'll probably stick with this for most of the rest of the year.
As a bonus, my partner who was always a better rock climber than I was, and kid#3 are also enjoying it. It's turning into quite the family habit again.
@feld thanks. there were ... quite a few mistakes in the rc script. Luckily git preserves my mistakes for all time, so everybody can enjoy them.
@feld https://reviews.freebsd.org/D56658 does this fix your versitygw_options handling?
e.g. adding:
versitygw_options="--health /health"
gives you localhost:7070/health -> OK
#ElixirConfEU speakers and hosts strutting their stuff
Bart Blast of Hologram fame
Lars Wikman from Underjörd
That guy from Fresha with Chris McCord and Wendy Randolph
Thanks everybody Monika and team for the efforts to make this seamless
@feld it’d it’s a mediatek you might find it works in CURRENT now.
@feld because IPv6 is far enough deployed now that large parts of the internet are ipv6. @ClickyMcTicker @cR0w
@phnt TBF that is when I stopped reading. The idea of having my network stack broken because of some as-yet undiscovered vuln in JWT is horrifying. I'm sure there is a really good idea behind that, so maybe that can be broken out into something useful elsewhere, without the OAuth2 / JWT bits. @feld @ClickyMcTicker @cR0w