I have a bunch of FreeBSD VMs running in VirtualBox. They all share a number of virtual harddrives, and among them are a virtual harddrive with the common contents of
My ports configuration of
emulators/virtualbox-ose-additions have the
X11 options set. This is useless on some of my simpler VMs, as those VMs have no need for any X11 ports, but they could sure benefit from having the VirtualBox additions installed. These simpler VMs are usually used only to test ZFS in FreeBSD in various configurations.
I could juggle the settings for
emulators/virtualbox-ose-additions for each time I’m updating the VirtualBox additions port on my VMs, but I decided to create a local slave port disabling the
X11 options. Maybe this port, with the necessary tweaking, could sit among its siblings in the official
OPTIONS_EXCLUDE= OPENGL X11
COMMENT= VirtualBox additions for FreeBSD guests without OPENGL and X11
oinkmaster started complaining like this the other day:
root@enterprise:~>oinkmaster -Q -b /usr/local/etc/snort/backup -o /usr/local/etc/snort/rules
/usr/local/bin/oinkmaster: Error: could not download from https://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2961.tar.gz. Output from wget follows:
https://www.snort.org/pub-bin/oinkmaster.cgi/*oinkcode*/snortrules-snapshot-2961.tar.gzResolving www.snort.org (www.snort.org)... 188.8.131.52, 184.108.40.206, 220.127.116.11
Connecting to www.snort.org (www.snort.org)|18.104.22.168|:443... connected.
ERROR: cannot verify www.snort.org's certificate, issued by '/C=US/O=Thawte, Inc./CN=Thawte SSL CA':
Self-signed certificate encountered.
To connect to www.snort.org insecurely, use `--no-check-certificate'.
Oink, oink. Exiting...
Order was restored once again by adding the following line to
roots home directory:
check_certificate = off
This is not the proper way of handling HTTPS security, but it gets the job done. Previously we used HTTP access for downloading our snort rules, and it’s only recently we were redirected to use HTTPS access.
Welcome to the United States of Earth. It is now a terrorist act to have a private conversation! And if saying so will get us arrested, pick me first! It will not change my participation level until my computer is forcefully taken away from me.
(In Norwegian also known as “Amerikas forenklete stater.” (“The Simplified States of America.”))
On my FreeBSD/i386
head VMs I have set up
clang as the system compiler.
I have also set
corei7 as this is accepted by
clang and pretty much describes the capabilities of the host system.
I filled out a feedback form on the web only to realise what a terrible job the web programmers had done. After I clicked on the submit button, the webserver was kind enough to send a copy of my complaint to my email address.
The sad thing is that the email address I’d entered in the feedback form was used both as the sender’s address and as the recipient’s address. With strict SPF records enforced for my DNS domain, my MTA refused to deliver me the emailed copy. However, I did in a way receive the emailed copy, but only because I run my own SMTP service and thus receive any diagnostically generated messages.
The morale of this story is simply to use an email address based on your own valid DNS domain as the sender’s address, e.g.
firstname.lastname@example.org. Never ever impose as the complainer. How hard can this be?
IT i Norge er synonymt med .NET eller Java, og prøver du å hinte til Unix, så ser de på deg som et spørsmålstegn og lurer på hvilken planet du er fra.
Noe omskrevet fra: http://www.tu.no/it/2014/06/04/kontraktene-renner-inn-for-it-norge-men-naringen-mangler-20.000-hoder.
A harddrive as identified below, reported uncorrectable parity/CRC error on two separate occasions this month. Continue reading
Det er slemt å tvinge emotakter på folk.
Fra et debattinnlegg på GS’ fora, september 2013.
If you’re curious to find out how all your installed ports depend upon each other, you might want to run this neat, little script saving its output to a file, and install
graphics/graphviz. Continue reading