From mcevoy.pat at gmail.com Tue Mar 5 12:18:07 2019 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Tue, 5 Mar 2019 12:18:07 -0500 Subject: [talk] Next NYC*BUG: tomorrow! Message-ID: <9B3AD5B5-5857-466F-B7D2-6601CB0F2EE5@gmail.com> Next NYC*BUG: tomorrow: Maintaining qmail in 2019, Amitai Schleier 2019-03-06 @ 18:45 - Suspenders, 108 Greenwich Street; on the second floor More info: https://www.nycbug.org/index?action=view&id=10665 -------------- next part -------------- An HTML attachment was scrubbed... URL: From schmonz-lists-netbsd-public-nycbug-talk at schmonz.com Wed Mar 6 10:42:50 2019 From: schmonz-lists-netbsd-public-nycbug-talk at schmonz.com (Amitai Schleier) Date: 6 Mar 2019 10:42:50 -0500 Subject: [talk] Next NYC*BUG: tomorrow! In-Reply-To: <9B3AD5B5-5857-466F-B7D2-6601CB0F2EE5@gmail.com> References: <9B3AD5B5-5857-466F-B7D2-6601CB0F2EE5@gmail.com> Message-ID: <0C673787-4EBC-4CDB-8825-F4B0F70CFC9F@schmonz.com> Looking forward to tonight. Mainly it's a talk. But if you're curious to try qmail the easy way, bring your laptop running something Unixy. Even Linux would be fine. Best if you've bootstrapped pkgsrc on your system before arriving: $ git clone https://github.com/NetBSD/pkgsrc.git $ cd pkgsrc/bootstrap $ sudo ./bootstrap --prefix=/opt/pkg (Then add /opt/pkg/sbin and /opt/pkg/bin to your PATH.) The qmail packages uninstall cleanly, and if you don't believe me you can always rm -rf /opt/pkg. - Amitai On 5 Mar 2019, at 12:18, Pat McEvoy wrote: > Next NYC*BUG: tomorrow: > Maintaining qmail in 2019, Amitai Schleier > 2019-03-06 @ 18:45 - Suspenders, 108 Greenwich Street; > on the second floor > More info: > > https://www.nycbug.org/index?action=view&id=10665 > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk -------------- next part -------------- An HTML attachment was scrubbed... URL: From schmonz-lists-netbsd-public-nycbug-talk at schmonz.com Thu Mar 7 07:34:01 2019 From: schmonz-lists-netbsd-public-nycbug-talk at schmonz.com (Amitai Schleier) Date: 7 Mar 2019 07:34:01 -0500 Subject: [talk] Next NYC*BUG: tomorrow! In-Reply-To: <0C673787-4EBC-4CDB-8825-F4B0F70CFC9F@schmonz.com> References: <9B3AD5B5-5857-466F-B7D2-6601CB0F2EE5@gmail.com> <0C673787-4EBC-4CDB-8825-F4B0F70CFC9F@schmonz.com> Message-ID: <40422253-1927-4E02-ABA2-25F6EAF2DF77@schmonz.com> Thanks for coming out last night (or tuning into the stream). Slides are up: https://schmonz.com/2019/03/06/nycbug-maintaining-qmail-in-2019/ If you try bootstrapping pkgsrc and installing qmail-run, let me know which OS and how it goes! - Amitai On 6 Mar 2019, at 10:42, Amitai Schleier wrote: > Looking forward to tonight. > > Mainly it's a talk. But if you're curious to try qmail the easy way, > bring your laptop running something Unixy. Even Linux would be fine. > > Best if you've bootstrapped pkgsrc on your system before arriving: > > $ git clone https://github.com/NetBSD/pkgsrc.git > > $ cd pkgsrc/bootstrap > > $ sudo ./bootstrap --prefix=/opt/pkg > > (Then add /opt/pkg/sbin and /opt/pkg/bin to your PATH.) > > The qmail packages uninstall cleanly, and if you don't believe me you > can always rm -rf /opt/pkg. > > - Amitai > > On 5 Mar 2019, at 12:18, Pat McEvoy wrote: > >> Next NYC*BUG: tomorrow: >> Maintaining qmail in 2019, Amitai Schleier >> 2019-03-06 @ 18:45 - Suspenders, 108 Greenwich Street; >> on the second floor >> More info: >> >> https://www.nycbug.org/index?action=view&id=10665 > > >> _______________________________________________ >> talk mailing list >> talk at lists.nycbug.org >> http://lists.nycbug.org:8080/mailman/listinfo/talk -------------- next part -------------- An HTML attachment was scrubbed... URL: From george at ceetonetechnology.com Thu Mar 7 08:22:00 2019 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 07 Mar 2019 13:22:00 +0000 Subject: [talk] Next NYC*BUG: tomorrow! In-Reply-To: <40422253-1927-4E02-ABA2-25F6EAF2DF77@schmonz.com> References: <9B3AD5B5-5857-466F-B7D2-6601CB0F2EE5@gmail.com> <0C673787-4EBC-4CDB-8825-F4B0F70CFC9F@schmonz.com> <40422253-1927-4E02-ABA2-25F6EAF2DF77@schmonz.com> Message-ID: Amitai Schleier: > Thanks for coming out last night (or tuning into the stream). > > Slides are up: > https://schmonz.com/2019/03/06/nycbug-maintaining-qmail-in-2019/ > > If you try bootstrapping pkgsrc and installing qmail-run, let me know > which OS and how it goes! Thanks again Amitai. It was a fun meeting. And yes, very curious to hear about others tinkering with pkgsrc with qmail-run. g From mcevoy.pat at gmail.com Fri Mar 8 07:22:37 2019 From: mcevoy.pat at gmail.com (Patrick McEvoy) Date: Fri, 08 Mar 2019 07:22:37 -0500 Subject: [talk] Benchmarking a new network / ISP connection in a new office Message-ID: <5C825E8D.6020608@gmail.com> Is there a handy network/ ISP benchmarking program out there you could suggest? I am just about to light a office with IP phones and workstations for a bunch of devs who naturally want the best of service while we can squeeze out of 400/50 cable connection in the basement office of a lower east side apartment building. I would like to setup a box and have it monitor the speed so we actually have an idea of what the performance will be like before the real equipment and people show up. Any ideas / suggestions welcome. Be well, P From george at ceetonetechnology.com Fri Mar 8 08:51:00 2019 From: george at ceetonetechnology.com (George Rosamond) Date: Fri, 08 Mar 2019 13:51:00 +0000 Subject: [talk] AsiaBSDCon 2019 registration open Message-ID: <7a4e6919-ec1a-bccb-c089-1d17775e3db8@ceetonetechnology.com> .. plus some relevant NetBSD information. Thanks Jun! AsiaBSDCon2019 Online Registration https://2019.asiabsdcon.org/registration/?lang=en In https://2019.asiabsdcon.org/ March 21-24, 2019, Tokyo University of Science, Tokyo, Japan NetBSD meeting time slot at Mar.21 11:00-18:00 (UTC+9) NetBSD meeting https://wiki.netbsd.org/summits/AsiaBSDCon_2019_NetBSD_BoF/ and NetBSD booth during March 23-24. http://mail-index.netbsd.org/netbsd-advocacy/2018/03/11/msg000771.html http://mail-index.netbsd.org/netbsd-advocacy/2017/03/19/msg000734.html http://mail-index.netbsd.org/netbsd-advocacy/2016/04/13/msg000704.html From mark at heily.com Fri Mar 8 08:53:08 2019 From: mark at heily.com (Mark Heily) Date: Fri, 8 Mar 2019 08:53:08 -0500 Subject: [talk] Benchmarking a new network / ISP connection in a new office In-Reply-To: <5C825E8D.6020608@gmail.com> References: <5C825E8D.6020608@gmail.com> Message-ID: I suggest using iperf for this: https://iperf.fr On Fri, Mar 8, 2019, 07:24 Patrick McEvoy wrote: > Is there a handy network/ ISP benchmarking program out there you could > suggest? I am just about to light a office with IP phones and > workstations for a bunch of devs who naturally want the best of service > while we can squeeze out of 400/50 cable connection in the basement > office of a lower east side apartment building. I would like to setup a > box and have it monitor the speed so we actually have an idea of what > the performance will be like before the real equipment and people show > up. Any ideas / suggestions welcome. > Be well, > P > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From pete at nomadlogic.org Fri Mar 8 13:09:26 2019 From: pete at nomadlogic.org (Pete Wright) Date: Fri, 8 Mar 2019 10:09:26 -0800 Subject: [talk] Benchmarking a new network / ISP connection in a new office In-Reply-To: <5C825E8D.6020608@gmail.com> References: <5C825E8D.6020608@gmail.com> Message-ID: <1e8afce7-eed5-2162-c4e0-602aa3e8cc2f@nomadlogic.org> On 3/8/19 4:22 AM, Patrick McEvoy wrote: > Is there a handy network/ ISP benchmarking program out there you could > suggest? I am just about to light a office with IP phones and > workstations for a bunch of devs who naturally want the best of service > while we can squeeze out of 400/50 cable connection in the basement > office of a lower east side apartment building. I would like to setup a > box and have it monitor the speed so we actually have an idea of what > the performance will be like before the real equipment and people show > up. Any ideas / suggestions welcome. > Be well, > P So to clarify - do you want to monitor your current network bandwidth usage, or test out what a 400/50 uplink would look like? I've had good success using dummynet/ipfw for the later (for example testing apps that are being accessed via lossy or bandwidth constricted links). bandwidth monitoring wise - i installed darkstat(1) on my pfsense office router.? this allows me to monitor and gauge our bandwidth utilization, and while it's not super high-rez it does a good job for my uses. cheers, -pete (1)https://unix4lyfe.org/darkstat/ -- Pete Wright pete at nomadlogic.org @nomadlogicLA From mcevoy.pat at gmail.com Fri Mar 8 14:16:15 2019 From: mcevoy.pat at gmail.com (Pat McEvoy) Date: Fri, 8 Mar 2019 14:16:15 -0500 Subject: [talk] Benchmarking a new network / ISP connection in a new office In-Reply-To: <1e8afce7-eed5-2162-c4e0-602aa3e8cc2f@nomadlogic.org> References: <5C825E8D.6020608@gmail.com> <1e8afce7-eed5-2162-c4e0-602aa3e8cc2f@nomadlogic.org> Message-ID: <008EA46D-0443-440C-91E2-110E6315186E@gmail.com> > On Mar 8, 2019, at 1:09 PM, Pete Wright wrote: > > > >> On 3/8/19 4:22 AM, Patrick McEvoy wrote: >> Is there a handy network/ ISP benchmarking program out there you could >> suggest? I am just about to light a office with IP phones and >> workstations for a bunch of devs who naturally want the best of service >> while we can squeeze out of 400/50 cable connection in the basement >> office of a lower east side apartment building. I would like to setup a >> box and have it monitor the speed so we actually have an idea of what >> the performance will be like before the real equipment and people show >> up. Any ideas / suggestions welcome. >> Be well, >> P > > So to clarify - do you want to monitor your current network bandwidth usage, or test out what a 400/50 uplink would look like? I've had good success using dummynet/ipfw for the later (for example testing apps that are being accessed via lossy or bandwidth constricted links). > > bandwidth monitoring wise - i installed darkstat(1) on my pfsense office router. this allows me to monitor and gauge our bandwidth utilization, and while it's not super high-rez it does a good job for my uses. > > cheers, > -pete > > (1)https://unix4lyfe.org/darkstat/ > > -- > Pete Wright > pete at nomadlogic.org > @nomadlogicLA > Test out the connection. ?Cause as we all know, it will ?speeds up to 400/50? that I will be getting. Then Darkstat on the pfsense unit when we move the office over. Planning to go with Mark?s suggested iperf (Thank you Mark!) on a box I pull from the recycling shelf to test the connection while the space is being built out. Fingers crossed that will bring me fewer surprises and inform all parties as to the nature of our connection. Cheers for the advice. P From ipsens at ripsbusker.no.eu.org Sat Mar 9 05:14:07 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Sat, 09 Mar 2019 10:14:07 +0000 Subject: [talk] Ride to BSDCan Message-ID: <20190309101415.49814E4210@mailuser.nyi.internal> I can give someone a free ride from New York to BSDCan (and not back). We would leave New York in the evening of Thursday, May 16 and arrive in Ottawa in the morning of Friday, May 17. Tell me soon if you want it. From ipsens at ripsbusker.no.eu.org Mon Mar 18 17:21:44 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Mon, 18 Mar 2019 21:21:44 +0000 Subject: [talk] NAS hardware Message-ID: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> I want to make a small NAS with two disks in RAID1, or even just one disk. Its only purpose will be to take nightly backups of less than 1GB. What hardware should I use? The hardest part might be finding a case that small. From pete at nomadlogic.org Mon Mar 18 18:00:47 2019 From: pete at nomadlogic.org (Pete Wright) Date: Mon, 18 Mar 2019 15:00:47 -0700 Subject: [talk] NAS hardware In-Reply-To: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: On 3/18/19 2:21 PM, Ipsen S Ripsbusker wrote: > I want to make a small NAS with two disks in RAID1, or even just one disk. Its only purpose will be to take nightly backups of less than 1GB. What hardware should I use? > > The hardest part might be finding a case that small. i know this isn't what you specifically asked for - but i'm a big fan of tarsnap for backup tasks like this: http://tarsnap.com/ i put $50 on an account for work last year and i think i still have like $40 left, so Colin's pricing model works out pretty well for our use case of backing up critical configuration files that are not suitable for git. but maybe an Intel NUC will work for you if you'd prefer to use your own gear.? iirc they have an m.2 slot as well as sata slot for 2.5" drives. -pete -- Pete Wright pete at nomadlogic.org @nomadlogicLA From edlinuxguru at gmail.com Mon Mar 18 18:19:58 2019 From: edlinuxguru at gmail.com (Edward Capriolo) Date: Mon, 18 Mar 2019 18:19:58 -0400 Subject: [talk] NAS hardware In-Reply-To: References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: We used to do this using super micro servers. They had a 1u model that would support 2 data disks and they had a simple hardware raid. However you could probably use any system and software RAID.(heck even windows does disk mirroring) Not sure about the bandwidth/disk network but these days a pi and a USB storage device you handle it at the 1gB size. On Monday, March 18, 2019, Pete Wright wrote: > > > On 3/18/19 2:21 PM, Ipsen S Ripsbusker wrote: > >> I want to make a small NAS with two disks in RAID1, or even just one >> disk. Its only purpose will be to take nightly backups of less than 1GB. >> What hardware should I use? >> >> The hardest part might be finding a case that small. >> > > i know this isn't what you specifically asked for - but i'm a big fan of > tarsnap for backup tasks like this: > http://tarsnap.com/ > > i put $50 on an account for work last year and i think i still have like > $40 left, so Colin's pricing model works out pretty well for our use case > of backing up critical configuration files that are not suitable for git. > > but maybe an Intel NUC will work for you if you'd prefer to use your own > gear. iirc they have an m.2 slot as well as sata slot for 2.5" drives. > > -pete > > -- > Pete Wright > pete at nomadlogic.org > @nomadlogicLA > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk > -- Sorry this was sent from mobile. Will do less grammar and spell check than usual. -------------- next part -------------- An HTML attachment was scrubbed... URL: From ipsens at ripsbusker.no.eu.org Mon Mar 18 18:33:14 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Mon, 18 Mar 2019 18:33:14 -0400 Subject: [talk] NAS hardware In-Reply-To: References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: <95d7b94c-25b9-4824-b0ee-13b50195ad15@www.fastmail.com> It seems that I asked in the right place! 1U is bigger than I was hoping for, but, well, maybe if I switched everything for rackmount it would be pretty okay. I already using Tarsnap for something smaller stuff, in fact. I put $25 on an account last decade and I think I still have $10 left. But this is to download an offsite backup so that I have another copy locally and can recover quickly in case of a failure. Moreover, even if it grows slowly, total backup size is currently about 1.5TB, and that is expensive on Tarsnap. I tried it once with Pi and USB storage device, but the connectors were all unreliable. And that included the SATA connector in the hard drive, so I wound up removing the hard drive from the enclosure and using it in another computer! This does seem like it should be the best option, though. I would use Rock64 rather than Pi. Do you recommend any particular USB storage device? And my understanding was that driver support is rather disappointing for Intel NUC, but has that perhaps changed? From pete at nomadlogic.org Mon Mar 18 19:07:59 2019 From: pete at nomadlogic.org (Pete Wright) Date: Mon, 18 Mar 2019 16:07:59 -0700 Subject: [talk] NAS hardware In-Reply-To: <95d7b94c-25b9-4824-b0ee-13b50195ad15@www.fastmail.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> <95d7b94c-25b9-4824-b0ee-13b50195ad15@www.fastmail.com> Message-ID: <1d625631-ad26-42d3-20d7-faaa704460cf@nomadlogic.org> On 3/18/19 3:33 PM, Ipsen S Ripsbusker wrote: > It seems that I asked in the right place! > > 1U is bigger than I was hoping for, but, well, maybe if I switched everything for rackmount it would be pretty okay. > > I already using Tarsnap for something smaller stuff, in fact. I put $25 on an account last decade and I think I still have $10 left. But this is to download an offsite backup so that I have another copy locally and can recover quickly in case of a failure. Moreover, even if it grows slowly, total backup size is currently about 1.5TB, and that is expensive on Tarsnap. > > I tried it once with Pi and USB storage device, but the connectors were all unreliable. And that included the SATA connector in the hard drive, so I wound up removing the hard drive from the enclosure and using it in another computer! This does seem like it should be the best option, though. I would use Rock64 rather than Pi. Do you recommend any particular USB storage device? > > And my understanding was that driver support is rather disappointing for Intel NUC, but has that perhaps changed? I personally don't have a NUC, but it looks like KIB got it working and posted the dmesg last year: https://dmesgd.nycbug.org/index.cgi?do=view&id=3899 iX Systems also builds appliances for FreeNAS (which I am sure can easily run other BSD's if you desire): https://www.ixsystems.com/freenas-mini/ I was going to purchase a Mini when I was doing a similar exercise for my office, but the price was a bit higher than the homebrew version I cobbled together using a USB shoebox, 6 HDD's and a Dell server I got on sale. later, -pete -- Pete Wright pete at nomadlogic.org @nomadlogicLA From jim at netgate.com Mon Mar 18 20:42:35 2019 From: jim at netgate.com (Jim Thompson) Date: Mon, 18 Mar 2019 19:42:35 -0500 Subject: [talk] NAS hardware In-Reply-To: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: <3204EB2E-DA90-47F8-B1DF-766634A7CF20@netgate.com> There are nano-itx boards with dual M.2 ?M? key (PCIe x4, SATA). Drives in a 2280 form-factor are available to 1TB. > On Mar 18, 2019, at 4:21 PM, Ipsen S Ripsbusker wrote: > > I want to make a small NAS with two disks in RAID1, or even just one disk. Its only purpose will be to take nightly backups of less than 1GB. What hardware should I use? > > The hardest part might be finding a case that small. > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk From jschauma at netmeister.org Mon Mar 18 21:39:24 2019 From: jschauma at netmeister.org (Jan Schaumann) Date: Mon, 18 Mar 2019 21:39:24 -0400 Subject: [talk] NAS hardware In-Reply-To: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: <20190319013924.GI22311@netmeister.org> Ipsen S Ripsbusker wrote: > I want to make a small NAS with two disks in RAID1, or even just one > disk. Its only purpose will be to take nightly backups of less than > 1GB. What hardware should I use? Sounds like a good use case for a small Synology. I have a DS218+ with two 4TB drives, nightly backing up my Apple Time Capsule as well my VPS remotely via rsync from cron. https://www.synology.com/en-global/products/DS218+ https://twitter.com/jschauma/status/1036654353023725571 Usable browser UI, but full SSH access. -Jan From ipsens at ripsbusker.no.eu.org Mon Mar 18 23:42:15 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Tue, 19 Mar 2019 03:42:15 +0000 Subject: [talk] NAS hardware In-Reply-To: <20190319013924.GI22311@netmeister.org> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> <20190319013924.GI22311@netmeister.org> Message-ID: <20190319034216.A5B59E4886@mailuser.nyi.internal> Jan Schaumann writes: > Sounds like a good use case for a small Synology. > > I have a DS218+ with two 4TB drives, nightly backing up my Apple Time > Capsule as well my VPS remotely via rsync from cron. > https://www.synology.com/en-global/products/DS218+ > https://twitter.com/jschauma/status/1036654353023725571 Jim Thompson writes: > There are nano-itx boards with dual M.2 ?M? key (PCIe x4, SATA). > Drives in a 2280 form-factor are available to 1TB. Is there a particular Synology or Nano-ITX board on which I could easily run a BSD operating system (or at least any free operating system)? Since I have such little data, I guess anything will really do, but I have gotten fed up with dealing with hardware that manufacturers won't support, so I would rather get something advertised to work with free software. For $170 I can get this, which fits two 3.5" disks and is supposed to work on NetBSD. https://www.pine64.org/?product=rockpro64-4gb-single-board-computer https://www.pine64.org/?product=rockpro64-metal-desktopnas-casing https://www.pine64.org/?product=fan-for-rockpro64-metal-desktopnas-casing https://www.pine64.org/?product=rockpro64-12v-5a-us-power-supply https://www.pine64.org/?product=rockpro64-pci-e-to-dual-sata-ii-interface-card https://www.pine64.org/?product=rockpro64-20mm-mid-profile-heatsink https://www.pine64.org/?product=fan-for-rockpro64-20mm-mid-profile-heatsink And then the next price level up seems to be like $1,000, which would get me a FreeNAS or a GNU/Linux desktop (without the hard drives). From mmatalka at gmail.com Tue Mar 19 01:33:26 2019 From: mmatalka at gmail.com (Malcolm Matalka) Date: Tue, 19 Mar 2019 06:33:26 +0100 Subject: [talk] NAS hardware In-Reply-To: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> Message-ID: <86mulr77ix.fsf@gmail.com> Ipsen S Ripsbusker writes: > I want to make a small NAS with two disks in RAID1, or even just one disk. Its only purpose will be to take nightly backups of less than 1GB. What hardware should I use? > > The hardest part might be finding a case that small. Depending on if this is for home or for work, you can take an RPi and connect two external HD's to it setup in a zraid (or mirror is probably best). > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 487 bytes Desc: not available URL: From imp at bsdimp.com Tue Mar 19 01:51:29 2019 From: imp at bsdimp.com (Warner Losh) Date: Mon, 18 Mar 2019 23:51:29 -0600 Subject: [talk] NAS hardware In-Reply-To: <86mulr77ix.fsf@gmail.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> <86mulr77ix.fsf@gmail.com> Message-ID: On Mon, Mar 18, 2019, 11:35 PM Malcolm Matalka wrote: > > Ipsen S Ripsbusker writes: > > > I want to make a small NAS with two disks in RAID1, or even just one > disk. Its only purpose will be to take nightly backups of less than 1GB. > What hardware should I use? > > > > The hardest part might be finding a case that small. > > Depending on if this is for home or for work, you can take an RPi and > connect two external HD's to it setup in a zraid (or mirror is probably > best). > Be careful, though, as the usb bus will be taxed potentially with two drives and the network traffic on it, so there is a 3x factor here. Since it isn't USB 3, you are limited to 480Mb/s, or 60MB/s total, or 20MB/s max throughput. Warner > _______________________________________________ > > talk mailing list > > talk at lists.nycbug.org > > http://lists.nycbug.org:8080/mailman/listinfo/talk > > _______________________________________________ > talk mailing list > talk at lists.nycbug.org > http://lists.nycbug.org:8080/mailman/listinfo/talk > -------------- next part -------------- An HTML attachment was scrubbed... URL: From jun at soum.co.jp Wed Mar 20 21:00:47 2019 From: jun at soum.co.jp (Jun Ebihara) Date: Thu, 21 Mar 2019 10:00:47 +0900 (JST) Subject: [talk] AsiaBSDCon 2019 registration open In-Reply-To: <7a4e6919-ec1a-bccb-c089-1d17775e3db8@ceetonetechnology.com> References: <7a4e6919-ec1a-bccb-c089-1d17775e3db8@ceetonetechnology.com> Message-ID: <20190321.100047.1067468392799686443.jun@soum.co.jp> From: George Rosamond Subject: [talk] AsiaBSDCon 2019 registration open Date: Fri, 08 Mar 2019 13:51:00 +0000 > .. plus some relevant NetBSD information. Thanks Jun! thanx George,I'll make NetBSD BOF today. and make NetBSD booth on Sat-Sun. AsiaBSDCon2019 NetBSD travellers guide http://www.re.soum.co.jp/~jun/AsiaBSDCon2019.pdf After AsiaBSDCon2018,Japan NetBSD Users' Group makes 16 demonstrations booth all over Japan. Two time slots paper session starts Mar.23, on Mar.24 14:30 Keynote K01: Security Fantasies and Realities for the BSDs George V. Neville-Neil (gnn at neville-neil.com) many thanx for supporting AsiaBSDCon! > AsiaBSDCon2019 Online Registration > https://2019.asiabsdcon.org/registration/?lang=en > In > https://2019.asiabsdcon.org/ > March 21-24, 2019, Tokyo University of Science, Tokyo, Japan > NetBSD meeting time slot at > Mar.21 11:00-18:00 (UTC+9) NetBSD meeting > https://wiki.netbsd.org/summits/AsiaBSDCon_2019_NetBSD_BoF/ > and NetBSD booth during March 23-24. > http://mail-index.netbsd.org/netbsd-advocacy/2018/03/11/msg000771.html > http://mail-index.netbsd.org/netbsd-advocacy/2017/03/19/msg000734.html > http://mail-index.netbsd.org/netbsd-advocacy/2016/04/13/msg000704.html -- Jun Ebihara From bonsaime at gmail.com Thu Mar 21 17:50:28 2019 From: bonsaime at gmail.com (Jesse Callaway) Date: Thu, 21 Mar 2019 14:50:28 -0700 Subject: [talk] ssh host keys Message-ID: On my mac running OpenSSH_7.8p1, LibreSSL 2.6.2 connecting outbound when the host key is found to mismatch a recorded entry in known_hosts it allows me to connect.. however disables some features, notably port forwarding and agent forwarding. Removing the clashing line in ~/.ssh/known_hosts fixed this so that when I connect it allows the features. Does anyone have experience with this? Related is StrictHostKeyChecking no is set. I would expect the behavior to be binary, either I can connect or not if it *suspects* mitm. -- -jesse -------------- next part -------------- An HTML attachment was scrubbed... URL: From bonsaime at gmail.com Thu Mar 21 18:29:36 2019 From: bonsaime at gmail.com (Jesse Callaway) Date: Thu, 21 Mar 2019 15:29:36 -0700 Subject: [talk] ssh host keys In-Reply-To: References: Message-ID: On Thu, Mar 21, 2019 at 2:50 PM Jesse Callaway wrote: > On my mac running OpenSSH_7.8p1, LibreSSL 2.6.2 connecting outbound when > the host key is found to mismatch a recorded entry in known_hosts it allows > me to connect.. however disables some features, notably port forwarding and > agent forwarding. > > Removing the clashing line in ~/.ssh/known_hosts fixed this so that when I > connect it allows the features. > > Does anyone have experience with this? Related is StrictHostKeyChecking no > is set. I would expect the behavior to be binary, either I can connect or > not if it *suspects* mitm. > > -- > -jesse > I'll just self-reply here. This is a bug. I could care less if it's always been like this. Does anyone have any suggestions on how to file the bug report? -- -jesse -------------- next part -------------- An HTML attachment was scrubbed... URL: From lists at eitanadler.com Thu Mar 21 21:13:30 2019 From: lists at eitanadler.com (Eitan Adler) Date: Thu, 21 Mar 2019 18:13:30 -0700 Subject: [talk] ssh host keys In-Reply-To: References: Message-ID: On Thu, 21 Mar 2019 at 15:31, Jesse Callaway wrote: > > > > On Thu, Mar 21, 2019 at 2:50 PM Jesse Callaway wrote: >> >> On my mac running OpenSSH_7.8p1, LibreSSL 2.6.2 connecting outbound when the host key is found to mismatch a recorded entry in known_hosts it allows me to connect.. however disables some features, notably port forwarding and agent forwarding. >> >> Removing the clashing line in ~/.ssh/known_hosts fixed this so that when I connect it allows the features. >> >> Does anyone have experience with this? Related is StrictHostKeyChecking no is set. I would expect the behavior to be binary, either I can connect or not if it *suspects* mitm. >> >> -- >> -jesse > > > I'll just self-reply here. This is a bug. I could care less if it's always been like this. Does anyone have any suggestions on how to file the bug report? This is not exactly a bug. If you want to always fail, set StrictHostKeyChecking yes as a config values. There is no way I know of to always ignore (and allow e.g., port forwarding). -- Eitan Adler From lists at eitanadler.com Thu Mar 21 21:16:20 2019 From: lists at eitanadler.com (Eitan Adler) Date: Thu, 21 Mar 2019 18:16:20 -0700 Subject: [talk] ssh host keys In-Reply-To: References: Message-ID: On Thu, 21 Mar 2019 at 18:13, Eitan Adler wrote: > > On Thu, 21 Mar 2019 at 15:31, Jesse Callaway wrote: > > > > > > > > On Thu, Mar 21, 2019 at 2:50 PM Jesse Callaway wrote: > >> > >> On my mac running OpenSSH_7.8p1, LibreSSL 2.6.2 connecting outbound when the host key is found to mismatch a recorded entry in known_hosts it allows me to connect.. however disables some features, notably port forwarding and agent forwarding. > >> > >> Removing the clashing line in ~/.ssh/known_hosts fixed this so that when I connect it allows the features. > >> > >> Does anyone have experience with this? Related is StrictHostKeyChecking no is set. I would expect the behavior to be binary, either I can connect or not if it *suspects* mitm. > >> > >> -- > >> -jesse > > > > > > I'll just self-reply here. This is a bug. I could care less if it's always been like this. Does anyone have any suggestions on how to file the bug report? > > This is not exactly a bug. If you want to always fail, set > StrictHostKeyChecking yes as a config values. There is no way I know > of to always ignore (and allow e.g., port forwarding). to answer your question directly "openssh-unix-dev at mindrot.org" or https://bugzilla.mindrot.org/ -- Eitan Adler From bonsaime at gmail.com Fri Mar 22 18:30:37 2019 From: bonsaime at gmail.com (Jesse Callaway) Date: Fri, 22 Mar 2019 15:30:37 -0700 Subject: [talk] ssh host keys In-Reply-To: References: Message-ID: On Thu, Mar 21, 2019 at 6:16 PM Eitan Adler wrote: > On Thu, 21 Mar 2019 at 18:13, Eitan Adler wrote: > > > > On Thu, 21 Mar 2019 at 15:31, Jesse Callaway wrote: > > > > > > > > > > > > On Thu, Mar 21, 2019 at 2:50 PM Jesse Callaway > wrote: > > >> > > >> On my mac running OpenSSH_7.8p1, LibreSSL 2.6.2 connecting outbound > when the host key is found to mismatch a recorded entry in known_hosts it > allows me to connect.. however disables some features, notably port > forwarding and agent forwarding. > > >> > > >> Removing the clashing line in ~/.ssh/known_hosts fixed this so that > when I connect it allows the features. > > >> > > >> Does anyone have experience with this? Related is > StrictHostKeyChecking no is set. I would expect the behavior to be binary, > either I can connect or not if it *suspects* mitm. > > >> > > >> -- > > >> -jesse > > > > > > > > > I'll just self-reply here. This is a bug. I could care less if it's > always been like this. Does anyone have any suggestions on how to file the > bug report? > > > > This is not exactly a bug. If you want to always fail, set > > StrictHostKeyChecking yes as a config values. There is no way I know > > of to always ignore (and allow e.g., port forwarding). > > to answer your question directly "openssh-unix-dev at mindrot.org" > or https://bugzilla.mindrot.org/ > > > -- > Eitan Adler > Thanks for the suggestions. I have a hard time getting this right while also doing batch operations over ssh to a bunch of hosts. Aside from host keys in LDAP or secure DNS how do others ssh to hosts that rotate through IP addresses frequently? -- -jesse -------------- next part -------------- An HTML attachment was scrubbed... URL: From njt at ayvali.org Fri Mar 22 22:26:48 2019 From: njt at ayvali.org (N.J. Thomas) Date: Fri, 22 Mar 2019 19:26:48 -0700 Subject: [talk] ssh host keys In-Reply-To: References: Message-ID: <20190323022648.GE2181@ayvali.org> * Jesse Callaway [2019-03-22 15:30:37-0700]: > I have a hard time getting this right while also doing batch > operations over ssh to a bunch of hosts. Aside from host keys in LDAP > or secure DNS how do others ssh to hosts that rotate through IP > addresses frequently? If your config management tool supports it, then it is recommended that you use its ability to run ad-hoc commands on whatever subset of hosts that you want: An example of this is Ansible and its -a feature or shell module: ansible -m shell webhosts -a "sudo service apache24 restart" If your config management tool does not support it (some cfg mgmt tools have a philosophy of not supporting ad-hoc commands, a sentiment I disagree with, but whatever), or you are not running a config management tool, a good alternative is parallel-ssh: https://pypi.org/project/pssh/ pssh and its family suite of tools (pscp, prsync, pnuke, and pslurp) require some minor setup, eg.: if you are using pssh over some large number of hosts, you may want to use ssh-keyscan or something similar to grab hostkeys, and then possibly setup sudoers to run without tty, etc., but once you get the hang of it, it works nicely enough. Thomas From george at ceetonetechnology.com Thu Mar 28 12:58:00 2019 From: george at ceetonetechnology.com (George Rosamond) Date: Thu, 28 Mar 2019 16:58:00 +0000 Subject: [talk] Fwd: [announce] Next NYC*BUG: 4/3/19 In-Reply-To: References: Message-ID: <73874ff9-fb18-04f0-4af7-dde9115f4a66@ceetonetechnology.com> For those not on the announce@ list, but should be... -------- Forwarded Message -------- Subject: [announce] Next NYC*BUG: 4/3/19 Date: Thu, 28 Mar 2019 12:29:46 -0400 Verification As Code of Infrastructure As Code,Raul Cuza 2019-04-03 @ 18:45 - Suspenders, 108 Greenwich Street; typically on the second floor, otherwise on the first Shell scripts are a great tool for both building and testing services, but they are not the only choice. Sometimes your team needs to describe infrastructure into existing and building your own DSL can be a distraction from your goals. Something like Ansible is still a fine choice for these situations. Once you have chosen to use Ansible, you next have to choose how to verify what you are building. You could More info: https://www.nycbug.org/index?action=view&id=10666 -------------- next part -------------- _______________________________________________ announce mailing list announce at lists.nycbug.org http://lists.nycbug.org:8080/mailman/listinfo/announce From ipsens at ripsbusker.no.eu.org Sat Mar 30 07:07:26 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Sat, 30 Mar 2019 07:07:26 -0400 Subject: [talk] NAS hardware In-Reply-To: References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> <86mulr77ix.fsf@gmail.com> Message-ID: <41c140a1-cfed-4f9b-aef7-3281fca41f49@www.fastmail.com> It seems that the good options are all way bigger than I want, in terms both of size and of power. I am thus thinking about getting one big computer and running several virtual machines. This replaces the main OpenBSD computer, the proposed NAS, the three GNU/Linux computers that I have for USB device support, and the switches that connect these devices. Maybe I will even replace the OPNSense hardware, and then I will only have one ethernet cable (and no wifi) in my office. Because I am fed up with unsupported hardware, I am inclined towards one of the fully free systems, like Vikings Workstation or Raptor Talos. But neither of these have Intel CPUs, so I won't be able to use PCI passthrough on bhyve, and I consequently won't be able to run these USB devices on a GNU/Linux guest on bhyve (I think). Does anyone have other ideas for virtualization, or other comments on this setup? From ipsens at ripsbusker.no.eu.org Sat Mar 30 12:08:42 2019 From: ipsens at ripsbusker.no.eu.org (Ipsen S Ripsbusker) Date: Sat, 30 Mar 2019 12:08:42 -0400 Subject: [talk] NAS hardware In-Reply-To: <41c140a1-cfed-4f9b-aef7-3281fca41f49@www.fastmail.com> References: <1552944104.1831018.1668664784.0BE5D336@webmail.messagingengine.com> <86mulr77ix.fsf@gmail.com> <41c140a1-cfed-4f9b-aef7-3281fca41f49@www.fastmail.com> Message-ID: <72de125e-5c72-4ae4-a2a5-9e31bec5c00a@www.fastmail.com> On Sat, Mar 30, 2019, at 07:25, Ipsen S Ripsbusker wrote: > It seems that the good options are all way bigger than I want, > in terms both of size and of power. I am thus thinking about getting one > big computer and running several virtual machines. This replaces the > main OpenBSD computer, the proposed NAS, the three GNU/Linux computers > that I have for USB device support, and the switches that connect > these devices. Maybe I will even replace the OPNSense hardware, and > then I will only have one ethernet cable (and no wifi) in my office. > > Because I am fed up with unsupported hardware, I am inclined towards one > of the fully free systems, like Vikings Workstation or Raptor Talos. > But neither of these have Intel CPUs, so I won't be able to use PCI > passthrough on bhyve, and I consequently won't be able to run these USB > devices on a GNU/Linux guest on bhyve (I think). > > Does anyone have other ideas for virtualization, or other comments > on this setup? After further research, I think I can run it just all of my devices just fine with OpenBSD on a Vikings Workstation: * One device is a Logitech BRIO, the only 1080P camera that I found to be supported by any free operating system. But I see now that ThinkPenguin sells one that should work on OpenBSD. [*] * One is a printer that I never got working on OpenBSD. Either I keep my print server, or I get printing working. * I wanted FreeBSD for ZFS, but I'm doing just fine without ZFS. * It should be easy for me to port the remaining devices' drivers. * I will stick with a separate firewall, because I prefer not to live life on the edge. [*] https://www.thinkpenguin.com/gnu-linux/full-1080p1536p-hd-usb-webcam-w-noise-canceling-microphone-tpe-1536hdcam