Faceborg was developed using javascript technology too. Please enable javascript to get the website running properly.



 
20231021 00:21


Nice shortcut to know:

Ctrl + Arrow Left / Arrow Right

to move the cursor fast between words instead of characters.
 
20231016 08:03


OpenBSD 7.4 released.

 
20231013 00:41


Feature request.

I would probably be happy if under securelevel=2

rcctl -f start sshd

will not be possible anymore.
 
20231010 00:45


securelevel 2 and readonly disk.

Given securelevel = 2 low level disk commands like fdisk, disklabel and newfs can't run.

Indeed the disklabel appears to them kind of "readonly" as from the man.
 
20231010 00:33


How-to (not) backup from a remote file source.

Apparently it doesn't exist yet a good software solution that solves the quiz in a decent way.

My own solution is to do the backup on my online server by Duplicity and download the delta file to my local.
And I'm able to make everything happening within a good data transfer and time fashion.

Indeed, it appears that I'm not the only one doing such thing..

Thanks everyone for the suggestions!
 
20231005 04:16


How to chroot correctly users by ssh\ftp:

In /etc/sshd_config:

(when myftpuser is the name of your ftp user)

Match User myftpuser
ChrootDirectory /var/ftp
ForceCommand internal-sftp

Then a little attention to the permissions on the user's home folder:

First:
usermod -d /do/upload myftpuser

Second:
sudo mkdir -p /var/ftp
sudo mkdir -p /var/ftp/do
sudo mkdir -p /var/ftp/do/upload

In special way:
sudo chown -R root:myftpuser /var/ftp/do
sudo chown -R myftpuser:myftpuser /var/ftp/do/upload

Thanks go to Peter and Stu for all the tips.
 
20231005 04:04


Just want to point out how the Orico 3559U3 External Enclosure with 5 HD bays 2.5"/3.5" compatible and hotplugable in OpenBSD too is really saving my days to store my backups:

https://gaox.io/l/O3559U3


 
20230929 19:55


A little old but useful to know:

wiz# sysctl | grep kern.video.record
kern.video.record=0
wiz# sysctl | grep kern.audio.record
kern.audio.record=0

"Analog to the the kern.audio.record sysctl parameter for audio(4)
devices, introduced kern.video.record for video(4) devices. By default
kern.video.record will be set to zero."

More info:

https://gaox.io/l/77c7c7c
 
20230929 19:18


Just found the interesting paper "Towards running a Wayland Compositor on OpenBSD" from EuroBSDCon 2023:

https://gaox.io/l/249a035
 
20230929 15:58


I just came to know the net utility nc (or netcat) by which you can do chats, file transfers, port probs etc.

Open the man (or mangl) and point to nc.
 
20230929 15:16


My solution taken from "Building Linux and OpenBSD Firewalls" (see Internet Archive) to solve the no traffic prb caused by inserting the default "block in all" statement.

I moved the following statements just after it:

# dns
pass in quick proto udp from any port domain to any
pass out quick proto udp from any to any port domain

# icmp
pass in quick inet proto icmp all icmp-type 0
pass in quick inet proto icmp all icmp-type 3
pass in quick inet proto icmp all icmp-type 11

Enjoy!
 
20230928 17:33


Let me shout with myself again about the same stuff.

We are building stuff for users and NOT for developers, forget the latter. This is why we should get rid off "the man" as we know it.
 
20230928 17:29


OpenBSD Fundraising campaign 2025

https://gaox.io/l/obf2025
 
20230928 12:48


Attention! This hint requires true paranoids ;)

Shell scripting gives you the ability to mount your core system (/etc, /bin, /sbin) in different time frames.

You have all the potential to do the following:
- mantains copy for your main system folders on root
- boot your system by mounting /etc and all the /bin and /sbin readonly and locked down;
- unmount on demand the system to accept updates;
- mount your system to return in readonly mode.

Consider also these small pieces of code:

unmountEtc() {
(set +e;trap 'umount -f "/etc"' 0 1 2 3 5 7 10 15;sleep 5) || return
}
unmountEtc

if mount -t ffs -r -o nodev,nosuid /dev/sd1j /etc; then
sleep 3
echo "- /etc restored readonly, maybe"
else
sleep 3
echo "!! problems remounting /etc readonly !!"
fi

Enjoy!
 
20230927 23:02


More then a decade on the same hardware become also difficult to me own praticability to report bugs.

In the end I find time and right way (Stu) to do my first report:

wiz$ sendbug -P

and sent it by my favorit email client.



   
  
Hash Me!
 
  A 5 Mode project and WYSIWYG system. Some rights reserved.