The fine folks at the New York City BSD User Group have created a mailing list specifically for using The Onion Router on BSD. Please join if you are interested in TOR, and especially if you are using something other than FreeBSD, since that’s the only ‘supported’ BSD TOR runs on right now.
Sepherosa Ziehau has posted more statistics on his ifnet/ifaddr per-CPU stats work. It’s doing so well that he’s very close to reaching the maximum physical capacity of the 4x gigabit ethernet hardware he’s using.
The February 2013 issue of BSD Magazine, available as a free PDF, talks about VAX/VMS ‘rehosting’, has a PC-BSD preview, and other things. The teaser paragraph for the “Fear, Loathing and Misunderstandings” article (shown on that linked page) is perfect.
There’s two changes in pkgsrc recently that might affect you: graphics/png was updated, so many dependent packages will require recompilation. Also, editors/emacs was moved to a general package instead of being specifically named by version, so now you can install ’emacs’ instead of ’emacs24′ or whichever version.
This week I will both post this on the correct day AND get the date in the title correct.
- An oldie but goodie. ENHANCE. This will make anyone who has done photo/video editing twitch. Check the author’s Tumblr for more supercuts. (indirectly via)
- Many people complain about regular expressions (and more recently), but they are an insanely powerful tool if you know them well. If you do, figure out this crossword. (PDF) (via)
- Followup on the first two links in that last item: xkcd drives a lot of traffic!
- If you are on Windows, you probably use PuTTY for ssh. It saves everything in the registry, which can occasionally mean losing all your configuration. There’s manual ways to save it, but there’s also PuTTYtray. (I’ve used portaPuTTY in the past, but it seems to be missing/no longer updated.)
- Actually, holy crap there’s a lot of variations/addons for PuTTY.
- That makes sense given how many terminal emulators there are, really.
- Why piping something off the Internet right to a shell isn’t a good idea. (via)
- Remember when the computer section in bookstores had books that involved programming? (unfair, I know.)
- “Don’t Be A Stranger“, musing on how there isn’t enough meeting strangers through the Internet any more. Here’s the odd thought I had while reading that article: I couldn’t pick most of the other DragonFly developers out of a lineup, but I’ve been working and talking with some of them for a decade.
- You could build Photoshop version 1 yourself – just substitute the original Mac libraries.
- Related: Photoshop is a city for everyone.
- Some of the oldest color film footage. Not the oldest,but possibly some of the earliest commercial film. Of course, the first thing filmed are young, attractive women. This is a re-occurring theme.
- Hey, a comprehensive year-end BSD roundup.
Your unrelated tea link of the week: Epic Tea House Server. Interesting just because of what he does and because I’ve never encountered tea from a samovar, though I’ve read of it. (via)
Wait, this is better! That previous link led to this film from an English chemistry professor about tea chemistry. At first I was just entertained by his hair and his accent, but when he put tea in a NMR spectrometer, I decided this was the best tea thing ever. Even better than Elemental!
Michael W. Lucas has put together a script for pulling a user’s authorized_keys file for SSH out of LDAP. It’s a very good idea, though he hints pretty clearly that he could use feedback/feedback – there’s already some in the comments.
Updates: from discussion in IRC about this sort of distributed authentication (maybe ‘authentication distribution’ is a better phrase): Tools like puppet or FreeIPA may also be useful. From seeing other conversations about this, it looks like there’s a lot of solutions to pick from, of varying difficulty, and none canonical. That’s both good and bad.
I have a pf question for anyone who is interested. I have this setup in my /etc/pf.conf, to prioritize my VoIP link. (this system also does NAT.)
extif="em0" intif="nfe0" ipphone = "192.168.0.101"
altq on $extif cbq bandwidth 768Kb queue { std, voip }
queue voip bandwidth 168Kb priority 7 cbq(borrow)
queue std bandwidth 600Kb priority 1 cbq(default)
nat on $extif from $intif:network to any -> ($extif)
pass in quick on $intif proto udp from $ipphone to any tag VOIP_OUT keep state
pass in on $intif from $intif:network to any keep state
pass out on $intif from any to $intif:network keep state
pass out on $extif tagged VOIP_OUT keep state queue(voip)
pass out on $extif inet proto tcp all modulate state flags S/SA queue(std)
pass out on $extif inet proto { udp, icmp, gre } all keep state
When I run this, ‘pfctl -s queue’ shows most of the data getting run through the ‘voip’ queue. I unplug the ATA, I still see the number of packets going up. It seems packets are getting tagged that shouldn’t be, but I’m not sure why. Anyone else have a similar – but working – setup?
Update: it was the underscore character in the tag. Everything matched it, it seems. Removing that made it work as expected.
As Sepherosa Ziehau mentions in his latest commit, DragonFly now collects IFNET/IFADDR statistics on a per-CPU basis. This makes it more accurate, but may mess with any third-party program that accessed it directly. I don’t know if there’s anything in pkgsrc that does that…
I know OpenSSL in DragonFly was just updated, but Peter Avalos has done it again, bringing it to version 1.01e. I assume this new version is to fix some recently-exposed problems. He also has updated libdialog, which was previously not located in contrib/, as sime third-party software needed a more modern version. As a side effect from that, tzsetup in DragonFly now matches the version in FreeBSD and NetBSD. And, Sascha Wildner has updated the locale files on DragonFly, also to match FreeBSD and NetBSD.
If you’re near Germany, or like IPv6, the Schlund Technologies mirror for DragonFly is for you – it supports HTTP, FTP, and rsync.
The machines at dragonflybsd.org are now on a different part of the Internet, so if you were having problems connecting over the past few days, it should be better now. Matthew Dillon wrote up details of what he changed and why he changed it, including a note about future blade server plans.
I have reports from some people not being able to connect to the Digest, and others who can. If you can’t, please mail me a traceroute. I thought it was from me messing with pf, but perhaps not…
Pierre Abbat noticed that when using pkg_rolling-replace, his Python packages would fail to be built/replaced. This is because pkgsrc puts the version number into the name of the package, and he was moving from Python 2.6 to 2.7. OBATA Akio and Greg Troxel had suggestions/explanations.
Added: Peter Avalos has updated OpenSSL to version 1.0.1d – see the changelog.
Removed: support for ISA sound cards, by Sascha Wildner. Goodbye sb16; I’ll remember you fondly.
It’s announced! If DragonFly is going to participate again for the sixth year in a row (wow!), we need mentor volunteers…
Matthew Dillon is moving dragonflybsd.org’s network link to a new VPN today. (It may have already happened; I only just read the email.) This may help the people that have reported their network path to dragonflybsd.org seems to die somewhere in the Cogent network…
Or is it ‘statii’? English is wonderfully inconsistent. Anyway, Michael W. Lucas has posted an update on his two upcoming publications: the second edition of Absolute OpenBSD and DNSSEC Mastery. Both are in progress, and you can download the ‘pre-release’ version of DNSSEC Mastery now.
For once, I didn’t accidentally post this too early. I hope you have some spare time; there’s a lot of meaty links this week.
- “Keep the workload off the pinkies.” is a good recommendation for any keyboard layout. (via)
- Dan Langille started doing some price comparisons for various hard drives; see the comments on his article for some specialty sites that do the same.
- “It was open source because we didn’t have any choice.” Spacewar, the first computer game. Or at least the first computer game like we’d expect it to be.
- If you read the details, Ethernet and Microsoft Word came from almost the same place. (via)
- YouCompleteMe, a Fast, As-You-Type, Fuzzy-Search Code Completion Engine for Vim. (via) Haven’t tried it.
- This article about the correct pronounciation of “GIF” is mostly a historical rehash, but I really like the last two sentences.
- This Wired article does a good job of describing what’s special about Flickr compared to all the other big photo services, and also has an excellent metaphor for Facebook buried in there. (via)
- This is perhaps one of the better descriptions of being a “nerd” and how it has changed recently.
- Well, that’s a bizarre translation. (via tuxillo on EFNet #dragonflybsd)
- My favorite part of this excellent Economist article about Voyager 1 and 2 is this note: “Most ingeniously of all, Dr Stone’s team equipped the probes with an advanced bit of hardware called a Reed-Solomon encoder. […] The rub was that in 1977 a way to decrypt Reed-Solomon corrected data had yet to be worked out. Luckily, by the time Voyager 2 reached Uranus in 1986, it had been.“
- An HTML5-based roguelike. I’m sure there’s others. I like that HTML5 is starting to make things Just Work. (via)
Your unrelated comics link of the week: Anthony Clark of Nedroid.com is selling his sketchbook; 101 pages as a digital download, for $1. Look at his strip or his Tumblr doodles if you want to know more before, but that’s quite a deal. Nedroid is the source of one of my favorite character names: Beartato. Also makes a good shirt.
The emx(4) driver now has support for multiple TX queues, but it’s not on by default. There’s scenarios where multiple queues work out with that hardware, but you have to be sure you are actually in the right setup for that first. Check Sepherosa Ziehau’s commit message for the details.
Sepherosa Ziehau has merged the hardware abstraction layer (HAL) for em(4) and igb(4), along with updating em(4)/emx(4) to version 7.3.4 and igb(4) to version 2.3.7.