chfl4gs

FreeBSD : freebsd-update

Tried to upgrade my FreeBSD system to 9.0-RC2, pending 9.0-RELEASE, but stumped upon this error. The update metadata is correctly signed, but failed an integrity check. Cowardly refusing to proceed any further. Obviously, I missed out the official announcement that a small patch is needed. sed -i ” -e ‘s/=_/=%@_/’ /usr/sbin/freebsd-update With that, you can […]

ssh ‘connection reset by peer’ issue

I have been plagued by ssh problem since openssh 5.8p1 on OpenSuSE 11.4. Without any warning, even debug level is set to 3, ssh connection to older router/server is dropped silently. I have issue ssh’ing to AMD64 FreeBSD 8.2-RELEASE which comes with OpenSSH 5.4p1. chflags@zeus:~> ssh -v 10.0.48.61 -l kevin OpenSSH_5.8p1, OpenSSL 1.0.0c 2 Dec […]

FreeBSD : displaying chinese characters in console

A quick and easy tip to display Chinese characters in console mode. This applies not only to FreeBSD, it does for Linux and some other *nix variants too. This is what you get when dealing with Chinese characters in console mode with csh. Just set up the environment LANG to zh_TW.UTF-8 with this command setenv […]

freebsd-update : 6.2-RELEASE to 8.1-RELEASE

Put on sysadmin hat and upgraded some 6.2 freebsd boxes recently. Here are the steps that I used. Please take note that you should have a good backup before attempting this upgrade. You are WARNED! old6# uname -a FreeBSD old6.vnet.0rg 6.2-RELEASE FreeBSD 6.2-RELEASE #0: Fri Jan 12 10:40:27 UTC 2007 root@dessler.cse.buffalo.edu:/usr/obj/usr/src/sys/GENERIC i386 A rather aged […]

ssh brute force is still popular?

This is really old old old old stuff. But it still seems popular these days. Lots of script kiddies are out there I guess. My auth.log was harassed, flooded with ssh brute-force attacks. Oct 1 10:13:50 sapphire sshd[43770]: Did not receive identification string from 202.150.213.94 Oct 1 12:40:35 sapphire sshd[45755]: Did not receive identification string […]

FreeBSD Root on ZFS mirror using GPT

ZFS has been ported to FreeBSD by Pawel Jakub Dawidek for quite some time and it has been rather stable although some bleeding edges in complex setup. The current missing features are kernel CIFS server iSCSI. Nonetheless, it is powerful I decided to give my freebsd box a spin on the power file system. 1. […]

FreeBSD : zapping file system error

My box crashed many times last week until its file system had inconsistency issue. In another words, it is corrupted. Even manual fsck won’t help fixing the issue. The problem appeared to be a directory had its “.” file missing!! Whenever I tried to remove the directory, “rm” with force option or “rmdir” utilities just […]

FreeBSD : simple lagg usage

The link aggregation and link failover interface, lagg(4) device, first appeared in FreeBSD 6.3. It as the name suggested allows aggregation of multiple network interfaces as one virtual lagg(4) interface for the purpose of providing fault-tolerance and high-speed links. The driver currently supports the aggregation protocols such as failover, fec, lacp, loadbalance, roundrobin, and none […]

FreeRapid downloader

Quite often, most of us download files from file-hosting sites like Rapidshare, Megaupload, Ziddu, kewlshare, Badongo and etc. You are probably annoyed and sick of restriction, time wait, captcha enforced by these service providers. To avoid all those and have a hassle free download, you could probably subscribe to their service. Here is another alternative. […]

FreeBSD : nginx with php-cgi on unix socket

UPDATE : Check out recent committed /usr/ports/www/spawn-fcgi/, it comes with a better spawn-fcgi rc.d script. Please use the script from the post. However, the spawn-fcgi.sh provided does not have option to run via unix socket. I have submitted the patch. Few days ago, I posted a write-up, FreeBSD : php-cgi spawn-fcgi rc.d script for nginx, […]

FreeBSD : Glusterfs with SSL (via stunnel)

I have been working on parallel round-robin web clusters (is this the right term?) using 2 x FreeBSD 7.1 AMD64 boxes, nginx (patched with fair upstream), apache + php (backend), glusterfs, tinydns (sitting on another box, a name server, for round robin A record) and mysql multi-master replication. The setup is mainly making use of […]

m0n0live : another m0n0wall live installer

I frequently use m0n0wall for quick and easy deployment of firewall. However, it is kind of troublesome to dd the m0n0wall image from another computer. Idea of creating this liveCD installer was originated from Chris Buechler m0n0wall live installer. Since 2005, there has been no updated release of m0n0wall live installer. Thus, I decided to […]