Re: pam_krb5 on NetBSD

2019-08-11 Thread Brett Lymn 
On Sat, Aug 10, 2019 at 09:52:31AM +, k...@protonmail.com wrote:
> 
> Am I going about this all wrong?
> 

I think so.  You need to have the pam_krb5 in the auth section.  If you
don't want to authenticate against kerberos then put pam_krb5 after
another authentication module that prompts for a password and add
"use_first_pass" to the pam_krb5 arguments that should set up the
kerberos ticket for the login.  This does ASSuME that the password
for both the other auth method and kerberos are the same which may
not be true but, really, if you have kerberos why bother with another
auth method...

-- 
Brett Lymn
--
Sent from my NetBSD device.

"We are were wolves",
"You mean werewolves?",
"No we were wolves, now we are something else entirely",
"Oh"

Re: State of ZFS in 9.0_BETA

2019-08-11 Thread Brett Lymn 
On Sat, Aug 10, 2019 at 09:12:23PM +0100, Chavdar Ivanov wrote:
> 
> I was thinking that if ZFS were in the kernel, it might be easier to
> get ZFS root.
> 

then booting from a snapshot would be super awesome.  The solaris
alternate boot environments using zfs snapshots makes updating safe and
easy.

-- 
Brett Lymn
--
Sent from my NetBSD device.

"We are were wolves",
"You mean werewolves?",
"No we were wolves, now we are something else entirely",
"Oh"

Re: dhcpcd, ipv6, 1&1, Fritzboz, deprecated addresses

2019-08-11 Thread Rhialto 
On Sun 11 Aug 2019 at 14:42:57 +0200, Rhialto wrote:
> Is there any setting I could have in my /etc/dhcpcd.conf that might
> influence that? 

Additionally, here are the most recent messages in /var/log/messages:

Aug 11 13:08:37 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20: no longer a 
default router
Aug 11 13:08:37 murthe dhcpcd[335]: re1: deleting default route via 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:49 murthe dhcpcd[335]: re1: adding address 
2003:ca:5f43:cb00:180:4428:6875:c80b/64
Aug 11 13:10:49 murthe dhcpcd[335]: re1: adding route to 2003:ca:5f43:cb00::/64
Aug 11 13:10:49 murthe dhcpcd[335]: re1: adding default route via 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re1: unauthenticated RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re1: RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re0: unauthenticated RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re0: RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re0: not bound, ignoring RECONFIGURE6
Aug 11 13:10:51 murthe dhcpcd[335]: re1: DHCPv6 REPLY: not on link
Aug 11 13:10:51 murthe dhcpcd[335]: lo0: deleting reject route to 
2003:ca:5f43:76fc::/62 via ::1
Aug 11 13:10:51 murthe dhcpcd[335]: re1: soliciting a DHCPv6 lease
Aug 11 13:10:51 murthe dhcpcd[335]: re1: REPLY6 received from 
fe80::a96:d7ff:fea9:5c20
Aug 11 13:10:51 murthe dhcpcd[335]: re1: adding address 
2003:ca:5f43:cb00:xxx:::/128
Aug 11 13:10:51 murthe dhcpcd[335]: re1: renew in 1800, rebind in 2880, expire 
in 7200 seconds
Aug 11 13:10:51 murthe dhcpcd[335]: lo0: adding reject route to 
2003:ca:5f43:cbfc::/62 via ::1
Aug 11 13:10:51 murthe dhcpcd[335]: re1: delegated prefix 2003:ca:5f43:cbfc::/62
Aug 11 13:10:54 murthe ntpd[1786]: Listen normally on 84 re1 
[2003:ca:5f43:cb00:180:4428:6875:c80b]:123
Aug 11 13:10:54 murthe ntpd[1786]: Listen normally on 85 re1 
[2003:ca:5f43:cb00:xxx:::]:123
Aug 11 13:11:48 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20 is 
unreachable, expiring it
Aug 11 13:11:48 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20 is reachable 
again
Aug 11 13:11:48 murthe dhcpcd[335]: re1: deleting address 
2003:ca:5f43:7600:933e:9556:2b1:57f/64
Aug 11 13:11:48 murthe dhcpcd[335]: re1: deleting route to 
2003:ca:5f43:7600::/64
Aug 11 13:11:50 murthe ntpd[1786]: Deleting interface #82 re1, 
2003:ca:5f43:7600:933e:9556:2b1:57f#123, interface stats: received=2, sent=2, 
dropped=1, active_time=2995 secs
Aug 11 13:11:50 murthe ntpd[1786]: 2001:638:504:2000::34 local addr 
2003:ca:5f43:7600:933e:9556:2b1:57f -> 
Aug 11 13:51:55 murthe ntpd[1786]: 2001:638:504:2000::34 local addr 
2003:ca:5f43:7600:xxx::: -> 2003:ca:5f43:cb00:180:4428:6875:c80b
Aug 11 14:05:24 murthe ntpd[1786]: Deleting interface #81 re1, 
2003:ca:5f42:f600:xxx:::#123, interface stats: received=0, sent=13, 
dropped=0, active_time=10800 secs
Aug 11 14:07:06 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20: no longer a 
default router
Aug 11 14:07:06 murthe dhcpcd[335]: re1: deleting default route via 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:17 murthe dhcpcd[335]: re1: adding address 
2003:ca:5f44:2000:bb10:b391:fb30:56ba/64
Aug 11 14:09:17 murthe dhcpcd[335]: re1: adding route to 2003:ca:5f44:2000::/64
Aug 11 14:09:17 murthe dhcpcd[335]: re1: adding default route via 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:19 murthe dhcpcd[335]: re1: unauthenticated RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:19 murthe dhcpcd[335]: re1: RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:19 murthe dhcpcd[335]: re0: unauthenticated RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:19 murthe dhcpcd[335]: re0: RECONFIGURE6 from 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:19 murthe dhcpcd[335]: re0: not bound, ignoring RECONFIGURE6
Aug 11 14:09:19 murthe dhcpcd[335]: re1: DHCPv6 REPLY: not on link
Aug 11 14:09:19 murthe dhcpcd[335]: lo0: deleting reject route to 
2003:ca:5f43:cbfc::/62 via ::1
Aug 11 14:09:19 murthe dhcpcd[335]: re1: soliciting a DHCPv6 lease
Aug 11 14:09:20 murthe dhcpcd[335]: re1: REPLY6 received from 
fe80::a96:d7ff:fea9:5c20
Aug 11 14:09:20 murthe dhcpcd[335]: re1: adding address 
2003:ca:5f44:2000:xxx:::/128
Aug 11 14:09:20 murthe dhcpcd[335]: re1: renew in 1800, rebind in 2880, expire 
in 7200 seconds
Aug 11 14:09:20 murthe dhcpcd[335]: lo0: adding reject route to 
2003:ca:5f44:20fc::/62 via ::1
Aug 11 14:09:20 murthe dhcpcd[335]: re1: delegated prefix 2003:ca:5f44:20fc::/62
Aug 11 14:09:22 murthe ntpd[1786]: Listen normally on 86 re1 
[2003:ca:5f44:2000:bb10:b391:fb30:56ba]:123
Aug 11 14:09:22 murthe ntpd[1786]: Listen normally on 87 re1 
[2003:ca:5f44:2000:xxx:::]:123
Aug 11 14:09:29 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20 is 
unreachable, expiring it
Aug 11 14:09:29 murthe dhcpcd[335]: re1: fe80::a96:d7ff:fea9:5c20 is reachable 
again
Aug 11 14:09:49

dhcpcd, ipv6, 1&1, Fritzboz, deprecated addresses

2019-08-11 Thread Rhialto 
My ISP is rather shitty with IPv6, and changes its prefix like it is a
hobby of theirs. However, somehow this keeps breaking my IPv6
connectivity.

I am using NetBSD/amd64 8.1, dhcpcd-7.2.3 from pkgsrc.

It seems that while dhcpcd adds new addresses to my interface for the new
prefix, it doesn't delete (or deprecate) the old ones (or at least not soon
enough). So currently my interface looks like this:

re1: flags=0x8843 mtu 1500
capabilities=3f80
capabilities=3f80
enabled=3f80
enabled=3f80
ec_capabilities=3
ec_enabled=0
address: yy:yy:yy:yy:yy:yy
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.178.40/24 broadcast 192.168.178.255 flags 0x0
inet6 fe80::xxx:::%re1/64 flags 0x0 scopeid 0x2
inet6 2003:ca:5f37:d00:xxx:::/128 flags 0x10
inet6 2003:ca:5f38:4300:xxx:::/128 flags 0x10
inet6 2003:ca:5f3a:8e00:xxx:::/128 flags 0x10
inet6 2003:ca:5f14:de00:xxx:::/128 flags 0x10
inet6 2003:ca:5f14:ec00:xxx:::/128 flags 0x10
inet6 2003:ca:5f30:a000:xxx:::/128 flags 0x10
inet6 2003:ca:5f30:c900:xxx:::/128 flags 0x10
inet6 fd00::359b:6cd5:acb3:7bdc/64 flags 0x10
inet6 2003:ca:5f43:7600:xxx:::/128 flags 0x10
inet6 2003:ca:5f43:cb00:xxx:::/128 flags 0x0
inet6 2003:ca:5f44:2000:bb10:b391:fb30:56ba/64 flags 0x10
inet6 2003:ca:5f44:2000:xxx:::/128 flags 0x0
inet6 2003:ca:5f44:2700:50a6:1a8a:1e54:7986/64 flags 0x0
inet6 2003:ca:5f44:2700:xxx:::/128 flags 0x0

and currently connectivity is broken.

$ traceroute6 smtp.falu.nl
traceroute6 to smtp.falu.nl (2a02:e00:ffec:1cc::1) from 
2003:ca:5f43:cb00:xxx:::, 64 hops max, 12 byte packets
 1  fritz.box  0.716 ms  0.418 ms  0.341 ms
 2  p200300CA5FFF.dip0.t-ipconnect.de  0.353 ms  0.354 ms  0
.331 ms
 3  p200300CA5FFF.dip0.t-ipconnect.de  0.343 ms  0.351 ms  0
.349 ms
 4  p200300CA5FFF.dip0.t-ipconnect.de  0.313 ms  0.344 ms  0
.346 ms
 5  p200300CA5FFF.dip0.t-ipconnect.de  0.314 ms  0.359 ms  0
.371 ms
(etc)

After I guess which addresses are old, it works again.

$ sudo ifconfig re1 inet6 2003:ca:5f43:cb00:xxx:::/128 deprecated
$ sudo ifconfig re1 inet6 2003:ca:5f44:2000:xxx:::/128 deprecated

$ traceroute6 smtp.falu.nl
traceroute6 to smtp.falu.nl (2a02:e00:ffec:1cc::1) from 
2003:ca:5f44:2700:50a6:1a8a:1e54:7986, 64 hops max, 12 byte packets
 1  fritz.box  0.865 ms  0.454 ms  0.396 ms
 2  2003:0:8000:8800::1  4.885 ms  4.761 ms  4.555 ms
...
 6  smtp  15.135 ms  15.335 ms  14.224 ms

Is there any setting I could have in my /etc/dhcpcd.conf that might
influence that? I have

controlgroup wheel
hostname azenomei
duid
persistent
lastlease
option rapid_commit
option classless_static_routes, domain_name_servers
nooption domain_name, host_name
option ntp_servers
require dhcp_server_identifier
slaac private
nohook lookup-hostname
noauthrequired
leasetime 86400
noipv6rs
nogateway
interface re0
noipv4
interface re1
ipv6rs
gateway
ia_na 1
ia_pd 2 re0/0/64

-Olaf.
-- 
Olaf 'Rhialto' Seibert -- rhialto at falu dot nl
___  Anyone who is capable of getting themselves made President should on
\X/  no account be allowed to do the job.   --Douglas Adams, "THGTTG"


signature.asc
Description: PGP signature