Difference between revisions of "FreeBSD"

From Secure Computing Wiki
Jump to: navigation, search
m (Reverted edits by Esubiguxoc (talk) to last revision by Ecrist)
 
(22 intermediate revisions by 4 users not shown)
Line 1: Line 1:
 +
== Commands ==
 +
This is a table of useful commands gleaned out of mailing lists and personal experience.
 +
{| class="wikitable"
 +
|-
 +
! Command Description
 +
! Command
 +
|-
 +
| Find the date of the newest file in a directory.
 +
| <nowiki>find /some/dir -type f -printf "%T@^%h/%f\n" | awk -F^ '{ if ($1 > the_max) { the_max = $1; file_name = $2; } } END { print file_name }'</nowiki>
 +
|-
 +
| || <nowiki>ls -ltr /some/dir | tail -1 | awk '{print $6" "$7" "$8}'</nowiki>
 +
|-
 +
| md5 all files in <foo> directory and find matches
 +
| <nowiki>md5 -r ./<foo> | sort | uniq -c</nowiki>
 +
|-
 +
| Remove IP from interface.<br /><i>This works for the primary IP on an interface, too.</i>
 +
| ifconfig <interface> <IP> -alias
 +
|}
 +
 
== Management ==
 
== Management ==
* [[OpenLDAP on FreeBSD 6.2]]
+
* [[OpenLDAP]]
 +
** Pure-FTPd: pam/ldap stuff goes in /etc/pam.d/pure-ftpd file!!!
 +
* [[FreeBSD LDAP Auth]] ''(work in progress)''
 +
 
 +
To enable passive mode for fetch when using pkg_add, sent the environment variable ''FTP_PASSIVE_MODE'' to something.  If you use csh/tcsh, the following command will work:
 +
<pre># setenv FTP_PASSIVE_MODE 1</pre>
  
 
== Networking ==
 
== Networking ==
Line 11: Line 35:
 
* [[Traffic Shaping with pf/ALTQ]]
 
* [[Traffic Shaping with pf/ALTQ]]
 
* [[Bandwidth Monitoring with IPFW & Cacti]]
 
* [[Bandwidth Monitoring with IPFW & Cacti]]
 +
* [[NFS]]
 +
* [[pf]]
  
 
== Virtualization ==
 
== Virtualization ==
 
* Setting up [[FreeBSD jails with ezjail]]
 
* Setting up [[FreeBSD jails with ezjail]]
 +
 +
== Ports/Applications ==
 +
* You can look up what options were passed to configure at /var/db/ports/{prtname}/options.
 +
 +
== Jails==
 +
=== Postgres ===
 +
[http://www.freebsddiary.org/jail-multiple.php Read Me!]
 +
 +
=== System V ===
 +
In jails on 8.0-RELEASE+, the host system ''security.jail.sysvipc_allowed'' sysctl is ignored.  You can override this and enabled it with the following command, after a jail has started:
 +
<pre>jail -m jid=<JID> allow.sysvipc=1</pre>
 +
 +
== Errors ==
 +
{| class="wikitable"
 +
|-
 +
! Error
 +
! Fix
 +
|-
 +
| Lookup of /dev for devfs, error: 2
 +
| The /dev directory was deleted/can't be found on the root filesystem.  Recreate, reboot.
 +
|-
 +
|}
 +
 +
== Building ==
 +
* [[FreeBSD/LiveCD]]
 +
 +
[[Category: FreeBSD]] [[Category: Operating Systems]]

Latest revision as of 16:33, 26 November 2010

Commands

This is a table of useful commands gleaned out of mailing lists and personal experience.

Command Description Command
Find the date of the newest file in a directory. find /some/dir -type f -printf "%T@^%h/%f\n" | awk -F^ '{ if ($1 > the_max) { the_max = $1; file_name = $2; } } END { print file_name }'
ls -ltr /some/dir | tail -1 | awk '{print $6" "$7" "$8}'
md5 all files in <foo> directory and find matches md5 -r ./<foo> | sort | uniq -c
Remove IP from interface.
This works for the primary IP on an interface, too.
ifconfig <interface> <IP> -alias

Management

To enable passive mode for fetch when using pkg_add, sent the environment variable FTP_PASSIVE_MODE to something. If you use csh/tcsh, the following command will work:

# setenv FTP_PASSIVE_MODE 1

Networking

Virtualization

Ports/Applications

  • You can look up what options were passed to configure at /var/db/ports/{prtname}/options.

Jails

Postgres

Read Me!

System V

In jails on 8.0-RELEASE+, the host system security.jail.sysvipc_allowed sysctl is ignored. You can override this and enabled it with the following command, after a jail has started:

jail -m jid=<JID> allow.sysvipc=1

Errors

Error Fix
Lookup of /dev for devfs, error: 2 The /dev directory was deleted/can't be found on the root filesystem. Recreate, reboot.

Building