Re: Deprecating base system ftpd?

2021-04-09 Thread aventador 
It makes me think that there should be an offering for two completely different 
audiences:
(1) FreeBSD core (a very minimal offering for folks that want to build things, 
like a Desktop, etc.)
(2) FreeBSD server (an offering for folks that want a server build)

Perhaps that idea is just unreasonably crazy as well. 

Best Regards,
Vic Thacker

On Fri, Apr 9, 2021, at 01:05, Chris wrote:
> On 2021-04-07 23:27, aventa...@fastmail.fm wrote:
> > I think folks have different definitions of what an operating system should 
> > be.
> Agreed.
> > 
> > An Operating System (OS) is an interface between a computer user and 
> > computer
> > hardware. An operating system is a software which performs all the basic 
> > tasks
> > like file management, memory management, process management, handling input 
> > and
> > output, and controlling peripheral devices such as disk drives and printers.
> > 
> > If you add or take away from the above definition, then there is your 
> > misunderstanding.
> IMHO many refer to Linux as an Operating System. When in fact it is a Kernel. 
> Which
> is also what you describe above.
> OTOH, UNIX as an OS has a defined set of commands available, as well as 
> servers to
> facilitate running a fully installed server. Which is what I believe he was
> referring to.
> 
> At this point I think this thread is becoming tiresome. ;-)
> 
> --Chris
> > 
> > Best Regards,
> > Vic Thacker
> > 
> > 
> > On Wed, Apr 7, 2021, at 21:17, tech-lists wrote:
> >> Hi, I'm a bit late to the discussion
> >> 
> >> On Mon, Apr 05, 2021 at 07:44:59AM -0700, Cy Schubert wrote:
> >> 
> >> >I think this is an excellent start. My shopping list includes:
> >> >
> >> >- remove ftp(1)
> >> >- remove ftpd(8)
> >> >- remove telnet(1)
> >> >- remove telnetd(8)
> >> >- remove ftp:// and http:// from libfetch. This is 2021 and we should all
> >> >use https://.
> >> >- replace DNS lookups with DoH and/or DoT. Why let your ISP see your DNS
> >> >traffic?
> >> 
> >> Very firmly against this, and this sort of thing, for the following 
> >> reasons:
> >> 
> >> 1. I want an OS, not a kernel. If I just want a kernel, then why not go
> >> with linux? FreeBSD is meant to be, I think, (generally), a server OS.
> >> So, would you agree that it needs the ability to have server protocols
> >> easily configured, with a minimum of fuss, without packages?
> >> 
> >> 2. a lot of infrastructure depends on ftpd. it's easy to configure
> >> securely ftpd in base.
> >> 
> >> 3. there are some networks, like internal ones, where encryption is not
> >> a requirement, or appropriate.
> >> 
> >> 4. there are some places where encryption is in fact illegal.
> >> 
> >> >Personally, I'd suggest we remove the ftpd server *AND* ftp client and 
> >> >rely
> >> >on ports. Having worked on UNIX, Internet security, and firewalls over the
> >> >last 3/5 of my almost 50 year career, I have lamented the existence of the
> >> >FTP protocol back in 1995 and I hate the FTP protocol with greater a
> >> >passion today. Let's simply remove all vestiges of FTP from the base
> >> >system, including libfetch, sooner than later. We don't need it now that 
> >> >we
> >> >have HTTPS and POST; and sftp.
> >> 
> >> 5. some services commonly don't use https. Lots of internet radio
> >> stations don't. If https is enforced then the user will have to jump
> >> through more hoops than they already do in order to, in this case,
> >> listen to internet radio. Or face a loss of functionality.
> >> 
> >> 6. not everywhere will have constant internet access. Not everyone will
> >> want to use pkgs or have space for the ports tree.
> >> 
> >> >I think we should make it our goal to remove any and all unencrypted
> >> >protocols from FreeBSD by 2025.
> >> 
> >> I think you should carefully think of the consequences of removing
> >> functionality in the default install. It will make it less useful, not
> >> more.
> >> --
> >> J.
> >> 
> >> Attachments:
> >> * signature.asc
> > ___
> > freebsd-stable@freebsd.org mailing list
> > https://lists.freebsd.org/mailman/listinfo/freebsd-stable
> > To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"
>
___
freebsd-stable@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"

Re: Vinum deprecation for FreeBSD 14 - are there any remaining Vinum users?

2021-04-09 Thread Scott Bennett via freebsd-stable 
Eugene Grosbein  wrote:

> 07.04.2021 12:49, Scott Bennett via freebsd-stable wrote:
>
> >  At least w.r.t. gvinum's raid5, I can attest that the kernel panics
> > are real.  Before settling on ZFS raidz2 for my largest storage pool, I
> > experimented with gstripe(8), gmirror(8), graid3(8), and graid5(8) (from
> > sysutils/graid5).  All worked reasonably well, except for one operation,
> > namely, "stop".  Most/all such devices cannot actually be stopped because
> > a stopped device does not *stay* stopped.  As soon as the GEOM device
> > node is destroyed, all disks are retasted, their labels, if any, are
> > recognized, and their corresponding device nodes are recreated and placed
> > back on line. :-(  All of this happens too quickly for even a series of
> > commands entered on one line to be able to unload the kernel module for
> > the device node type in question, so there is no practical way to stop
> > such a device once it has been started.
>
> In fact, you can disable re-tasting with sysctl kern.geom.notaste=1,
> stop an GEOM, clear its lables and re-enable tasting setting 
> kern.geom.notaste=0 back.

 Thank you for this valuable, but undocumented, workaround!  However, it
serves to demonstrate the bugs in gstripe(8), gmirror(8), graid3(8), and
graid5(8), and perhaps a few others, either in the commands themselves, which
do not behave as advertised in their respective man pages or in their man pages
for not correctly documenting the commands' actual behavior.
>
> >  A special note is needed here regarding gcache(8) and graid3(8).  The
> > documentation of gcache parameters for sector size for physical devices
> > and gcache logical devices is very unclear, such that a user must have the
> > device nodes and space on them available to create test cases and do so,
> > whereas a properly documented gcache(8) would obviate the need to set up
> > such experiments.  There is similar lack of clarity in various size
> > specifications for blocks, sectors, records, etc. in many of the man pages
> > for native GEOM commands.
>
> I found gcache(8) very nice at first, it really boosts UFS performance 
> provided
> you have extra RAM to dedicate to its cache. gcache can be stacked with 
> gmirror etc.
> but I found it guilty to some obscure UFS-related panics. It seems there were 
> races or something.
> No data loss, though as it is intended to be transparent for writing.

 There are other, also undocumented, problems.  For example, I played with
gcache(8) for a short time as a method of dividing a ZFS pool into two extents
on a drive in order to place a frequently accessed partition between them.  It
worked nicely for a while, but the first time that gcache(8) choked it made a
real mess of the ZFS pool's copy on that drive.  As a result I immediately
abandoned that use of gcache(8).
 gcache(8) usses two poorly defined sysctl values, kern.geom.cache.used_hi
and kern.geom.cache.used_lo.  Its man page shows them with default values, but
neglects to mention whether they are enforced limits or merely sysctl variables
that report current or high and low watermark usages.
>
> I was forced to stop using gcache for sake of stability and it's a shame.
> For example, dump(8) speed-up due to gcache was 2x at least with big cache
> comparing to dump -C32 without gcache.
>
 I used it to make all accesses to a graid3(8) set of partitions work with
64 KB and 32 KB block sizes for UFS2 efficiency on a graid3(8) device.  That use
worked very nicely, but it took some experimentation to figure out how to do it
because the man page is so ambiguous about the gcache command's options and
arguments.
 A similar complaint could be leveled at the man pages for gstripe(8),
graid3(8), and graid5(8) w.r.t. their undocumented definitions of stripe size,
sector size, and block size.  At present, without reading the command and kernel
source code for each or experimenting extensively, it is difficult to understand
what the commands' options and arguments will do and which combinations of their
numerical values can be valid and accepted.


  Scott Bennett, Comm. ASMELG, CFIAG
**
* Internet:   bennett at sdf.org   *xor*   bennett at freeshell.org  *
**
* "A well regulated and disciplined militia, is at all times a good  *
* objection to the introduction of that bane of all free governments *
* -- a standing army."   *
*-- Gov. John Hancock, New York Journal, 28 January 1790 *
**
___
freebsd-stable@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscr...@freebsd.org"