ifup-local on bridge members on CentOS

I run a bunch of CentOS 6 physical servers as QEMU virtualization devices. These hosts have two NICs, one for management and one for virtual machine bridges.

When you use Linux for virtualization, it’s important to increase the amount of memory for network transmit and receive buffers. You also need to disable GSO and TSO, . . . → Read More: ifup-local on bridge members on CentOS

New reviews

There’s been a few new reviews out lately. First, two from Grant Taylor, on Sudo Mastery and SSH Mastery. Thank you, Grant!

Yesterday, a review of Sudo Mastery appeared on Slashdot. I haven’t been reviewed on Slashdot since Absolute OpenBSD came out. No, not the second edition–the original, in 2003. So this is cool. Thank . . . → Read More: New reviews

2013 Failures and 2014 Goals

I set goals for 2013. And I failed to meet them. I promised three short nonfiction books, Absolute OpenBSD 2nd edition, and a novel. You got AO2e and two short nonfiction books, DNSSEC Mastery and Sudo Mastery.

While setting goals is important, exploring why you fail to meet those goals is just as important. Driving . . . → Read More: 2013 Failures and 2014 Goals

NYCBSDCon ebook sale

I’ll be speaking at NYCBSDCon this weekend. If you’re in the New York City area, show up.

Just for this conference, I’m having a sale on my 3 ebook bundle at my bookstore..

Coupon code SUSPENDERSBSD will get you $7 off, bringing the price for all three Mastery books to $20. Through Saturday.

. . . → Read More: NYCBSDCon ebook sale

Crazed Ferrets in a Berkeley Shower – 2014 edition

With Richard Stallman’s recent raising of the flag against LLVM and Clang, I’ve heard a lot of people talking about how the “FreeBSD people are whining about the GPLv3 terrorizing them.”

Back in 2000, I wrote an essay for Linux.com about why I like the BSD license. It’s actually stood up fairly well to the . . . → Read More: Crazed Ferrets in a Berkeley Shower – 2014 edition

Why I don’t have ads here

Another “put this up so I can point to it later” post.

Now and then someone tells me that I should put ads on my blog. Some of the articles get a ridiculous number of search engine hits, and I could probably add another (small) income stream there.

I’m not morally opposed to the very . . . → Read More: Why I don’t have ads here

Jan 2014 Java update broke me

So I’m trying to upgrade my Ansible server to the newest OpenBSD snapshot, which involves working at the console. I go to my virtual server control panel, click on the link to the Java applet, and get told that Java won’t run this application.

Turns out that Java has trusted self-signed certificates for applications until . . . → Read More: Jan 2014 Java update broke me

Ansible and PF, plus NTP

It seems that ntpd has turned into the latest DDOS amplifier. I run a lot of servers, and most of them use the standard ntp client. I need to verify that none of my servers can be used for DDOS amplification. To do this, I need to give all the clients a standard NTP configuration, . . . → Read More: Ansible and PF, plus NTP

Wanted: a VAX

No, not for me. If I bring another piece of obsolete hardware into this house, it can have my chair because I’ll be sitting out at the curb.

The OpenBSD Project builds all their packages on native hardware. Yes, it might take a month to build a complete package set on some of their platforms, . . . → Read More: Wanted: a VAX

The Desktop of Doom

I’m sick of scrounging hardware for writing books. I’m sick of waiting for things to compile, managing disk space, and running out of memory. I finally got so sick of it that I decided to invest some serious cash in a research machine, in the hope that I wouldn’t need to hunt hardware piecemeal for . . . → Read More: The Desktop of Doom