Managing Barista and Janitor @proprietor

0 posts0 participants0 posts today

Replied in thread

**Felix Palmen** @zirias@bsd.cafe · 6d

DId lots of smaller improvements to #swad ... but first, I had to hunt down a crash . Finally found it was caused by my #poser lib (to be fixed later): A connection there can resolve the hostname of a remote end and does so in a thread job to avoid blocking. If the connection dies meanwhile, the job is canceled. Seems my canceling mechanism relying on a signal to the thread is, well, not reliable (the signal can arrive delayed). Ok, for now just disabled name resolution to sidestep that.

Now, integration with #nginx is much better. I intrdoduced (optional) custom headers to transport the authentication realm and the redirect URI, plus state management in the session, so these can be passed to the "auth" endpoint. This requires to make sure nginx always passes the session #cookie, Unfortunately, I still need a "hacky" redirect configuration for login in nginx. If auth_request could just pass the response body, this would be unnecessary ....

The nginx configuration shows #swad running on "files" and another nginx running on "wwwint" serving #poudriere output there. This nginx instance helpfully adds cache hints, which I have to override, so a redirect works as expected when for example the swad session times out.

Full nginx configuration integrating swad for authentication

swad log output showing bots trying unauthenticated access

#C #coding

**Eugene** @evgandr@mas.to · Mar 30 *

Mar 30 *

Eugene @evgandr@mas.to

My experiments with poudriere are completed!

For now, I have a clean system without Pulseaudio/Pipewire/Wayland/etc. And suddenly I got rid of strange video glitches!

https://eugene-andrienko.com/en/it/2025/03/30/freebsd-pkgs-wout-unwanted-deps

Dragon’s notes · Mar 30My way to remove “Linuxisms” from FreeBSD

More from

Eugene

#FreeBSD #poudriere #PackageManagement

Replied in thread

**Felix Palmen** @zirias@bsd.cafe · Mar 28

Mar 28

Felix Palmen @zirias@bsd.cafe

@bagder Wow. For a few months, I was wondering why I suddenly have bandwidth issues when activating my camera in MS Teams meetings, so others can't understand me any more.

A look into my #nginx logs seems to clarify. Bots are eagerly fetching my (partially pretty large) #poudriere build logs. (#AI "watching shit scroll by"?)

I see GPTBot at least occassionally requests robots.txt, which I don't have so far. Other bots don't seem to be interested. Especially PetalBot is hammering my server. And there are others (bytedance, google, ...)

Now what? Robots.txt would actually *help* well-behaved bots here (I assume build logs aren't valuable for anything). The most pragmatic thing here would be to add some http basic auth in the reverse proxy for all poudriere stuff. It's currently only public because there's no reason to keep it private....

Have to admit I feel inclined to try one of the tarpitting/poisoning approaches, too.

**not Evander Sinque** @FiLiS@mastodon.social · Mar 21

Mar 21

not Evander Sinque @FiLiS@mastodon.social

What are we doing? - Running #poudriere to build packages from latest - what do we want? - MORE CPUS! - Why don't we use the quarterly tree? - MORE CPUS! #FreeBSD

**Doerk** @NebulaTide@bsd.cafe · Mar 20

Mar 20

Doerk @NebulaTide@bsd.cafe

Is there any other way to keep a FreeBSD workstation free from Poettering-software than building your own packages? Stuff like Pulseaudio seems to find always it’s way to sneak on my computer. So I went to build my own packages with Poudriere. This works well, but is also quite time consuming. Would appreciate any suggestions.

#freebsd #poudriere #packages

Recent searches

Search options

Administered by:

Server stats:

#poudriere