Our small Hubzilla instance now ran for a few weeks and proved to be a quite useful and fun tool, so I decided to take it to the next level and move it to shiny new software: to current php80 and postgresql13. The current installation is neatly sitting in two seperate jails: web (on 192.168.3.210, running nginx, php74) and db (on 192.168.3.215, running mysql). In hindsight and for later convenience we set up the jails in the first place with some IP space in between, so the new jails will be on .
I had some trouble to feed fail2ban output to my pf firewall, so here’s my how to: In short: RTFM! Don’t just copy’n paste configs; don’t mix anchor (new) and tables (old) pf.conf: delete all those table and rules and just set the anchor anchor "f2b/*" fail2ban: enable the filters & actions you want (by creating jail.d/*.local files). my bsd-ssh.conf looks like this, I use this as template for other services: [bsd-sshd] enabled = true mode = extra filter = bsd-sshd logpath = /var/log/auth.
A fully pandemics compatible microadventure: squeeze out everything possible an RaspberryPi 4B. On this episode: tuning the ZFS storage system. My Raspi is running: in an Argon40 M.2 box, a 120Gig M.2-SSD is connected through USB3 and is bootable as “zroot”. Reported as da2: 400.000MB/s transfers 2x 4TB disks are connected to the USB3 port - in serial connexion, one of the drives has an integrated usb-hub ;-). One of the disks is a raw ZFS, the other one is partitioned; both are mirrored to form the pool “store”.