[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

Has any discussion happened on mechanic disk head parking on umount?

 

When I press the interface button to umount and then physically power off the drive I can clearly hear the disk doing something that sounds a little awful.

 

As an experiment, immediately after pressing the interface button, I issued the following command to the external USB disk:

 

hdparm -y /dev/sdt

 

and whilst I get an error:
 

 issuing standby command
SG_IO: bad/missing sense data, sb[]:  f0 00 01 00 50 40 00 0a 00 00 00 00 00 1d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

it seems to work and powering off the disk sounds less harsh.

 

This is proof of concept only, just enough to check the theory to open a post here for discussion.

 

[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

Thank you. Even after mounting countless hundreds of disk using UD I was not aware of those settings in the GUI at all. Perhaps that hints at either PEBCAK or an area where interface changes would help.

 

As for image work, I cited that specific example as it was easy to do using the wiki itself but other examples include the more mundane tasks of backing up disks, thumb drives, RPI SD cards etc but I accept that these examples whilst not disk recovery are still intended more for the sysop than the average user.

 

Thank you for the education and consideration.

[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

51 minutes ago, dlandon said:

What is it you are trying to accomplish?  I don't understand the use case you are asking for.

 

Nothing especially complicated I am just suggesting that disks should only be mounted RW if you actually need RW. Failing that an option that allows you chose RO.

 

For example if you are loading data from a backup then RO would be a safer option especially in the scenario where you are needing to restore from backup in the first place.

 

As for working with images this gives a practical example of a use case https://wiki.unraid.net/Manual/Troubleshooting#Using_ddrescue_to_recover_data_from_a_failing_disk

[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

On 10/2/2021 at 2:29 PM, NAS said:

Apologies if this is covered in the previous 252 pages but has consideration been given to adding the ability to mount and/or create disk/partition images (typically using dd in the background)

 

Perhaps niche but genuinely useful especially if RO mode is an option.

Any thoughts on this?

 

If image options are out of scope please consider the read only mount option.

 

There is a lot to be said to mounting disks RO by default with an option to seamlessly remount RW if needed.

[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

Not a VM thing just a normal raw imaging action such as:

 

`dd if=/dev/sdX of=/mnt/mybackup.img`

 

or in reverse

 

`dd if=mnt/mybackup.img of=/dev/sdX`

 

There are many other options such as compressed images, partition images etc but all are just variations on the theme of disk image handling.

[Unassigned Devices - Managing Disk Drives and Remote Shares Outside of The Unraid Array]

Apologies if this is covered in the previous 252 pages but has consideration been given to adding the ability to mount and/or create disk/partition images (typically using dd in the background)

 

Perhaps niche but genuinely useful especially if RO mode is an option.

[[Plugin] CA Fix Common Problems]

Suggestion for Update Assistant part of Fix Common Problems.

 

Check all users for any instances of screen running.

[CVE-2021-3156 - Sudo before 1.9.5p2 has a Heap-based Buffer Overflow]

This clearly falls within the bounds of the release methodology. I appreciate the conflicting pressures and associated costs but its time, 332 days between security releases is pushing it a bit.

 

  

On 9/2/2015 at 6:11 PM, limetech said:

At present we are maintaining two code branches:  latest stable and development.

 

The latest stable is always the first entry listed under Stable Releases on the website Download page.  The development releases are only publicized in the forum Announcement board.

 

If a relevant Slackware Security Advisory package update becomes available (or other kind of security update), we update both the latest stable and development branches.  For the latest stable branch, we then increment the patch level of the release version (the third digit) and publish the new release as soon as practical.  Other critical bug fixes may also trigger publishing another latest stable patch release.

 

Of the stable releases listed on the Download page, only the latest stable will be updated.  That is, we do not maintain multiple old stable releases at this time.  Updates are free and users are encouraged to keep up-to-date.

 

For the development branch, an updated release may or may not be published at the same time as the new stable release, but any package updates or bug fixes which go into latest stable are first integrated into development and tested.

 

Anyone who discovers a security-related issue is encouraged to post here so that we can integrate necessary patches in a timely manner.

 

[Why aren't unraid receiving security updates regularly?]

I was indeed agreeing.

 

Just for clarity the normal security reporting methodology is to start with private contact. Normally this is for unpublished vulnerabilities but it holds equally true for published ones where the vendor may just not have noticed or has noticed and something has went wrong and they wrongly assume fixes are in place. It is VERY common for vendors to patch, release but not pen test the actual release after.

 

After a reasonable period of time if unresolved you can and should then post publicly so that users who are vulnerable have the maximum chance to hear about it and make and informed decision on what the risk is to them and how to handle it.

 

I dont think it would be unfair to say no one in the history of this project has prodded more about security then me.

 

I am not and never have been an employee of Limetech LLC and have never received any monetary of gift rewards other than a single license for testing.

[Hardening to expose to the internet]

Do not open 445 to the internet.

[The Past, Present and Future of Unraid on the Selfhosted Podcast]

It is important that users who choose a non subscription model, even if that is just implicit by the fact they use only the traditional unRAID product, that there be no phone home or other services that reach out of the system by lieu of the subscription services running in "off" mode of or any other mechanism.

 

I cannot stress this enough. Feel free to add value in whatever way suits your business but dont break that trust model whilst doing so.

[Why aren't unraid receiving security updates regularly?]

Whilst it is not ideal that the poster did not follow normal security reporting etiquette it is clear there is an issue and it is off our own making.

 

See

 

versus

 

http://www.slackware.com/security/list.php?l=slackware-security&y=2020

 

tl;dr we are long overdue an update but we have slipped into the old habit of waiting for the development branch to be ready and ignoring the stable branch.

 

It is not the end of the world but its a habit we need to break again ASAP

[Why aren't unraid receiving security updates regularly?]

@unRate can you post a few representative examples to set context. Nothing should be `fixed over a year ago` but 280-290 days is unfortunately possible.

[Unraid 2020 Feature Request Wishlist]

This is a very interesting poll and I commend the people responsible.

 

I do however question why `SSD Array option with Trim support` is on this poll though.

 

The other items in the poll are feature enhancements, nice to haves or power user edge cases..... but supporting SSDs in 2020 should be a basic capability for a NAS not something we poll to see if its optionally wanted.

[Better Defaults]

This is a pretty big deal if it is true. I wouldnt know how to pull this off right now though so more details required.

[Unraid OS version 6.7 available]

On 6/4/2019 at 6:09 AM, bonienl said:

Docker containers and VMs on the dashboard are loaded in the background.

If something is amiss with either the Docker or libvirt service, it would hamper the dashboard.

I think I can actually replicate this now.

 

If i mount a USB drive and copy files continuously to my SSD cache drive which also is the location of my docker loopback image then after a few minutes docker starts to not respond which obviously ruins the web GUI as well.

 

I routinely copied files in this way in all previous versions and the cache drive seems fine (its pretty new) and there are no errors in any log that I can see.

 

The SSD is attached to a motherboard SATA port directly.

 

I am pretty sure it is IO WAIT as load sky rockets. Will wait and see if its an "only me" problem.

 

[[Plugin] Disable Security Mitigations]

5 hours ago, testdasi said:

I think the summary of this plugin is, unless you are a spy, use it.

 

(based on Unraid functionalities, I doubt there's any financial institution or cloud / VM provider using it)

Except if you a company or any public body or a registered non profit or anyone with liability cover or any organization that has to comply is ISO accreditation or worldwide equivs or has independent audits or anyone covered by EU GDPR or or....

 

context is import and whilst most people here are home users plenty unRAID users are not

 

Nice addon. I really mean that. It absolutely has its place but the default advice should always be "be secure unless you really really understand the risks of not being".

[Determine block device from md device]

yeah i dont think it is there either but i suspect this thread will hang about for years and hit first page on google since its so niche.

 

(anyone else find themselves answering their own question via google in old forum posts... i do more than I care to admit)

[Unraid OS version 6.7 available]

I faced an odd issue where the web gui would load but not completely. Specifically the dash wouldnt load but disk view would excluding the action buttons at the bottom. Docker view wouldnt load at all but settings would. Dockers containers did not work or were super slow (hard to say)

 

Manually restarting one container instantly kicked web gui and docker into a working state.

 

I cant replicate.

[Determine block device from md device]

@limetech can you confirm if this is indeed in `proc` just so I can close this thread down as solved and anyone else that happens upon it knows the definitive answer.

[Determine block device from md device]

hehe

Out of curiusoty i never did find a way to do this by query /proc. Any idea if this data is in there somewhere?

[Determine block device from md device]

That is excellent thank you very much. I would not have thought to do it like this at all.

[Determine block device from md device]

I have tried I think all the obvious ways although I still think i missed the one obvious one that works

 

lsblk /dev/md4
NAME MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT
md4    9:4    0  3.7T  0 md   /mnt/disk4

 

[Determine block device from md device]

Sorry if this is obvious but I cant quite nail it down.

 

I have a need for a thing I am doing to find the device name and disk serial starting knowing either "/mnt/disk4" or "/dev/md4" from the shell

 

Does anyone know how to get for example "/dev/sdb1"  from this?

 

 

[Copying from forum adds hidden characters]

I thought I was going mad. This is most certainly a thing.