1. 5
    • email (Postfix / OpenSMTPd / Dovecot / Roundcube )
    • websites
    • nextcloud (files / passwords / bookmarks / Rainloop)
    • WebDAV (Baikal)
    • openvpn
    • git (cgit)
    • DNS (nsd / unbound)

    Hosted on a mix of OpenBSD and FreeBSD on baremetal.

    1. 2

      Going to spin up a vmm-vm to build this. Thanx!

      1. 5

        Thanx for the readings far! Really enjoyed them even though I didn’t get all of it. :)

        1. 9

          Getting things together to do a RUN BSD t-shirt print run. :)

          1. 1

            RUN BSD t-shirt

            Are these the american apparel shirts ala RUN DMC?

            1. 1

              Correct. EuroBSDCon is coming up and there are 60+ shirts ordered in 2 days so far. Will be closing the window today.

              Similar to this shirt: http://teehunter.com/tee/run-bsd-parody-design-for-unix-hackers-sysadmins/

              But for almost cost.

          1. 2

            Seems like it’s almost there to be a good replacement for my current Lenovo.

            1. 1

              Still waiting for the VIMAGE and ROUTETABLES options to become default in the kernel…

              1. 3

                Starting a new job tomorrow (1st of August) as one of the first pairs of boots in Europe to setup the technical team in Europe. It’s a security as a service startup which also means recruiting partners as well as identifying customers that might be interested. Exiting times!

                1. 1

                  security as a service startup

                  I’m interested in what Security-aaS means in this context. Managed security service has typically taken the form of SOC outsourcing, but there has also been some security SaaS, mostly in the authentication space (thinking Auth0, Okta).

                  Do you mind sharing who you’re joining? I realize you probably don’t want to come across as spamming but I’m legitimately curious what business models people are pursing in the security space.

                  1. 1

                    In this context it’s Threat Intelligence /TIP on Clear-, Deep-, Darkweb. Which can also be provided as a Managed (Whitelabel) service by managed service providers. I can see why you would mention Auth0 and Okta in this case. The company I joined is called IntSights and provides Threat Intelligence/TIP as a cloud based service with remediation integrations back to your own network, it’s pretty clever stuff. And you are right, didn’t want to mention the company name initially. :)

                1. 1

                  Needs an RSS feed!

                  1. 1

                    It now has an RSS feed an a sitemap :)

                      1. 1

                        ttrss-ified!

                    1. 1

                      I tried Pelican and I am trying Hugo at the moment. The thing I find annoying about all these static site generators is that they are very focused on blogs. It’s almost impossible to find a good theme that suits a simple multi page website with a logo.

                      My current website runs on a 20 line php script with Slimdown, which is a simple regex based Markdown parser in php. Works pretty well for my needs. :)

                      1. 5
                        mysql -uroot -p -e “GRANT ALL ON smtpd.* to ‘opensmtpd’@‘127.0.0.1’ IDENTIFIED BY ‘opensmtpdpass’”

                        Hm. Can’t see why opensmtpd has grant all on smtpd.* Am I overseeing something or could OpenSMTPd and dovecot live with read-only access to the database?

                        1. 2

                          There is no need for more than read-only access for either OpenSMTPd and Dovecot.

                          1. 1

                            Thanks for confirming. I would leave a comment over at cagedmonster but can’t see where. Maybe he’ll see it here.

                        1. 0

                          BBC articles like this tend to be a little more pop newsy and with a bit less content and context than is helpful for here. :(

                          1. 1
                          1. [Comment from banned user removed]

                            1. 5

                              I guess it does. Even though we have seemingly reached the tipping point, the hard part now is to get the rest on HTTPS. It does help with browsers telling you about it.

                            1. 2

                              To be the lone dissenter (not really) I’ll share a little story. I had a computer question earlier today, and some searching led me to believe the answer was contained within the r/techsupport reddit. Which I can’t read because they’ve blocked access in protest. Which is pretty infuriating.

                              I imagine the point is to teach me some sort of lesson about how I’ll feel when Comcast blocks my access to reddit. But that hasn’t actually happened. What has happened, here, now, today, is that I can’t read reddit because of something the reddit mods have done. This does not inspire much sympathy for their cause. Congratulations, you made me angry. At you.

                              1. 6

                                I tend to get angry with any kind of protest, or strike for that matter. Most of the time people tend to have to break things first before it can be fixed and be better. For example, protest (strike) for higher salary for public transport servants shuts down public transport. Which is infuriating but does serve a purpose. The minor inconvenience you got today will hopefully will pay itself back big time.

                                1. 6

                                  I don’t think you’re the target audience. My bet is that the target audience are the people who either haven’t heard of “net neutrality” before or don’t know what it is. My guess is that it’s probably a pretty effective technique at injecting the concept into public discourse.

                                1. 12

                                  The TL;DR on this is:

                                  YES

                                  YOUR SITE NEEDS HTTPS.

                                  1. 3

                                    s/TL;DR/spoiler/ ;)

                                  1. [Comment removed by author]

                                    1. 1

                                      I am surprised it didn’t get any more votes. Seems important enough, also to lobsters.

                                      1. 1

                                        Looks like they were at different URLs. Had I known the previous one was posted, I wouldn’t have put mine up and upvoted theirs instead.

                                      1. 2

                                        More like a PSA but still useful imho.

                                        1. 4

                                          Since I am holiday his week I am re-reading “Sed & Awk”, read “HTTPD & Relayd Mastery” and have to start with “Programming Go”.

                                          1. 11

                                            As a new member I would appreciate these things to be written down elsewhere as well. I tend to read all I can find in about / submit rules etc. There isn’t a page that describes what kind of community you want to be and what the “rules” are. It’s al assumed that you know before you join, which I guess with coming up to 8000 members doesn’t scale anymore. So instead of telling people off for something that you, the collective you, think people should know. Post it somewhere to which you can refer to. Makes things a lot easier IMHO. ;)

                                            1. 15

                                              A workflow would be a great compromise. Facebook does this pretty well when reporting posts, e.g. “This post is about me” or “This post is about someone else” and “This post is threatening me” or “This post is threatening someone else”.

                                              Maybe instead of Lobsters offering these short labels, the options could be worded as such:

                                              • This comment is unrelated to the original post or anything else in this thread.
                                              • This comment is factually or logically incorrect in a blatantly obvious way.
                                              • This comment adds no value to the thread beyond expressing “me, too” in some way.
                                              • This comment is inflammatory or baiting an argument with no intention of encouraging honest discussion.
                                              • This comment is adds no value, contains only an irrelevant link, is low-effort, or commercial in nature
                                              1. 6

                                                I am strongly in favour of these longer labels. They are better than the single words at expressing the spirit of the sort of things we-the-community want downvoted.

                                                I especially like this one: it is a lot clearer than ‘Troll’, and it looks robust to both too-narrow or too-wide interpretation.

                                                ◾This comment is inflammatory or baiting an argument with no intention of encouraging honest discussion.

                                                1. 4

                                                  The ‘intention’ aspect could be removed by phrasing this slightly differently: “This comment is inflammatory or baiting an argument, and does not encourage honest discussion”

                                              2. 3

                                                Maybe a tooltip to hover over when you see one which explains what it means. I was struggling to work out what me too was about

                                                1. 2

                                                  There was a request for rules to be posted with a discussion here: https://lobste.rs/s/oackyq/lobsters_community_standards and a community created document here: https://github.com/meskarune/lobsters-constitution

                                                  Nothing ever came of it, but personally I would really like to see a page with guidelines and site etiquette, if only to help new people jump in and get used to the culture here quickly.

                                                1. 2

                                                  I prefer bottom posting but Outlook users, in general, make this rather hard. :)

                                                  1. 4

                                                    As I recall, Gmail also require more effort to bottom post than “click reply and start typing”.

                                                    1. 1

                                                      Indeed it does. Wondering why that became a thing when they were developing Outlook and Gmail. There must have been some thought progress around it.

                                                      1. 2

                                                        The busy executives don’t need to think about trimming anymore. I’m sure that’s all there is to it. Stupidification.

                                                  1. 2

                                                    I’ve found as time has gone on that I prefer to be given direct actionable requests. Something like “It’d be cool to check out a new place for lunch” is gong to be ignored, compared to “We will go to for lunch.”

                                                    Similarly, I’ve a coworker who is a wonderful person and who leaves comments in pull requests like “maybe foo would be better here if it handled condition bar”–and when I read that, I think “maybe that would be cooler, but I have to get work done”, and I may ignore it; after all, if it required fixing, they’d’ve said as much, right?

                                                    In general, anything that would be in the subjunctive case (in Latin anyways) is something I think people will likely ignore: if you need action, describe a clear objective.

                                                    If you also tell us why you need it, we might opine you actually don’t and there is a better way of doing it.

                                                    This part is a little bit of an anti-pattern, though. Hearing devsplaining is annoying as hell if you need something done soon and don’t have the patience or time to hold court and bring somebody up to speed.

                                                    1. 1

                                                      You should have a look at the video link in the article of his talk about the subject, I thought it was very funny. Seen it live at one of the NLNOG events.