One of the things that many people do as soon as they get here is post an #Introduction (using hashtags is quite important here, posts are much more visible) and people will welcome and start following you.
@stefano great guide indeed . i use guacamole for this with added MFA to access internal resources . the problem i have with WireGuard are places that block udp traffic . guacamole on https can solve it easily .
25 years ago today, Google was founded. On the same day, I wiped Windows 98 off my computer, believing that Debian Linux (which I had been using for a while but still kept Windows on another partition) could do everything I had been doing with Windows until then.
Since that day, many installations of Linux, *BSD, MacOS have graced my computers, but Windows has remained, on a few occasions, only an occasional (unwelcome) guest.
In the spirit of a typical support group phrase, I can joyfully say: 'Hello, I'm Stefano, and I haven't been using Windows as my primary operating system for 25 years.'
25 years ago today, Google was founded. On the same day, I wiped Windows 98 off my computer, believing that Debian Linux (which I had been using for a while but still kept Windows on another partition) could do everything I had been doing with Windows until then.
Since that day, many installations of Linux, *BSD, MacOS have graced my computers, but Windows has remained, on a few occasions, only an occasional (unwelcome) guest.
@stefano so Dos 3.3 and Prodos user until 1991.Then macos7 and atari gem then beos Slackware and os/2. Windows at works. Macosx until 2015 linux fedora since then. Considering switching nomadbsd.
Nsca mosaic on mac, then Netscape then mozilla nightly.
@stefano@bsd.cafe probably about 20-25 years ago I started looking into using Linux, and tinkered with a few distros (Debian, Fedora, Arch, openSUSE) in dual boot set up or as VMs, to test the waters of having a system I could configure for me, not configure myself for it. Ultimately I made the absolute switch about 15 or so years ago (Arch...btw, and servers set up with RHEL based, Debian or FreeBSD) and haven't looked back. I still have a Windows VM which I can spin up for those times I need it, but it's pretty much just 2 uses I have for it, I can do everything else on Linux or BSD.
Of course, I still have to support windows as part of my daily work... But of course I provide solutions via Linux or BSD
@stefano@bsd.cafe probably about 20-25 years ago I started looking into using Linux, and tinkered with a few distros (Debian, Fedora, Arch, openSUSE) in dual boot set up or as VMs, to test the waters of having a system I could configure for me, not configure myself for it.
This place isn't perfect. It has its problems, flaws, and limitations. It's not immune to hatred or those who spread negativity. Yet, here I've encountered incredible people, a marvelous community committed to bringing constructive engagement, dialogue, and social interaction back to the network. Thank you, Fediverse. Thank you, friends of the Fediverse.
This place isn't perfect. It has its problems, flaws, and limitations. It's not immune to hatred or those who spread negativity. Yet, here I've encountered incredible people, a marvelous community committed to bringing constructive engagement, dialogue, and social interaction back to the network. Thank you, Fediverse. Thank you, friends of the Fediverse.
For today's #ThankYouTuesday, I want to express my gratitude to someone I will refer to only by his first name, Gabriele. Many years ago, I was stuck in a job where I was exploited by my employer—the only one I had ever had. Gabriele, who attended one of my Linux courses about 20 years ago, saw my potential and offered me life-changing advice: 'You have a passion for what you do. Don't waste your time on someone who uses it only for their own profit. Start your own business, I'll help by introducing you to some of my clients, and we can offer the Open Source solutions that excite you so much. You're young enough to try.' I took the leap. It wasn't easy, but ultimately, I succeeded in doing the work I love and choosing the technical solutions I prefer. I'm not a great salesman and often charge too little, feeling almost guilty for asking people to pay for something I enjoy so much. But tonight, I want to say thank you to Gabriele. He might not read this, but my gratitude remains.
For today's #ThankYouTuesday, I want to express my gratitude to someone I will refer to only by his first name, Gabriele. Many years ago, I was stuck in a job where I was exploited by my employer—the only one I had ever had. Gabriele, who attended one of my Linux courses about 20 years ago, saw my potential and offered me life-changing advice: 'You have a passion for what you do. Don't waste your time on someone who uses it only for their own profit. Start your own business, I'll help by introducing...
As the #sun doth sink 'tween tower and age-old walls, The plaza basks in gentle, warm #orange embrace. In tranquil eve, the #city waits, as #nightfall calls, Preparing for nocturnal symphony to grace.
Today I saw the sun again after a week of being cooped up at home with fever and general malaise. I'm not back to full strength yet, but I'm recovering quickly. Wishing everyone a bright and sunny week! ☀️ #recovery#sunshine#health#wellness
Recently got a cheap 128 GB SSD to see how BSD would run on my main machine, and this weekend threw FreeBSD on it. I'm sending this toot from the working system, and aside from the general configuration joy of being an Unix nerd, finding almost everything I need to know in the FreeBSD Handbook is a great perk on the second joy: reading docs and being able to flow acting on them.
Happy Sunday to everyone! Today I aim to spend less time on the computer in anticipation of a busy workweek ahead. In recent days, BSD Cafe has welcomed new members – feel at home with our community!
I will soon announce (likely tomorrow) a new service for BSD Cafe that I've teased briefly in some posts.
Looking forward to planning the next offering; I have a vision and just need to figure out how to bring it to life!
Happy Sunday to everyone! Today I aim to spend less time on the computer in anticipation of a busy workweek ahead. In recent days, BSD Cafe has welcomed new members – feel at home with our community!
I will soon announce (likely tomorrow) a new service for BSD Cafe that I've teased briefly in some posts.
Hello everyone! I wanted to share some exciting updates about the development of BSD Mail, our privacy-focused email service designed with robustness, security, and transparency in mind. Here’s a deep dive into the technical choices I've made, focusing on my use of open source solutions and open protocols:
🌍 **Servers & Location**
- We're running on two physical servers: - One hosted by OVH in France - Another by Hetzner in Germany - Both servers operate on FreeBSD with NVMe drives in a ZFS mirror configuration for speed and data integrity.
🔒 **Virtualization & Security**
- We utilize jails on both servers to ensure isolated environments for different services, managed via BastilleBSD. On one server, jails are set up directly on the hardware, whereas the other server employs nested jails. - Each server hosts a bhyve VM running OpenBSD with OpenSMTPD for handling SMTP duties securely.
🔗 **Networking**
- A Wireguard setup connects the two servers, facilitating routing capabilities so that jails and VMs can communicate seamlessly, supporting both IPv4 and IPv6.
📧 **Email Services**
- **Dovecot** is configured for maildir replication across the servers using Dovecot sync, ensuring email availability and redundancy. - **Rspamd** instances are tied to local KeyDB jails, set up in master-master replication for consistent and reliable spam detection and greylisting. - **ClamAV** runs in corresponding jails for virus scanning, maintaining a high level of security. - **SOGo** provides a web interface for email management, connected to MySQL databases in master-master replication to handle sessions and authentication smoothly.
💾 **Data Management**
- Email data is stored on separate, encrypted ZFS datasets to secure emails at rest. - MySQL databases are used for storing credentials and managing sessions for SOGo, also in a master-master replication setup. Importantly, all passwords are securely hashed using bcrypt, ensuring they are salted and safe.
🔎 **Monitoring & Reliability**
- Our DNS is managed through BunnyNet, which continuously monitors our server status. Should one server—or a specific service—become unavailable, DNS configurations are dynamically adjusted to avoid directing users to the affected IP until full service is restored.
🌐 **Commitment to Open Source and Open Protocols**
- Every component of BSD Mail is built exclusively using open source software and open protocols. This commitment is crucial for ensuring data freedom and the reliability of the solutions we use.
This setup not only emphasizes our commitment to privacy and security but also our dedication to maintaining an open and transparent platform. We're excited to bring you a service where your privacy, data integrity, and freedom are prioritized. Stay tuned for more updates!
Hello everyone! I wanted to share some exciting updates about the development of BSD Mail, our privacy-focused email service designed with robustness, security, and transparency in mind. Here’s a deep dive into the technical choices I've made, focusing on my use of open source solutions and open protocols:
@stefano one of my favourite 😊