Search results for tag #sysadmin
![[?]](https://cdn.hosted.spacebear.ee/sb-53d788bcd8441bb97cfb7a64f2552521/accounts/avatars/109/331/059/732/420/534/original/6ee41c3fffb95318.jpg)
It funded in 15 minutes?
Look. You people didn't read the description. This isn't SUPPOSED to fund well. This silly thing exists entirely so I can train my new helper.
If y'all support the Defenestrated Edition, you will make my life difficult. #sysadmin
![[?]](https://mastodon.blablalinux.be/system/accounts/avatars/113/675/429/104/963/472/original/82a1c1608044837c.png)
2️⃣ Gestion à distance : allumez (WOL), éteignez ou redémarrez vos serveurs sans quitter votre canapé. Idéal pour votre facture d'électricité ! ⚡
👉 https://wiki.blablalinux.be/fr/gestion-alimentation-distance-proxmox-wol
À vos terminaux, et vive l'automatisation ! 🐧💻
#Proxmox #SysAdmin #Linux #OpenSource #BlablaLinux #AutoHost
![[?]](https://stockage.framapiaf.org/framapiaf/accounts/avatars/000/012/414/original/340bdb2fcc9c3517.png)
oMailgw 1.0, un outil libre pour superviser des passerelles SMTP sortantes mutualisées
https://linuxfr.org/users/kepon85/journaux/omailgw-1-0-un-outil-libre-pour-superviser-des-passerelles-smtp-sortantes-mutualisees
#sysadmin #email
![[?]](https://media.norden.social/accounts/avatars/108/193/889/569/700/052/original/5023314f05a37299.jpg)
Running #OpenBSD 7.8 DNS:
Firewall: #pf with auto-fed tables (IPS-style), spambot-tarpitting & service rate limits.
Mail: #smtpd (Multi-domain, RFC8461/MTA-STS) + #rspamd (DKIM) + #dovecot (IMAPS-only).
Spam-Defense: #spamd with auto-SPF-walk (no more greylisting issues).
Web: #relayd (TLS-Terminator, HSTS, CSP) + #httpd (NIP-05, Autoconfig, security.txt).
Performance: Lightweight "Fail2Ban" via 1-liner shell script (No Python crap!).#Nostr Relay in Rust building... #SelfHosted #SysAdmin #Security #Privacy
![[?]](https://cdn.masto.host/floss/accounts/avatars/109/305/784/922/240/453/original/431a96f87932ddcf.jpg)
@fdroidorg how about you do some responsible journalism and read the part where Google won't stop you from side-loading whatever you want so long as you jump through a couple hoops to make sure you're not being coerced by a third party?
Are you being purposely ignorant or do you have an angle here?
Google has *very clearly* stated they won't prevent you from doing these things with a little hand-holding.
#technology #sysadmin
![[?]](https://static.mamot.fr/accounts/avatars/000/027/739/original/2c8246dafe3cb6fb.jpg)
RE: https://framapiaf.org/@sebsauvage/116313774703216263
This article is quite interesting and I'm interested about the idea of #immutable #Linux, at least for end users. I found nothing official on the #debian wiki.
On Debian, I don't remember having often experienced myself upgrade problems, with more than 25 years using it. Not on stable at least. (because ofc I run #testing :)
I don't know much about Fedora but I had the idea that it was not *that* stable because of its bleeding-edge nature.
#sysadmin #desktop #desktoplinux #yearofdesktoplinux
#Linux #système
Les choix techniques fait par Fedora pour mettre à jour le système sont tout à fait intéressants.
https://www.howtogeek.com/fedora-quietly-solved-linuxs-update-problem/
(Même si en plus de 15 ans j'ai très rarement eu de problèmes avec Linux Mint, d'autant que j'ai toujours Timeshift pour faire un retour-arrière en cas de pépin.)
![[?]](https://stockage.framapiaf.org/framapiaf/accounts/avatars/000/010/831/original/b7aab50055b38f04.png)
![[?]](https://files.wehavecookies.social/accounts/avatars/116/315/607/193/088/482/original/e905e66bf4e2b843.png)
We spend 40 hours a week building resilient, distributed systems at work, then come home and spend our weekends fighting a single Raspberry Pi because a microSD card decided to retire early.
Is the "Single Board Computer" era of self-hosting over? Between mini-PCs (N100s) being cheap and cloud egress fees dropping, I'm starting to think the "Pi in a closet" is more of a hobbyist tax than a real infrastructure solution.
What’s the "stable" baseline for a home lab in 2026? Are you still team ARM, or have you moved to retired enterprise tiny-PCs?
#SelfHosted #HomeLab #Docker #RaspberryPi #SysAdmin #DevOps #KindaLame
Quand ta stack Proxmox décide d'être très bavarde entre 9h39 et 10h29 ce matin... ☕️🤖
Résultat : une avalanche de notifications Gotify ! Mon téléphone a fait son sport pour le lundi 😂📜
👉 https://picsur.blablalinux.be/i/ee03af7b-ca00-4a94-bb0a-c29f41bed7ad.jpg
Bonne semaine à tous ! 💻🔥
#Proxmox #Gotify #Lundi #SysAdmin #SelfHosted
![[?]](https://6-28.mastodon.xyz/accounts/avatars/000/001/517/original/39211d84ecf6c396.png)
Replay dispo : J'ai tenté de moderniser un Raspberry Pi 1. #podman, #pihole (avec redirection #nftables) et benchmarks ARMv6. Spoiler : rien ne s'est passé comme prévu, entre erreurs d'architecture et conflits DNS. La vidéo : https://youtu.be/27KVWmIs8ck #SysAdmin #RaspberryPi #Linux
Wusstet ihr, dass `find` und `xargs` zusammen echte Superkräfte haben? 🦸
find . -name "*.log" -mtime +30 | xargs rm -f
Löscht alle Logfiles älter als 30 Tage. Einmal verstanden, nie wieder vergessen – und euer /var/log dankt es euch morgen früh. 🗂️✨
Aber bitte: erst testen, dann löschen. Mit `echo` statt `rm` schauen was passiert wäre. 😅
![[?]](https://media.bsd.cafe/bsdmmedia01/accounts/avatars/115/276/840/417/131/111/original/507e2134cf9f2a8d.webp)
Just spent way too long wrestling with a 400-line pf.conf and asymmetrical routing. 😵💫
The culprit? Classic rule ordering. A slightly too broad rule (with quick) near the top was happily catching traffic and creating states without the reply-to option before my intended rule could even look at it.
The packets were flowing, just... not back the right way. Debugging that was significantly harder than I expected.
I am officially logging off to take a nap. 💤
![[?]](https://media.burningboard.net/accounts/avatars/109/892/422/024/311/931/original/f22e604f554272c0.png)
I wrote up my entire backup strategy for my servers across FreeBSD and Linux:
- ZFS snapshots with sanoid
- Off-site replication via syncoid to rsync.net (encrypted at rest)
- Proxmox Backup Server fronting Backblaze B2 for VMs
- A Podman trick for backing up RHEL hosts without native packages
- Dead man's switch monitoring
- Quarterly restore tests recorded with asciinema
Real configs included.
https://blog.hofstede.it/my-multi-stage-backup-strategy-zfs-proxmox-and-paranoia/
![[?]](https://files.mastodon.social/accounts/avatars/000/333/560/original/dfb431b8541ceb74.png)
I spent the rainy part of this autumn day studying more on PQC (post quantum cryptography) in the context of mitigating for harvest-now-decrypt-later attacks. If you have openssl >=3.5.* locally you can test for it yourself against $CRITICAL service of your choice:
openssl s_client -groups X25519MLKEM768 -connect example.horse:443
You might as well hit :993, :25 and :587 on your MTA while you're at it.
Good to get ahead of the qday (cough) curve
![[?]](https://cdn.fosstodon.org/accounts/avatars/108/202/551/808/123/591/original/bb75f099d87ee16f.gif)
so apparently people are having conversations with LLMs about stuff other than powershell remediation scripts?
Huh, I thought that was its only use
![[?]](https://media.infosec.exchange/infosec.exchange/accounts/avatars/109/280/518/043/799/047/original/922be452915b74d2.png)
Hey #sysadmin folks, need some help finding a #VPS hosting server, but one that is powered by renewables. Anyone have suggestions?
#virtualprivateserver #greenenergy #renewableenergy #cloudhosting
![[?]](https://media.bsd.cafe/bsdmmedia01/accounts/avatars/110/740/169/477/916/693/original/dfa8f1b9beefa405.png)
![[?]](https://media.bsd.cafe/bsdmmedia01/accounts/avatars/110/901/147/484/217/272/original/42dd588e37bcd14e.png)
Finally, I managed to install and configure a graphical environment directly during a #FreeBSD installation session 🎉
Most of the friction was around GPU drivers, but the feedback and suggestions I received were incredibly helpful. A lot of people want to use FreeBSD on their laptops and desktops, and that really shows.
For now, the goal was to provide a simple option to install #KDE Plasma. If there’s interest and more requests, we can definitely expand this in the future with additional desktop environments and options.
Special thanks to the FreeBSD Foundation for their support 🙌
#RUNBSD #FreeBSDDesktop #FreeBSD #BSD #OpenSource #Unix #KDE #KDEPlasma #DesktopEnvironment #GUI #Laptop #Desktop #FOSS #Tech #SysAdmin #DevOps #OperatingSystem
Alt...
A screenshot of the FreeBSD Installer on a blue background. The main focus is the 'Final Configuration' window with a list of system configuration options. The option 'Desktop' is highlighted, indicating the choice to install a graphical environment.
Alt...
Text-based FreeBSD installer dialog prompting the user to install GPU drivers, Xorg, KDE Plasma, and a display manager. The message notes that this is an experimental feature. Two options, “Yes” and “No,” are shown, with “Yes” currently selected.
Alt...
Text-based FreeBSD installer dialog with the title “Desktop installation completed.” The message explains that the SDDM display manager will start automatically at the next system boot and lists configured users. A tip suggests using the VBoxSVGA graphics controller and disabling 3D acceleration in VirtualBox. An “OK” button is highlighted at the bottom.
Alt...
Screenshot of a FreeBSD 15.0 system running inside a VirtualBox virtual machine with the KDE Plasma desktop environment. In the foreground, the “About this System” settings window displays software and hardware information, including KDE Plasma version, Qt version, kernel version, and available memory. In the background, a web browser window is open on the FreeBSD official website.
@fdroidorg 😂 what hyperbole.
First is the falsehood that #Google had ever claimed #Android devices are the "best computing device[s] in the world that [do] everything."
Second, the fallacy that this definition would preclude a protected ecosystem like they propose. Apple? Most people prefer the safety it offers them.
Side-loading? Valid. Silly argument.
The new changes protect *most* users from themselves.
Best? Power users aren't being stopped at all. Its an inconvenience at best.
#sysadmin
![[?]](https://stockage.framapiaf.org/framapiaf/accounts/avatars/000/029/041/original/8e58247f8abf51ee.png)
Bonjour les copains #sysadmin
Je me renseigne sur la mise en place d'un serveur de #signature électronique. Je teste #opensign qui a l'air bien (niveau fonctionnalité hein, sinon encore une saloperie dockerisée à la truelle) mais ne marche pas avec les certs en ecdsa seulement rsa. Je n'ai aucune idée de ce que délivre les autorités certifiée, pour du niveau 1 ça se trouve des #certificats #eidas valide en rsa?
@aeris maybe?
À part opensign il y a d'autres solutions intéressantes?
![[?]](https://files.mastodon.social/accounts/avatars/114/406/659/686/570/731/original/440a290360d1f50c.png)
2.5 Admins 292: Trivyally Infected
The US government is drumming up fear about foreign routers, a pretty serious supply chain attack might be state-sponsored, and the safety of filesystems inside VMs.
https://2.5admins.com/2-5-admins-292/
Alt...
2.5 Admins artwork
![[?]](https://is-a.cat/system/accounts/avatars/108/675/359/091/569/719/original/f0fdf31423871eb6.png)
[
Découvrez comment mettre ça en place sur le wiki :
👉 https://wiki.blablalinux.be/fr/sauvegarde-restauration-sqlite-multiservices-proxmox
#SelfHosted #Proxmox #SQLite #BlablaLinux #Backup #Linux #SysAdmin
New post: shell tricks that aren't exactly secret, but aren't always taught either.
Split into two sections: what works on any POSIX sh (FreeBSD, OpenBSD, Alpine...) and what's Bash/Zsh-specific. Because not everyone is on Linux with bash as their login shell.
Things like CTRL+W, $_, pushd/popd, fc, set -euo pipefail caveats, and more.
https://blog.hofstede.it/shell-tricks-that-actually-make-life-easier-and-save-your-sanity/
![[?]](https://media.hachyderm.io/accounts/avatars/109/628/338/362/879/424/original/0c5abd06051aad63.jpeg)
I find myself at a point where I'm encountering irreconcilable differences between my moral, ethical, and technical objections to the use of LLMs, and my employer's leadership's desire to force the use of LLMs into every aspect of day to day operations. As a result, I find myself #OpenToWork .
I have decades of experience in the #SysAdmin / #SRE / #DevOps / #CICD / #CloudComputing range of skills. Currently acting as a subject matter expert on #Kubernetes , #Terraform , and #Observability . Mostly supporting #GCP platforms these days, but I am comfortable pivoting to other #cloud platforms like #AWS or even #OnPrem . Can do #ProjectManagement and #TeamLeadership. Experienced in #DevSecOps and #FedRAMP processes.
I would strongly prefer to deal with no LLM tooling at all, but will settle for having to use it less than in the current environment.
Location: #Canada (remote), #WaterlooRegion (Ontario) (hybrid).
@drscriptt @monospace I got my workplace almost entirely converted to XML back when it was "fresh" and then JSON took over and we've mostly avoided the shift.
Explaining to people why I prefer XML over JSON when they're too young to understand the move from CSV is just hard.
#greybeard #sysadmin
@drscriptt @monospace its very handy when looking for specific connections, or frequently in my case, connections not coming from specific subnets:
```ss not src $LOCALNET/24 dport :587```
But those more 'interesting' commands I've just saved to mini ~/bin/ scripts so I don't have to type them and frequently forget the syntax.
![[?]](https://media.mstdn.social/accounts/avatars/109/197/908/539/057/893/original/aaccd7e755384328.png)
u wot m8? 
> Most modern operating systems include cURL by default. On Windows, use 'cmd' since in powershell curl is added as alias for Invoke-WebRequest (Microsoft.PowerShell.Utility)
Let me get this straight: Microslop decided that it makes total sense to have a "curl" command that in PowerShell is a different thing than the standard "curl" available in `cmd`?..
Ffs. I have no words.
![[?]](https://social.retroedge.tech/media/47840eee-46bb-4d3c-b5c7-94fbb515fa9c/Avatar-CPU.jpg){kind=avatar}
I used ‘find’ on a Linux server today.
find /path/to/directory -type f -mtime +365 -delete Yes, I had to look up the flags to make it do what I wanted it to. I do not have them memorized.
#Linux #SysAdmin
RT: https://floss.social/users/mikebabcock/statuses/116284712899761792
One of the most powerful commands on your #linux system is 'find' ... and one of the most annoying commands on your system is also find.
Do you need to use -and between parameters?
Did you specify the right #regex type before -regex search? And "./"?
Can you remember the before and after date syntax?
If you want to do something to a certain subset of files, find is probably the right way. And you'll spend fifteen minutes fixing the command-line before getting it right.
@thenewoil and yet, passkeys are still single-source authenticators. As a result, they are not as secure as proper 2FA systems, simply better than passwords alone.
#security #sysadmin #fud
@monospace `ss -lpn | grep :8080` is my goto personally. I find it much more robust and fast. ymmv.
#linux #sysadmin #networking
@geerlingguy as a guy who's been building his own routers professionally for decades now, this is great advice. Also its really quite easy (and always has been with the right knowledge).
Just PLEASE don't run additional software on your routers. Run them on a device *behind* the router. You'll thank me eventually.
#firewall #router #sysadmin #networking
One of the most powerful commands on your #linux system is 'find' ... and one of the most annoying commands on your system is also find.
Do you need to use -and between parameters?
Did you specify the right #regex type before -regex search? And "./"?
Can you remember the before and after date syntax?
If you want to do something to a certain subset of files, find is probably the right way. And you'll spend fifteen minutes fixing the command-line before getting it right.
![[?]](https://aseachange.com/fileserver/01ENCW3D083ATDAP5WGJEMSJC8/attachment/original/01JG469Y8X2DXVNGTWEZ8BPAGX.jpeg)
Oh happy day!
This newbie #sysadmin is VERY HAPPY because in less than 5 minutes I:
installed tmux (thank you for the recommendation & instructions @teapot_ben and @drfyzziks)
upgraded PeerTube from Terminal using tmux
now the stakes weren't super high because I did this for my second VPS which is running test apps... the real challenge will be to do this on my primary VPS and my in-production PeerTube instance.
Grabbing another coffee, taking a VPS snapshot and trying this.
As always THANK YOU FOR YOUR SUPPORT AND ENCOURAGEMENT. I couldn't do this without you 💖
Oh but the larger point in this message was to vouch for tmux - it really is super beginner friendly. I know NOTHING and I was able to easily install it and use it. So you could recommend it to your normie friends for sure ☺️
![[?]](https://cdn.masto.host/floss/accounts/avatars/111/340/454/048/716/134/original/1a10719906213ed3.jpg)
#Linux security best practice: Create system user accounts for services that can’t be used for login: `useradd -r -s /sbin/nologin servicename`
🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/
Envie de l'auto-héberger sur votre Docker/LXC ? Voici mes snippets Compose tout frais sur ByteStash :
Version Persistance (API) :
https://bytestash.blablalinux.be/s/4f7a1a645f316457803c94cd237ee388
Version Sandbox (Démo) :
https://bytestash.blablalinux.be/s/dcdcfa327c4d5f666a96b963d19d99de
Projet source sur GitHub : https://github.com/rackulalives/rackula
Amusez-vous bien avec vos baies !
#SelfHosting #Docker #Linux #Rackula #BlablaLinux #SysAdmin #Proxmox
Running a FreeBSD server with two independent uplinks?
My latest deep dive covers how to mix a physical provider and a BGP tunnel to serve NAT'd, routed, and pure public jail traffic on a single bridge.
We break down Dual-FIB policy routing and show you how to use PF's rtable and reply-to directives to fix asymmetric routing and keep traffic strictly separated.
Policy routing done right: https://blog.hofstede.it/dual-fib-policy-routing-on-freebsd-two-upstreams-one-server-zero-confusion/
![[?]](https://mastodon-data.cdn.tedomum.net/accounts/avatars/000/172/164/original/754a4bcbcb8cce20.jpg)
THIS IS A POST IN PRAISE OF SNAPSHOTS.
My PeerTube upgrade was a horror show: lost server connection during the upgrade and then PeerTube was automatically removed from my YunoHost server... the routine backup by YunoHost of PeerTube didn't restore... in short: bad, very bad outcome.
I hyperventilated for a few minutes and then... hit "Restore" on the VPS snapshot I had captured before the maintenance operation and... everything went back to normal.
Heart still beating a little fast but I am in AWE of the powers of SNAPSHOTS, ouf.
![[?]](https://media.mstdn.social/accounts/avatars/109/521/442/245/107/734/original/9303ae5bd9aebaa5.jpeg)
System Administration: Week 8: E-Mail, Part II
In this video, we observe the incoming mail on our MTA, look at how STARTTLS can help protect information in transit, how MTA-STS can help defeat a MitM performing a STARTTLS-stripping attack, and how DANE can be used to verify the authenticity of the mail server's certificate.
System Administration: Week 8: E-Mail, Part III
In this video, we look at ways to combat Spam. In the process, we learn about email headers, the Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), and Domain-based Message Authentication, Reporting and Conformance (DMARC). SMTP doesn't seem quite so simple any more...
Kleines Terminal-Reminder für einen entspannten Nachmittag:
`htop` zeigt dir, was deinen Rechner gerade ausbremst.
`df -h` zeigt, wo der Speicher hingeflossen ist.
`ss -tulpn` zeigt, welche Dienste lauschen.
Drei Befehle, und du weißt mehr über dein System als die meiste proprietäre Software dir jemals verraten würde. 🐧
![[?]](https://social.dk-libre.fr/social/oldsysops/s/7e93fa6bf16b47da4f57ddf9072aff8c.png)
je réfléchi encore à la solution technique pour le backup, mais je pense que je vais partir sur un double backup :
#borg en local, #restic en distant...
je crois que je vais allez contre la faq et faire quand même un rsync du borg local (en plus.…)
déjà que je suis un peu foufou et que je suis parti avec borg2 au lieu de borg stable...
![[?]](https://social.gyt.is/fileserver/01BTTQA7S2746NZVSVS0NT8Z5Z/attachment/original/01KF6QQPE57K5CQPXDAW76AZMQ.jpeg)
Damn, nvidia-kmod and VirtualBox-kmod modules don't build on Kernel 6.19 
Classic situation (at least with NVIDIA) after @fedora updates 
I guess will have to jump around to get Kernel 6.18 back... Why can at least one version of previous Kernel be always available by default? 
🚀 Défi accepté !
Un grand merci à l'équipe de https://www.proxcenter.io/ pour la licence d'évaluation : 10 nœuds à tester, mais seulement 10 jours au compteur ! ⏱️
Le marathon commence : tests, article de blog et vidéo en approche. Je vais pas chômer ! 🐧💻
#ProxCenter #Proxmox #Linux #SysAdmin #BlablaLinux
- Faire ce que dit l'alerte
- Réfléchir a pourquoi on a cette alerte alors qu'avant tout allait bien
- Se rendre compte qu'on ne comprend rien à l'informatique
- Se rouler en boule sur le sol et reflechir a ses choix de vie et comment on en est arrivé là.
- Se reconvertir dans l'élevage de chèvres dans le larzac
- avant de partir faire un ticket dans Redmine pour le prochain sysadmin/DBA.
EnshittifAIcation
Three episodes, one week. AI bots that hallucinate VPN requirements, recommend Apache configs on nginx servers, and suggest replacing 128 GB of RAM with a cloud VPS. A field note on the cost of mistaking confidence for competence.
System Administration: Week 7: DNS, Part II
In this video, we dissect DNS lookups performed on our EC2 instance, then discuss just how a caching resolver performs the lookup, moving from "magic happens here" to the below visualization.
System Administration: Week 7: DNS, Part III
In this video, we try to wrap up our discussion of the Domain Name System by addressing the nature of the root nameservers, looking at various different resource record types, observing reverse lookups, and thinking about how we can have assurance of authenticity and integrity of the DNS results returned to us via DNSSEC.
Alt...
World map showing the locations of the root servers.
System Administration: Week 7: DNS & HTTP
We're moving from the DNS on to HTTP. Sorry, no videos for this subtopic, but here are the slides from our last class. We discuss how to get your domain registered and then move on to summarize briefly HTTP the protocol and look at what CDNs do.
System Administration: Week 8: HTTPS
We sketched out the basics of HTTP in our last class, so necessarily we'll have to cover #TLS now. These slides illustrate the benefits (transport encryption, endpoint authentication) as well as some of the pitfalls (complexity, cert revocation, endpoint "authentication").
System Administration: Week 8: E-Mail, Part I
In this video, we begin our discussion of E-Mail by looking at the components of the larger mail system (the Mail User Agent, the Mail Transfer Agent, the Mail Delivery Agent, an Access Agent), observing the packets involved in a simple SMTP exchange, and track an email from one system to the other.
🚀 BentoPDF version BlablaLinux est en ligne !
Instance 100% optimisée :
✅ SEO : Sitemap et robots.txt 100% locaux.
✅ Réseaux : Vignettes Open Graph corrigées (logo BlablaLinux).
✅ Perf : Support WASM & Gzip activés via NPM.
✅ IA : Blocage centralisé des bots.
✅ Branding : Intégration complète.
À tester ici :
👉 https://bentopdf.blablalinux.be
#Linux #OpenSource #BentoPDF #SelfHosted #BlablaLinux #SysAdmin
![[?]](https://mastodon.evolix.org/system/accounts/avatars/000/000/059/original/bcc4c75645d0cb31.jpeg)
I just finished an amazing call.
The person I was talking to was trying to explain to me that Docker is an entire operating system, so he doesn’t want Linux or any of the BSDs, but Docker. I explained that, in order to run Docker, you need a kernel.
"No, you don't. Docker does everything on its own. If you think that, then you don’t really understand operating systems."
I told the guy that I couldn’t help him, since I'm not experienced enough with operating systems. He was a bit disappointed, but we said goodbye on friendly terms.
I'm used to recognizing when I'm too ignorant for the person I'm talking to, and I'm happy to step aside.
Ah, Debian. Add a disk and you yet again renumber your network interfaces. #sysadmin 
boostedTon disque dur USB joue à cache-cache ? 🛑
Ras-le-bol des erreurs "Input/Output" en plein milieu d'une sauvegarde ? 😫
C’est souvent juste Linux qui veut faire des économies d’énergie un peu trop agressives !
Apprenez à garder vos disques "éveillés" et vos backups en sécurité avec ce nouveau guide step-by-step 🛠️🐧
👉 C’est par ici : https://wiki.blablalinux.be/fr/stabiliser-disques-usb-autosuspend
En attendant de voir si ça finit en article ou en vidéo, je vous ai déjà préparé le terrain. Si vous voulez le déployer proprement (testé et validé en LXC Docker), mon Docker Compose et son fichier .env sont dispos sur mon ByteStash.
🌍 Site officiel : https://proxcenter.io
🔥 Le snippet ByteStash : https://bytestash.blablalinux.be/s/849d4b39f08647dbff1cfee83d681f2f
Affaire à suivre... 😏
#Proxmox #HomeLab #Docker #SelfHosted #ProxCenter #BlablaLinux #SysAdmin
Easy way to kickstart a runbook: Log actions with “history | tail -20 | tee file.md” to capture recent commands, then add explanations.
🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/
![[?]](https://cdn.masto.host/enosmtown/accounts/avatars/109/341/527/116/255/990/original/16fee146425349c3.jpg)
I have been suggested that the company I'm working is not doing well. Than and a push for AI is telling me it's maybe time to move on.
What am I? Currently I'm doing #Python, #SysAdmin, GitHub/GitLab admin (yes, both), some Kafka, used to do some Postgres (now we have a DB team), Ansible and more.
Edit: more info: https://en.osm.town/@mdione/116302423501761728
What do I want? No AI, no gambling, no blockchain. In #Marseille or remote. I can invoice abroad, but I would rather be an employee.
1/
🍵 
Why I love FreeBSD
A personal reflection on my first encounter with FreeBSD in 2002, how it shaped the way I design and run systems, and why its philosophy, stability, and community still matter to me more than twenty years later.
Bug-for-bug compatibility is great, but having an actual feedback loop into enterprise Linux development is better. I wrote about my experience running CentOS Stream in production, how it handles security updates without the rebuild lag, and why the upstream model beats the old CentOS way.
https://blog.hofstede.it/why-i-prefer-centos-stream-over-old-centos/
You just provisioned a fresh Linux server. Within minutes, the SSH brute-force bots will arrive.
There are too many ways to build a firewall in Linux. I wrote a practical guide to the four major tools: iptables, nftables, firewalld, and ufw, including their mental models and deployable configs.
Also includes a deep dive into the "Docker Trap" (why Docker silently bypasses your default-deny rules) and how to fix it.
(And yes, I still spend the intro and conclusion reminding everyone that FreeBSD's PF is the undisputed king of packet filtering. Let's argue in the replies.)
Read it here: https://blog.hofstede.it/linux-firewalls-how-to-actually-secure-a-cloud-server-iptables-nftables-firewalld-ufw/
#Linux #Sysadmin #DevOps #Security #Netfilter #Docker #Networking
🚀 Mises à jour en série chez BlablaLinux !
SearXNG, 2FAuth, Gitea, StirlingPDF et plein d'autres services sont tout frais, tout beaux... mais ce n'est même pas moi qui ai bossé ! 😎
Merci qui ? Merci Watchtower ! 🤖🐳
Retrouvez tous mes services ici :
👉 https://blablalinux.be/mes-services-publics/
#BlablaLinux #AutoUpdate #Docker #Watchtower #SelfHosted #LogicielLibre #SysAdmin #Linux #Debian #Proxmox #LXC
![[?]](https://whitespashe.uk/system/accounts/avatars/000/000/014/original/0013482b488b3928.jpg)
Tonight I'll be trying to set up a runner for Gitea actions. I hope to get it to "build" docker images automatically on changes, then publish them to Gitea's container image registry: https://docs.gitea.com/usage/packages/container
It'll be the first time I've worked with gitea actions and gitea runners, so lots of trial and error to be had!
Alright, here we are. The decline is accelerating.
An IT manager at a client company, someone capable I've been collaborating with for years, recently hired three new developers. However, he asked me for a Linux server instead of the usual FreeBSD because "that way the devs can move faster, AIs can't produce valid results for BSD systems".
Given our relationship, I called him and told him I disagreed. Somewhat bitterly, he replied that these guys had been "imposed on him". They're polite and willing, but completely lacking any real programming principles. They are "experts in vibe coding", and for management that's more than enough.
In other words, we're not supposed to build a working and efficient server anymore, but a vibe-coding-friendly one.
My instinctive reaction was to ask him whether, when a data breach eventually happens, because sooner or later it will if the people writing the code neither write nor read code, they'll be able to tell the authorities that the data controller was an AI.
He didn't say anything else and thanked me. Maybe, and I stress maybe, management will understand that.
![[?]](https://static.mamot.fr/accounts/avatars/000/000/092/original/data.png)
Échec et mat !
> Check Point ThreatCloud flags whole cloudfront.net... - Check Point CheckMates
> False positives can happen and do happen from time to time. Normally I would not create a CheckMates post for that.
https://community.checkpoint.com/t5/General-Topics/Check-Point-ThreatCloud-flags-whole-cloudfront-net-as-phishing/m-p/271664#M45533
#dns #sysadmin #infosec
My oldest still running server ..
HP ProLiant DL120, installed in May 2012 with Debian 7 Wheezy, even before systemd was a thing.
Continously upgraded up to Debian 12 Bookworm.
Former Mailserver, Blog Server, Photo Gallery, Git Forge ..
5 SAS Hard disks were replaced over the years. Other than that, it just worked since 2012.
root@helium:~# # Farwell old friend. You served well! See you in the nether.
root@helium:~# poweroff
Broadcast message from root@helium.edelga.se on pts/1 (Wed 2026-03-11 18:21:28 CET):
The system will power off now!
Shared connection to helium.edelga.se closed.
🥺
Trying some traffic shaping on my PFSense box today.
The idea is to give priority In/Out of the internet to traffic that directly affects the wife and I.
HTTP/S, VoIP, Streaming Media, etc are all prioritized over other things such as Steam downloads, Linux ISO downloads, etc.
With any luck, this will make our daily usage smoother by limiting the amount of bandwidth taken up by lower-priority services.
We've got a DnD session tonight (with the VTT hosted by me) with the traditional discord voice chat, so we'll see if that makes a difference!
Linux tip: Use “ss -tuln” to check for open ports. Filter specific port numbers by adding “| grep :80”, for example.
🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/
![[?]](https://files.mastodon.social/accounts/avatars/109/340/977/724/100/266/original/518b39084f510077.jpeg)
RE: https://mastodon.social/@dzwiedziu/115570876140855775
Sooo, remember my most boosted post of #wrapstodon 2025?
I'm still unemployed, now facing moving out of France by the end of April.
Recap: jack of all trades #Linux sysadmin, with broad, 10y+ experience in system and applications administration. Preferred location would be #Strasbourg or fully remote or as a mentee for #freelance with #ADHD.
(Please clap, I mean boost 🔁)
![[?]](https://files.mastodon.social/accounts/avatars/114/368/991/106/654/640/original/53b5d06197b40028.png)
Windows 12 rumors point to deeper AI integration that could control services, updates, screen reading, and semantic search — impossible to fully disable. 🧩
This could be the tipping point pushing users to Linux, which offers no ads, no forced AI, no hardware demands, no tracking, and zero cost. 🛡️
🔗 https://www.zdnet.com/article/windows-12-rumors-linux-migration/
#TechNews #Linux #Windows #Windows12 #Privacy #AI #OpenSource #Desktop #Microsoft #Migration #FOSS #SysAdmin #Tech #Software #Security #Freedom
If you want to raise your shell scripts to a new level, give this a try! It'll give useful feedback on the style of your shell code and on possible issues with it.
PS: Know when to switch to a proper programming language.
J'arrive pas à booter sur KVM une VM récupérée d'une sauvegarde Proxmox, qu'est-ce que je fais mal ?
La sauvegarde était en vma, elle a été convertie en raw, je l'ai convertie en qcow2, je fais l'importation comme le tutoriel le dit mais j'obtiens soit "no bootable disk" (en BIOS) ou juste un shell UEFI (en UEFI).
Marre de stresser pour vos données ? 😱
Si Timeshift s'occupe de votre système, il ne faut pas oublier vos fichiers perso, vos sites web ou votre Nextcloud ! 🎯
Nouveau guide sur le Wiki BlablaLinux : un script Rsync universel pour tout sauvegarder proprement, avec des alias simples et des logs automatiques 🐧💻
👉 Tout est là : https://wiki.blablalinux.be/fr/sauvegarde-donnees-script-rsync-universel
If your terminal ever gets confused by random control sequences, for example after you accidentally output binary data, there's a good chance you can restore order with the `reset` command.
D'ailleurs, l'instance Papra BlablaLinux tourne déjà avec toutes ces optimisations !
✅ Le labo (mis à jour) : https://papra.blablalinux.be
✅ Le Docker Compose complet : https://bytestash.blablalinux.be/s/c696e234a3d12996b9d6821d8c684b06
Fini les "je n'ai pas reçu le mail" et les serveurs encombrés, tout roule ! 🐧🔥
#SelfHosting #Linux #Papra #OpenSource #SysAdmin #BlablaLinux #Docker #Automation #Productivité
@SecureOwl I'm so sorry to the few honest ones but the entire #cybersecurity industry feels so corrupt and gross these days. All these "insurance" companies with their own remediation teams they pay out of your insurance plan? Ew. It would be illegal in any other industry.
So do fake message robocalls surprise me? Not at all.
#sysadmin
![[?]](https://s3.us-east-005.backblazeb2.com/musicianstoday/accounts/avatars/109/525/730/258/233/266/original/89cf6419ecb30d25.png)
Apparently *_urgent_* action to renew the Certbot Certificate for my server's Webmin remote access control panel *_isn't_* urgent after all. No. Not.
#SysAdmin #security
Alt...
A black cat sits upright on a closed (by her!) laptop. She is turned away, possibly considering pouncing on the laptopee's outstretched bare legs and feet. The photo is in black and white to spare the viewer from the human's pasty pinkness.
Another report forwarded to me by a client saying "your website is insecure because it accepts outdated encryption protocols" - naturally passed along to them by third parties.
Yes, it accepts them. But it's a static website that simply provides some information about the company. Nothing critical, nothing dynamic. No data is exchanged. There is no login.
We had already tightened everything up a few months ago (for me it's literally a one-line change), but they later told me that some visitors could no longer access the site and asked me to revert it. Probably older devices, but there are plenty of those out there. I know organizations that still use Windows 7, and I still occasionally see some XP clients around.
So now I explained to the client that we have two possible choices: accept the "risk" (which, frankly, I'm not entirely sure what it would be, since even if someone decrypted the traffic they would see nothing that isn’t already visible by simply visiting the page normally), or lock it down again, potentially cutting off some devices, just like what happened a few months ago.
The choice is theirs. We’ll see!
![[?]](https://files.sfba.social/accounts/avatars/109/390/941/867/145/185/original/17ee2851fbce348c.jpg)
The /proc filesystem was a genius idea giving the #sysadmin direct control of the Linux kernel. In this article, David Both explains how to change kernel parameters at runtime.
System Administration: Week 6: Networking II: ARP and NDP
In this video, we illustrate the functionality of the Address Resolution Protocol (ARP) and it's IPv6 equivalent, the Neighbor Discovery Protocol (NDP).
System Administration: Week 6: Networking II: ICMP
In this video, we demonstrate the use of the Internet Control Message Protocol or ICMP by tracing and analyzing ping(1) and traceroute(1) invocations.
And in case you're wondering: http://shouldiblockicmp.com
System Administration: Week 7: DNS, Part I
In this video, we are beginning our discussion of the #DNS. We go back to the early days of the internet when copying /etc/hosts from system to system was the way to resolve hosts...
(Hosts file from 1983: https://rscott.org/OldInternetFiles/hosts.19831104.txt)
...and we cover the structure of the domain name space and the creation of the top-level domains.
(Second-level domain inventory from 1987: https://rscott.org/OldInternetFiles/domain-info.19871215.txt)
![[?]](https://media.bsd.cafe/bsdmmedia01/accounts/avatars/112/952/578/452/066/572/original/57fc345f7cf29c68.jpg)
I'm looking for a project to put my PowerEdge R710 to good use! My idea is to install FreeBSD on it and migrate some services currently running on Linux VMs via Proxmox on my PowerEdge R720. Since the software I'm using offers FreeBSD compatibility, this would be a perfect opportunity to utilize the R710's impressive specs:
Dual Intel Xeon X5560 @ 2.8GHz
288GB RAM (fully populated)
6x 1TB SAS drives
Optimiser, c'est bien. Comprendre pourquoi on le fait, c'est mieux ! 🧠
J'ai ajouté une section spéciale sur le Wiki pour expliquer mes choix de compression (résolutions, bitrates, CPU).
Pourquoi 3468px ? Pourquoi 6000k ? Je vous déballe toute ma logique basée sur mes propres tests réels 📈💻
Tout est détaillé ici :
🔗 https://wiki.blablalinux.be/fr/optimisation-automatique-medias-nextcloud#pourquoi-ces-réglages-de-compression
Vous uploadez, il compresse, Nextcloud sourit ✅
Le guide complet pour l'optimisation automatique des médias est arrivé ! Un script universel, des workflows aux petits oignons et vos précieux gigas préservés, même sur du matériel reconditionné 📦🔥
Le Step-by-Step complet est ici :
🔗 https://wiki.blablalinux.be/fr/optimisation-automatique-medias-nextcloud
Marre que votre trafic local fasse le tour du web ? En réécrivant vos domaines vers vos IP locales, vous décuplez vos performances.
Avec cette configuration, vos services (fichiers) s'ouvrent à la vitesse de votre réseau local sans dépendre de votre connexion internet. C'est la solution idéale pour garder des certificats HTTPS valides tout en restant en circuit court.
Simple, invisible et redoutable pour l'auto-hébergement !
#BlablaLinux #AdGuardHome #SelfHosted #SysAdmin #Nextcloud
Salut les Ops, est-ce que quelqu'un aurait des recommandations pour une formation k8s orientée ops, de qualité, idéalement gratuite ou pas trop chère (ou éligible CPF si ça existe) ?
En français ou en anglais peu m'importe.
J'ai quelques notions du produit, de ce qu'il fait, mais pas du tout de comment le configurer, l'administrer, ce à quoi il faut faire particulièrement attention, etc
Linux tip: Use “sed -n '100,200p' largefile.txt” to extract a specific line range of a log or text file.
🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/
Heads up for any folks using @hetzner: scammers seem to be trying to exploit the recent bump in pricing by sending "unpaid invoice notification" e-mails.
Easy to fall for it before morning coffee.
"Update Payment Method" link obviously leads to a scam site, so not particularly hard to spot either.
Be careful out there. 
P.S. yes I am aware of the shitty ways Hetzner treated a bunch of fedi instances; this is not a recommendation.
épisode 4 du TP #serveur #web Linux, édition 2026, spécial débutants en #sysadmin, aujourd'hui on cause de #conteneur #docker et de #reverseproxy tout de suite sur https://twitch.tv/ahp_nils #twitchfr #twitchstreamer #TwitchStreamers #debian #ubuntu #virtualisation #nginx
![[?]](https://gnulinux.social/system/accounts/avatars/109/296/430/358/252/790/original/802d457d03e9824c.jpg)
Haack's Networking - Creating a Production Pixelfed Instance
I've completed the write-up on the production PIxelfed instance. I am still a bit unclear on federation/discovery and whether my well-known is functioning correctly or not, but will update folks as soon as I know. Core features are working; if folks find issues, just let me know.
https://tech.haacksnetworking.org/2026/03/01/creating-a-production-pixelfed-instance/
https://wiki.haacksnetworking.org/doku.php?id=computing:pix3lfed
Happy Hacking!
#sysadmin #gnulinux #debian #pixelfed #floss #opensource #freesoftware #selfhosted
Alt...
pixelfed logo
New post: Neovim Crash Course for Sysadmins
Not a beginner's guide. This covers the things you still get wrong after years of Vim - efficient navigation, why your paste lands in the wrong place (and the one-key fix), YAML indentation workflows, quick macros, and what Neovim's LSP actually gives you for infrastructure work.
Written for people who edit configs and playbooks all day.
https://blog.hofstede.it/neovim-crash-course-for-sysadmins-the-20-that-solve-80-of-the-pain/
Haack's Networking - GNU/Linux Pics
The PIxelfed instance, GNU/Linux Pics, is now live and ready for beta testing. Do note that you will need to use the website for now as we are still waiting for our federation status and remote discovery to become active.
#sysadmin #pixelfed #gnulinux #freesoftware #floss #opensource #debian
Alt...
pubglug logo used for post about pubglug instance for pixelfed called gnulinux.pics
Quand tes scripts de purge font le job en silence (ou presque 🔔).
6 serveurs, 6 "OK", et un /var/log tout propre. Dormir tranquille, c’est aussi ça la magie du cluster ! 🐧✨
#Proxmox #SysAdmin #Gotify #SelfHosted
Haack's Networking
Setting up Pixelfed, if time Castopod ...
https://content.haacksnetworking.org/w/tgphVpivvkCqyUfWrmSRyp
Transparence totale : Mes utilisateurs n'ont rien senti passer (voir capture 2).
Modernité : PostgreSQL 15 géré proprement et Watchtower pour les mises à jour auto.
Scalabilité : Déploiement en un clic via Docker Compose.
Migrer 4000+ articles et une dizaine d'extensions sans perdre une miette de donnée, c'est ça le plaisir de l'auto-hébergement bien géré ! 🛠️✨
#SelfHosted #FreshRSS #Docker #Proxmox #SysAdmin #BlablaLinux #Databasus #Debian
👉 C'est par ici que ça se passe :
https://bytestash.blablalinux.be/public/snippets?search=OnlyOffice
#OnlyOffice #Docker #SelfHosted #BlablaLinux #LogicielLibre #SysAdmin
![[?]](https://masto.bike/system/accounts/avatars/109/298/328/498/155/315/original/70dbdf0cef9f4ef2.png)
Résultat ? Une instance v9.3.0-138 qui ronronne et un Nextcloud plus réactif que jamais ! 🐧🔥
Le Libre, c'est bien. Le Libre bien optimisé, c'est mieux.
#BlablaLinux #OnlyOffice #Docker #Proxmox #SelfHosted #Nextcloud #SysAdmin #OpenSource
![[?]](https://sfo3.digitaloceanspaces.com/veganism-space/accounts/avatars/114/185/579/477/936/283/original/43b7222fc3173645.png)
System Administration: Week 6: Networking II: A Simple Request
In this video, we trace a simple HTTP request made via telnet to find out just how exactly our application knows how to connect to the remote server. In the process we learn about the ktrace(1) utility, as well as the nsswitch.conf(5), hosts(5), and resolv.conf(5) configuration files.
![[?]](https://files.mastodon.social/accounts/avatars/000/199/851/original/21292f83459dd19d.png)
This Humble Bundle with 15 O'Reilly books on Linux, DevOps, containers, and security is wrapping up soon!
(partner link)
https://humblebundleinc.sjv.io/2RkPDg
Un petit coup de dpkg --configure -a plus tard pour remettre de l'ordre, et voilà une machine qui tourne comme une horloge sous Linux Mint 22.3.
C'est ça aussi le reconditionnement : savoir mettre les mains dans le terminal pour redonner ses lettres de noblesse au hardware ! 💪🇧🇪
#LinuxMint #Broadcom #SysAdmin #Reconditionnement #BlablaLinux #OpenSource #SoftwareLibre
![[?]](https://tootsmedia.dgplug.org/toots-dgplug/accounts/avatars/000/000/001/original/2448e664df394a97.png)
🇸🇪In a test #matrix / #element setup via containers when I am trying to make a call via "Element X" app I am getting "MISSING_MATRIX_RTC_FOCUS" error. Any tips? #devops #sysadmin
UPDATE: seems the initial problem was about firewall, now only one user from mobile can start a call, the other users on browser has the button grayed out.
FIXED: final missing part
```
"features": {
"feature_group_calls": true,
"feature_element_call_video_rooms": true
},
```
System Administration, Week 2: Storage Models and Disks
In this video, we'll introduce the larger topic of filesystems and storage. In particular, we'll discuss the conceptual storage models, such as Direct Attached Storage (DAS), Network Attached Storage (NAS), Storage Area Networks (SANs), and Cloud Storage.
System Administration, Week 2: Devices and Interfaces
This segment discusses common storage device interfaces, including SCSI, ATA, SSD, Fibre Channel, and hinting at storage configurations like JBOD and RAID, which we'll get back to in the next video. At this point, it feels a bit dated, and I may skip it going forward and perhaps expand more on enterprise storage, but then again, it's only 10 minutes of your time.
System Administration, Week 2: Storage Virtualization
In this video, we cover the concept of storage virtualization -- combining individual disks into larger storage pools and utilizing resources from such a pool. This includes a discussion of RAID and some of the different supported levels as well as Logical Volume Management (LVM). We further illustrate some of these properties by example of ZFS.
System Administration, Week 2: Physical Disk Structure
We'll take a quick look at what a hard disk drive actually looks like. This helps us understand addressing schemes such as CHS and LBA, what physical aspects affect hard disk performance, as well as partitioning requirements. While a lot of this is tied to old magentic-spinning-platters drives, it explains a lot of assumptions partitions and file systems make even if using SSDs.
System Administration, Week 2: Partitions
In this video, we talk about how to divide a single disk -- physical or virtual -- and how the partitions relate to the physical structure of the disk. We show examples partitioning disks on NetBSD, OmniOS, and Linux using the disklabel, fdisk, and format tools.
System Administration, Week 2: Moving EC2 Volumes
We've talked about EC2 Elastic Block Storage volumes, and how we can treat them as if they were hard drives plugged into an instance. In this video, we run through one of our recommended exercises for Week 2 and show how to move an EBS volume across instances and operating systems from a NetBSD EC2 instance to one running Ubuntu Linux.
System Administration, Week 3: The Boot Process & the MBR
In this video, we discuss the boot process on a high level as well as take a fairly detailed look at the MBR. We'll create a suitable NetBSD BIOS partition by hand, utilizing the dd(1) command because using fdisk(8) would be just too easy. In the process, we learn a fair bit about the structure of the boot sector.
System Administration: Week 3: File systems
In this video, we pretend to be a file system, trying to store all our cat photos in a reasonable manner on a raw disk. By manually writing data and metadata, we begin to understand what a file system has to do. We also show how the tar(1) utility creates output that very much resembles a filesystem format.
System Administration: Week 3: Files go hier(7)
In this video, we're wrapping up our discussion of filesystems and partitions with a look at file types and partitions and filesystems mounted by default on #NetBSD, #FreeBSD, #OmniOS, and Fedora Linux. We close with a look at the filesystem hierarchy as defined in the hier(7) manual page.
System Administration: Week 3: Resizing a file system
In these two videos, we show how to resize an existing filesystem. First on #NetBSD using the resize_ffs(8) tool, where we first increase the size of a 512MB partition to 1GB, then shrink it down to 256MB. Next we repeat the same exercise on #Debian Linux, using the resize2fs(8) tool.
System Administration: Week 4: Types of Software
With this video, we begin our Week 04 topic of "software": what types of software there are, how they fit together, how to install software, and how to manage dependencies. We try to draw a terrible analogy to - what else - cars, and quickly realize that the distinctions between firmware, operating system, system software, add-on software are difficult to make.
System Administration: Week 4: OS Installation
In this video, we perform a step-by-step manual installation of #NetBSD onto a virtual machine to illustrate the details of the process, including partitioning, boot loader installation, OS set extraction etc.
We also discuss planning of the OS installation by looking at data classification into shareable/non-shareable and static/variable data and think about how to scale this process.
System Administration: Week 4: Package Management
In this video, we continue our discussion of the difference and relationship between the operating system and so-called "add-on software". We conclude that in order to install and maintain all such software, we want to use a package manager, and illustrate common features by example of the 'dpkg', 'rpm', and #NetBSD's #pkgsrc tools.
Alt...
A diagram illustrating the relationship between OS, Package Management, and the different components: Add-on software, System Software, Applications/Utitlities/ Kernel/Firmware / Hardware
System Administration: Week 4: Package Management Pitfalls
In this video, we discuss some of the problems with package managers, native language packaging solutions, and the implications of their use on dependency resolution, package integrity, and trust. We revisit "left-pad" and "dependency confusion" to illustrate some of these problems.
System Administration: Week 5: Networking I: Layers
In this video, we begin our longer discussion on the topic of "networking". We're using tcpdump(8) to capture a single TCP SYN packet and start looking at the MAC and IP information, teasing out each individual byte. And don't worry, we dunk on the OSI stack model as needed and popular these days.
System Administration: Week 5: Networking I: IPv4 Basics & CIDR subnetting
In this video, we cover the basics of the 32-bit IPv4 address and how we organize networks using Classless Inter-Domain Routing or CIDR subnetting. (Don't worry, we'll get to #IPv6 in the next video.)
System Administration: Week 5: Networking I: IPv6 Basics
In this video, we get familiar with our Big Hero IPv6, looking at the structure of the IPv6 header and IPv6 address representations.
Since we're using AWS #EC2, remember that we have instructions for how to set up a dual-stack VPC and subnet to launch your instances in:
System Administration: Week 5: Networking I: IP Allocation & IPv4 Exhaustion
Mommy, where do IP addresses come from? In this video, we discuss how IANA allocates IP addresses to the Regional Internet Registries and try to illustrate just how large the #IPv6 address space is.
System Administration: Week 5: Networking I:The Physical Internet
In this video, we look at the physical structure of the internet, with a focus on submarine internet communications cables. Jumping from the bottom of the OSI stack all the way to Layer 9 ("political"), we then discuss how different countries use their political power to enforce internet blocks on their citizens, leading us to warrantless wiretapping in AT&T's room 641A.
System Administration: Week 5: Networking I: A Network of Networks
In this video, we look at how independent networks connect to one another, how Autonomous Systems numbers allow us to identify network operators, and how peering between independent ASs works.
Are disks with 512-byte physical sectors still a thing?
As 4k disks were first escaping, 512b disks were purported to have better performance for certain applications. I'm pretty sure that all new disks that claim 512b are actually 4k? #sysadmin
I'm thinking we don't need to discuss ashift in #openzfsmastery
They ask me for a quote for a large number of hours, for high-level support in a critical environment. I give them an extremely low quote (my mechanic charges much more in labor just to service my car).
They disappear. I ask for updates, and they reply that their budget for this job is less than half.
I wish them good luck with their search.
![[?]](https://lazybear.social/system/accounts/avatars/000/000/001/original/3462887fef61ddb1.png)
My dear #fediverse, does someone has a nice #ansible repo to setup an #EKS on aws? If I can avoid to start from scratch 😅
Avoir un HomeLab conséquent, c'est apprendre que le 'mieux' est souvent l'ennemi du 'bien'.
On ne change pas une solution qui tourne sans une analyse sérieuse.
Quand je chercherai à remplacer un outil, je vous le dirai explicitement.
D'ici là, on garde le cap sur la stabilité !
#BlablaLinux #SysAdmin
Entirely Foreseeable AWS Outages
https://rys.io/en/182.html
Once you strip away the marketing hype, agentic systems like Kiro AI are just automation tools.
The difference between Kiro and regular infrastructure management tools is that the latter are deterministic. They can be tested, analyzed, and bugs can be reliably, provably fixed.
That's just not the case with agentic tools. They are by their very nature non-deterministic. And that's the last thing a systems engineer should want.
Every now and then, I check up on https://solar.lowtechmagazine.com/about/the-solar-website/
This is a website that has managed to optimize itself to only contain 0.5mb of data per page (on average). They're running on a battery and solar power, without any mains connections, and maintain an impressive site uptime.
I would highly recommend giving their site a read.
Shout out to @rra as one of the contributors to the site, I can only apologize for not having the time to find Fedi handles for the other awesome contributors.