The Four Horsemen of the LLM Apocalypse https://anarc.at/blog/2026-05-16-four-horsemen #llm #analysis #sysadmin #copyleft #copyright #debian-planet #python-planet #internet #linux #security #kernel #software #vulnerability #free-software

Webmin is hardened & clustered w/ three total nodes, ns1, ns2, and ns3 etc. I will eventually add clustered nodes on two other locations so records are still served when one cluster's host is down.

https://tech.haacksnetworking.org/2025/12/29/authoritative-dns-w-bind-9/ feedback welcome.

Added larger tmp directory & source-IPd vhost so webmin won't lock. Obv, make sure you use static, dedicated, & fully hardened external IPs for permitted list.

#selfhosted #homelab #sysadmin #linux #dns #webmin #opensource #freesoftware #networking

Alt...

haack's networking business logo

I had found a very thorough server checker (e.g. TLS, DKIM, certificates, PFS, DMARC, you name it) here on the fedi at some point and thought I'd bookmarked it, but just can't find it anymore. Any recommendations from the sysadmin crowd?

#selfhosting #infosec #sysadmin

I describe myself as a #saltStack fanboi. But existence of this file https://github.com/saltstack/salt/blob/master/agents/docs/git-and-ci.md and especially the first point there, sounds like it's time to do that in past tense. Shame, it was an interesting project, with capabilities hardly anything else has.

#saltProject #salt #sysadmin #automation #NoAI

3 Uhr nachts, ich update mein Arch-System und denke: "Wird schon nichts kaputtgehen."

Spoiler: Es ging was kaputt.

Der Bootloader und ich haben jetzt eine gemeinsame Therapie gebucht. 🫠

Aber hey – immerhin habe ich gelernt, dass `journalctl -xb` mein bester Freund ist. Und Snapper-Snapshots vorher? Hätte. Hätte. Fahrradkette.

Macht Backups, Freunde. Nicht morgen. Jetzt.

#Linux #Arch #OpenSource #Sysadmin #Nachtschicht

This morning, something happened that brought me immense pleasure. A long-standing client called and asked if they could "bother" me. I replied that they weren't bothering me at all, and that I was "testing some new things". They immediately said, "Oh, I'll call you another time then".
Of course, they had my full and undivided attention from that moment on.

One of the challenging aspects of my work method is making people (not necessarily clients, but generally) understand that experimentation is more important than deployment itself. When they see me set up a server in a very short time (and it will stay up for years), it's not (just) because I use effective tools, but also because it's backed by research, errors, and successes. In a word: experience.

Sitting in front of my computer with two old APUs, therefore, isn't a pastime but one of the most critical parts of my testing. Dated and underperforming hardware necessitates optimization. When people grasp this, it's a true joy for me.

Now, if you'll excuse me, I need to go check how a signal penetrates concrete walls with three different access points placed in the same spot...

...And the fact that I enjoy all of this immensely is just an added bonus! 😆

#IT #SysAdmin #Work

Alt...

Two rectangular APU devices stacked on a worn desk. The top device is black and features a small white label on its top surface, with cables connected to its rear. Underneath it, a reddish-pink device is visible. In the background, out of focus, parts of other electronic equipment and cables can be seen, including a 20 years old pair of AKG headphones.

RE: https://mastodon.bsd.cafe/@stefano/114914266063275474

I'm now upgrading the FreeBSD inside the red APU. This will be moved to the office and keep the backups of the backups.

#IT #SysAdmin #ZFS #OwnYourData

Fred de CLX boosted

Stefano Marinelli » 🌐 2025-07-25
@stefano@mastodon.bsd.cafe

This morning, something happened that brought me immense pleasure. A long-standing client called and asked if they could "bother" me. I replied that they weren't bothering me at all, and that I was "testing some new things". They immediately said, "Oh, I'll call you another time then".
Of course, they had my full and undivided attention from that moment on.

One of the challenging aspects of my work method is making people (not necessarily clients, but generally) understand that experimentation is more important than deployment itself. When they see me set up a server in a very short time (and it will stay up for years), it's not (just) because I use effective tools, but also because it's backed by research, errors, and successes. In a word: experience.

Sitting in front of my computer with two old APUs, therefore, isn't a pastime but one of the most critical parts of my testing. Dated and underperforming hardware necessitates optimization. When people grasp this, it's a true joy for me.

Now, if you'll excuse me, I need to go check how a signal penetrates concrete walls with three different access points placed in the same spot...

...And the fact that I enjoy all of this immensely is just an added bonus! 😆

#IT #SysAdmin #Work

Alt...

Two rectangular APU devices stacked on a worn desk. The top device is black and features a small white label on its top surface, with cables connected to its rear. Underneath it, a reddish-pink device is visible. In the background, out of focus, parts of other electronic equipment and cables can be seen, including a 20 years old pair of AKG headphones.

"I need the full DevOps workflow to publish the site."

"It's a static site. Here are the SFTP credentials to upload the files you have, which were generated by the client's SSG."

"You don't understand. I need to upload the site; I need the DevOps procedure."

"No, you don't understand. It's generated by BSSG; all you have to do is upload the output via SFTP into the FreeBSD jail and the deploy is automatic."

Silence.

"But how does the deploy bot handle it?"

Silence.

The person who hired him (as an intern) gets on the line:
"Just humor him, the kid is sharp-he's really good with AI!"

I tell him we're talking about two completely different things.

He fires back: "If you can't keep up with him, I think you need to update your skills. That's what we're paying you for."

And that was that. I've decided that for 80 Euros a year - while providing a dedicated FreeBSD jail, over 100GB of hosting, backups, monitoring, and custom BSSG tweaks - they can definitely find someone more "up to date" elsewhere.

#TGIF #IT #SysAdmin #HorrorStories

"I need the full DevOps workflow to publish the site."

"It's a static site. Here are the SFTP credentials to upload the files you have, which were generated by the client's SSG."

"You don't understand. I need to upload the site; I need the DevOps procedure."

"No, you don't understand. It's generated by BSSG; all you have to do is upload the output via SFTP into the FreeBSD jail and the deploy is automatic."

Silence.

"But how does the deploy bot handle it?"

Silence.

The person who hired him (as an intern) gets on the line:
"Just humor him, the kid is sharp-he's really good with AI!"

I tell him we're talking about two completely different things.

He fires back: "If you can't keep up with him, I think you need to update your skills. That's what we're paying you for."

And that was that. I've decided that for 80 Euros a year - while providing a dedicated FreeBSD jail, over 100GB of hosting, backups, monitoring, and custom BSSG tweaks - they can definitely find someone more "up to date" elsewhere.

#TGIF #IT #SysAdmin #HorrorStories

Self-Host Weekly (15 May 2026)

More #Linux vulnerabilities, software updates and launches, a spotlight on #SnapOtter -- a browser #photo editing tool, and more in this week's #selfhosted recap!

https://selfh.st/weekly/2026-05-15

#selfhost #selfhosted #opensource #foss #homelab #devops #sysadmin #fediverse #privacy #newsletter #smarthome #gitlab #plex #bambulab #jdownloader #immich

One of the few #sysadmin things that worries me any more is updating boot code after a zpool upgrade. #FreeBSD

I'm sure it'll be fine, but if I disappear forever you know what happened.

A client asked for a server install for a specific CRM developed by one of Italy's biggest software houses. They’re dropping Windows Server 2022 support in a few months, even though the OS itself has a much longer lifecycle.

We looked into Linux support: Rocky Linux 9 and Ubuntu 24.04 are "certified", but only until April 2027. Since we'd rather not reinstall everything in less than a year, we asked for a path that guarantees official support beyond 2027.

The "support" team replied with a canned response, attaching a 2023 document where every single distribution is listed as EoL since 2025. 🤡

And then people ask me why these "software giants" are the primary cause of my receding hairline...

#SysAdmin #TechLife #EnterpriseSoftware #ITProblems #CRM #IT #OwnYourData

I've always loved the concept of caching.
I've always thought of it as an optimization, and all optimizations, especially when they're simple and effective, are welcome.

We don't need moaaar powaaaar.
We need moooaar caching!

#Caching #Optimizing #IT #SysAdmin

Une faille vieille de 18 ans dans Nginx, un PoC public, beaucoup de bruit… mais qui est vraiment concerné ?

https://cryptolab.re/posts/2026/nginx-rift-cve-2026-42945/

#nginx #linux #devops #sysadmin #cybersecurity

2.5 Admins 299: RMAggravation

People trying to return defective hard drives and RAM are finding out why consumer protection laws would be good, GoDaddy accidentally gave someone’s domain name away, and when and how to fix ZFS fragmentation.

https://2.5admins.com/2-5-admins-299/

#podcast #sysadmin

Alt...

2.5 Admins artwork

I'm on-call all week. Got paged this afternoon. I went back to my home office and started checking. Processed the problem.

In less than a minute, my wife is at the door, and she told me: I can hear from the music (you chose), that this incident will take a lot of time...

Me, realising, I changed from my mindfulness, calming fantasy music playlist to hardcore techno/dubstep once I read the ticket. 🙈

#Sysadmin #IT #oncall #incident

Fedora Hummingbird debuts as a rolling-release Linux OS shipped entirely as a bootable OCI image with atomic updates and rollback support. 🐦
It uses a hardened pipeline tracking Fedora Rawhide, provides per-package CVE monitoring, and targets developers and cloud-native workloads. 🔒

🔗 https://itsfoss.com/news/fedora-hummingbird-images/

#TechNews #Fedora #Linux #FedoraHummingbird #Hummingbird #OCI #OS #FOSS #Security #CVE #Atomic #Cloud #DeveloperTools #OpenSource #SysAdmin #DevOps

3 Uhr morgens, ich starre auf ein Bash-Script, das gestern noch funktioniert hat. Nichts wurde geändert. Niemand hat es angefasst. Es funktioniert einfach nicht mehr.

Das ist der Moment, in dem man versteht, warum frühe Informatiker an Geister geglaubt haben. 👻

`set -x` ist mein Beichtvater geworden.

#Linux #Bash #ItWorksOnMyMachine #OpenSource #Sysadmin

Linux 7.0.6 and 6.18.29 LTS patch the Dirty Frag local privilege flaw, fixing unsafe rxrpc decryption paths tied to CVE-2026-43500.
Fedora and Pop!_OS shipped fixes before release, reflecting rapid open-source patching and the need for timely user-controlled updates. 🔧

🔗 https://itsfoss.com/news/linux-fully-patches-dirty-frag-exploit/

#TechNews #Linux #DirtyFrag #Kernel #Fedora #PopOS #OpenSource #Cybersecurity #Privacy #Security #FOSS #SysAdmin #LTS #LinuxKernel #DirtyFrag #CopyFail #CVE #Fedora #PopOS #Ubuntu #Tech

Avis aux curieux du Labo !

Le prochain numéro de la newsletter "Le Labo Wiki" est sur les rails. Au programme : un pack "Power User" complet avec de l'IPv6 aux petits oignons, du GeoIP, du S3 et bien d'autres astuces pour une infra au top.

Surveillez votre boîte mail ce lundi 18 mai à 18h00 !

Pas encore abonné à cette liste ? C'est le moment de corriger ça pour ne rien rater des prochains dossiers techniques :
https://listmonk.blablalinux.be/subscription/form

#SelfHosted #SysAdmin #IPv6 #OpenSource #Newsletter

I've been hosting more of my own stuff over time, but keeping up with the maintenance manually has been proving to be too much. I remember 100 years ago as a sysadmin setting up an Ubuntu management server to manage the fleet of Ubuntu servers at work in the style of the Red Hat stuff that did the same. Now I run a variety of instances, and I don't know what kind of orchestration machine I would need to spin up to keep things like OPNsense, remote *nix hosts, etc. up to date. Any recommendations?

My goal is to use only FOSS whenever possible (leaning towards things on Starlight's NO AI list so I can avoid slopcode running in my network wherever possible.

#selfhosting #selfhosted #selfhost #askfedi #sysadmin #linuxadmin

New post: FreeBSD resource monitoring and accounting.

A practical tour of the base-system toolkit for figuring out *what is actually using my server*: top, vmstat, systat, gstat, netstat/sockstat, procstat, pfctl, and per-jail attribution with kern.racct and rctl.

No ports, no agents. Just FreeBSD.

https://blog.hofstede.it/freebsd-resource-monitoring-accounting-and-troubleshooting/

#FreeBSD #BSD #Jails #pf #SysAdmin #DevOps #Unix #BSD #Blog

Out of the #IdM / #SSO solutions I can #SelfHost that I remembered about, apparently only #KaniDM has ability to create app passwords / bearer tokens that actually allow to access only a single application 🤔

#Linux #SysAdmin #Privacy #Security #SelfHosting #homelab
@homelab

🚀 Neues Proxmox-Schlachtschiff in Vorberitung für Colo-Rack! 🛠️

🧠 2x Xeon E5-2697A v4 (64 Threads)
📟 1.5 TB DDR4 ECC RAM
🌐 2x10G SFP+
🔐 FDE via LUKS2/Argon2id + Remote SSH-Unlock
💾 Storage: Einzeln verschlüsselt
SSD: 2x 1TB (Btrfs RAID1)
HDD: 8x2TB (MDADM[RAID6]/BTRFS)

Konfiguriert mit proxmox-boot-tool & Dropbear für sicheren Remote-Betrieb.
RAID-Resync läuft, Admin geht schlafen. ☕️💤

#SysAdmin #Proxmox #Btrfs #Linux #Storage #Anoxinon

A Debian developer released a one-click .deb mitigation for the Copy Fail and Dirty Frag Linux kernel flaws affecting Debian-based distros 🐧
The temporary package applies command-line protections for Ubuntu, Mint, and Debian users while awaiting upstream kernel patches and security updates 🔐

🔗 https://fossforce.com/2026/05/a-simple-one-click-mitigation-for-copy-fail-and-dirty-frag-for-debian-ubuntu-mint-and-other-debian-based-distros/

#TechNews #Tech #Debian #Ubuntu #LinuxMint #Mint #Linux #Cybersecurity #OpenSource #FOSS #Kernel #Security #Privacy #SysAdmin #GNU #Infosec #Vulnerability #CopyFail #DirtyFrag

RE: https://poliversity.it/@devconf/116549350437622576

La DevConf sarà un evento davvero interessante, ricco di interventi stimolanti.

Il programma prevede argomenti a tutto tondo, con una particolare attenzione al Fediverse e alle tecnologie di comunicazione libera.

Personalmente presenterò #FediMeteo, raccontando come è nato, perché, come è fatto, a chi è rivolto, alla libertà dietro il progetto stesso. E ad una truffa.

Stay tuned!

https://devconf.it/2026/programma.html

#DevConf #DevConfItalia #IT #SysAdmin #Fediverso #Fediverse #OwnYourData

AodeRelay boosted

DevConf Italia » 🌐 2026-05-10
@devconf@poliversity.it

📢 Siete pronti per il DevConf Italia?

🚩 A Pavia, il 7 e 8 Luglio del 2026, presso il Learning Space Cravino in Via Agostino Bassi 2 si terrà il primo convegno nazionale, a cadenza biennale, denominato Dev. Conference Italia.
Verranno affrontati numerosi temi quali: sicurezza, sviluppo applicazioni, didattica, fediverso, libertà e sovranità digitali che potete trovare sul programma.

@devconf@citiverse.it

Venite a scoprire di cosa parleremo, vi aspettiamo numerosi!

https://devconf.it

Alt...

locandina ufficiale

Guten Morgen! ☕

Erinnerung an mich selbst: `rm -rf` ist kein Backup-Tool. Auch nicht um 7 Uhr. Auch nicht mit Kaffee.

Apropos: Wann habt ihr eigentlich das letzte Mal einen Restore getestet? Nicht das Backup – den Restore. Das ist nämlich der Teil, der zählt. Ein Backup, das man nie zurückspielt, ist nur ein teurer Datenfriedhof.

#Backup #Linux #OpenSource #SysAdmin

Dirty Frag vient de sortir : une nouvelle faille Linux permettant une élévation locale de privilèges jusqu’à root via le page cache, xfrm/ESP et RxRPC.

J’ai écrit un article pour expliquer :
- ce que fait la faille
- pourquoi elle rappelle Dirty Pipe
- quoi vérifier sur ses serveurs
- quelles mitigations appliquer

https://cryptolab.re/posts/2026/dirty-frag-linux-lpe/

#Linux #Security #Kernel #CVE #SysAdmin

Ubuntu 26.04 LTS est sortie, mais côté serveur ce n’est pas une simple mise à jour “nouvelle LTS, nouveau noyau”.

J’ai écrit un article orienté admins/VPS/homelab : support, OpenSSH 10.2, Chrony, paquets serveur, sécurité, GPU/IA, cloud, Livepatch et stratégie de migration depuis 24.04 LTS.

À lire avant de lancer un `do-release-upgrade` un peu trop confiant :

https://cryptolab.re/posts/2026/ubuntu-26-04-lts-resolute-raccoon/

#Ubuntu #Linux #SysAdmin #Homelab #OpenSource #Server #UbuntuServer

If you’re implementing a timezone selector after handling all continents, oceans, and pseudo-macro regions… don’t forget Büsingen am Hochrhein 😄 https://en.wikipedia.org/wiki/B%C3%BCsingen_am_Hochrhein

A tiny German town of fewer than 1,500 people, completely surrounded by Switzerland.

Fun historical timezone trivia:
Büsingen is associated with Europe/Zurich instead of Europe/Berlin.

Why? In 1980, West Germany introduced DST, but Switzerland initially did not. For a few months:

Germany was UTC+2
Switzerland stayed UTC+1
and Büsingen followed Swiss time to avoid daily chaos with the surrounding area.

That historical difference is still reflected in the tz database today.

#coding 👨‍💻 #timezone 🌐 #freebsd #unix #time 🕜 #sysadmin 🖥️ #germany 🇩🇪 #Berlin #Switzerland 🇨🇭 #Zurich

Alt...

Screenshot of a text utility showing the timezone selection for Germany. The dialog offers two choices: “most of Germany” and “Büsingen”, the small German enclave inside Switzerland that uses the Europe/Zurich timezone.

Here we go again: #dirtyfrag
https://github.com/V4bel/dirtyfrag

Mitigation:
sh -c "printf 'install esp4 /bin/false\ninstall esp6 /bin/false\ninstall rxrpc /bin/false\n' > /etc/modprobe.d/dirtyfrag.conf; rmmod esp4 esp6 rxrpc 2>/dev/null; echo 3 > /proc/sys/vm/drop_caches; true"

#linux #security

Happy Friday patch! #sysadmin

If anyone knows of any decent write-up on securing ZooKeeper / ClickHouse Keeper, I am very interested.

Documentation of both is really crap I find, and security seems to be a complete afterthought.

I would love to be proven wrong on that last bit.

#InfoSec #SysAdmin #ClickHouse #ZooKeeper

Monitor your devices with LibreNMS on FreeBSD

A guide on how to set up LibreNMS inside a FreeBSD jail.

https://it-notes.dragas.net/2026/05/07/monitor-your-services-with-librenms-on-freebsd/

#ITNotes #FreeBSD #Monitoring #Server #OwnYourData #Alerting #IT #SysAdmin #LibreNMS

(Edit to add: I am an idiot, this host was never pkgbasified, but leaving for the edification of others)

Weird #FreeBSD #pkgbase thing. #sysadmin

I updated my hosts from 14->15 with freebsd-update, then ran pkgbaseify and switched to pkgbase. No problem.

My jails & bhyves update, no problem.

# freebsd-version
15.0-RELEASE-p8

The bare metal install?

# freebsd-version
15.0-RELEASE-p4
# pkg upgrade -r FreeBSD-base
Updating FreeBSD-base repository catalogue...
FreeBSD-base repository is up to date.
FreeBSD-base is up to date.
Checking for upgrades (1 candidates): 100%
Processing candidates (1 candidates): 100%
Checking integrity... done (0 conflicting)
Your packages are up to date.

So it finds packages, but there's nothing to update? #headdesk

converted my #FreeBSD hosts to pkgbase, including some tiny VMs with 20GB disks. Why is are these disks full?

Well, /var/db/freebsd-update was ~7GB. #sysadmin

(Yes, most of my critical hosts are VMs on rented hardware, but these are offsite DNS and remote test nodes.)

@phocks Good luck!

Remember to practice the 3-2-1 backup strategy: 3 copies of your important data: 2 you can't decrypt, and 1 you cannot find.

#sysadmin

Here's a thought:

The fact that people are experiencing issues with DE sites and asking if CloudFlare is down speaks volumes about the stability of DE ccTLD and the broader DNS compared to big cloud providers.

#DNS #InfoSec #SysAdmin

DENIC's status page:
https://status.denic.de/

Screenshot below in case you're not able to load it (as I said, stuff is going to be intermittently failing).

#DNS #DENIC #DNSSEC #InfoSec #SysAdmin

Alt...

DNSSEC disruption affecting .de domainsPartial Service Disruption Incident Status Partial Service Disruption Components DNS Services DNS Nameservice May 5, 2026 23:28 CEST May 5, 2026 21:28 UTC INVESTIGATING Frankfurt am Main, 5 May 2026 – DENIC eG is currently experiencing a disruption in its DNS service for .de domains. As a result, all DNSSEC-signed .de domains are currently affected in their reachability. The root cause of the disruption has not yet been fully identified. DENIC’s technical teams are working intensively on analysis and on restoring stable operations as quickly as possible. Based on current information, users and operators of .de domains may experience impairments in domain resolution. Further updates will be provided as soon as reliable findings on the cause and recovery are available. DENIC asks all affected parties for their understanding. For further enquiries, DENIC can be contacted via the usual channels.

@tg I dont have that but have you checked this :

Find the better Hetzner server deals - https://github.com/clouedoc/hzfind

#sysadmin

How to find the type of a #SSH key

#tips #sysadmin
https://lazybea.rs/notes/find-the-type-of-a-ssh-key

bref prochain incident de prod prévu demain à 9:00 pour un autre client (ou pas, on verra bien).
#sysadmin

Episode 27 of our technology podcast @RuntimeArguments (http://RuntimeArguments.fm) is up — "SSH and how we got here".

Jim @jammcq walks through SSH's three-decade arc — Tatu Ylönen's 1995 response to a campus password-sniffing attack, OpenSSH a few years later, and what's stayed essentially the same ever since — while Wolf @YesJustWolf pokes at what SSH actually does beyond remote login (file copy, secure tunnels, even X forwarding). They climb the authentication ladder from passwords to public keys to hardware-backed enclaves to certificates, with practical advice along the way: use ED25519, put passphrases on your keys, set the right file permissions, and turn off password auth.

As always, we want to know what you think:

feedback@RuntimeArguments.fm

https://www.buzzsprout.com/2469780/episodes/19106065

#SSH #OpenSSH #Cryptography #Security #DevOps #SysAdmin #Linux #ED25519 #Tailscale #Mosh #Podcast #TechPodcast

• j'ai réussi à ne pas me mettre sur mon pc le 1er mai (j'ai craqué le 2 au soir...)
• le jardin avance bien,sauf mes plans de tomates qui ne prennent vraiment pas... il me reste des graines, je vais retenter.

• j'ai installé #postfixadmin sur mon #homelab et j'en suis plutôt content, pas de fonctionnalité manquantes... reste que côté sécurité c'est peut etre pas top de laisser ca accessible directement sur internet ( ca sens le mot passe supplémentaire en .httpacces en dehors de la maison).

le champ des possibles est infini (ou presque)

Bon dimanche, prennez soin de vous et aujourd'hui surtout : faites vous plaisir !

#3GoodThings #3PetitsBonheur #sysadmin

Si vous êtes à Marseille ou proche le vendredi 5 juin, je vous invite à la soirée spéciale Proxmox de @plugfr : https://plugfr.org/reunions/5-juin-2026/
#Proxmox #Debian #Linux #sysadmin

RE: https://floss.social/@mikebabcock/116284712899761792

find is the razor blade of shell tools. You'll make the finest, easiest cuts eventually. But the way to get there is a series of painful nicks.
#sysadmin

Michael T Babcock [https://en.pronouns.page/@bigntallmike] » 🌐 2026-03-24 / 2026-03-24
@mikebabcock@floss.social

One of the most powerful commands on your #linux system is 'find' ... and one of the most annoying commands on your system is also find.

Do you need to use -and between parameters?

Did you specify the right #regex type before -regex search? And "./"?

Can you remember the before and after date syntax?

If you want to do something to a certain subset of files, find is probably the right way. And you'll spend fifteen minutes fixing the command-line before getting it right.

#rant #sysadmin #tips

Fresh gist: mitigating CVE-2026-31431 ("Copy Fail") on RHEL 8/9/10 with a tiny Ansible playbook.

It blacklists algif_aead via a kernel boot arg (initcall_blacklist=algif_aead_init), reboots only when needed, and asserts the mitigation actually stuck after reboot. Idempotent & safe to re-run.

https://codeberg.org/Larvitz/gists/src/branch/main/2026/20260501-CVE-2026-31431_RHEL_Mitigation.md

#Ansible #RHEL #Linux #InfoSec #SysAdmin #DevOps #CVE #CVE_2026_31431 #copyfail

🚨 Alerte Sécurité Linux ! La faille "Copy Fail" (CVE-2026-31431) permet de devenir root sur presque toutes les distribs depuis 2017 😱

C'est invisible et redoutable pour vos conteneurs ! Découvrez tout ce qu'il faut savoir et comment patcher ici : 👇

#Linux #CyberSec #CopyFail #SysAdmin

https://blablalinux.be/b/4S1?utm_source=mastodon&utm_medium=jetpack_social

Fresh gist: mitigating CVE-2026-31431 ("Copy Fail") on RHEL 8/9/10 with a tiny Ansible playbook.

It blacklists algif_aead via a kernel boot arg (initcall_blacklist=algif_aead_init), reboots only when needed, and asserts the mitigation actually stuck after reboot. Idempotent & safe to re-run.

https://codeberg.org/Larvitz/gists/src/branch/main/2026/20260501-CVE-2026-31431_RHEL_Mitigation.md

#Ansible #RHEL #Linux #InfoSec #SysAdmin #DevOps #CVE #CVE_2026_31431 #copyfail

🐧 Base solide : Le système passe sur Debian 13.4 (Trixie) avec un Kernel Linux 7.0 et ZFS 2.4.

Une version qui mise sur la flexibilité et la performance pour nos infrastructures !

👉 Tous les détails ici : https://www.proxmox.com/en/about/company-details/press-releases/proxmox-backup-server-4-2

#Proxmox #PBS #Backup #SysAdmin #OpenSource #Linux #Debian #CloudStorage

what do you mean "404 file not found" it's right freaking there! :flan_headdesk:

#sysadmin

Me: I could just add more HTTP redirects to redirect the redirects to the redirected--

Also me: You're an idiot. You know that, don't you? One redirect at most, you dumbass. #sysadmin

Let's talk CLI/TUI and Developer Workflows!

I’m looking to refresh my local toolkit and I’m curious: what are the absolute "must-have" CLI or TUI programs in your current rotation?

Whether it's a specialized utility for a specific language, a terminal-based interface for a common service, or a workflow-changing alias, I want to hear about it. I’m especially interested in tools that prioritize keyboard-driven navigation and accessibility.

My Current Favorites:

To get the ball rolling, here are a few tools I’ve been leaning on lately:

• uv — Fast, reliable Python package and project management.
• fzf & ripgrep — The classic duo for fuzzy finding and searching.
• tmux — For session management and persistent terminal workspaces.
• jq / yq — Essential for wrangling JSON and YAML without leaving the prompt.

What about you?

1. What is one tool you've discovered recently that you can't live without?
2. Are there any TUI-based clients for web services (like Mastodon, GitHub, or RSS) that you recommend?
3. Do you have a favorite "hidden gem" script or small utility?

Mentions & Groups

@programming
@linux @terminal_u_i@lemmy.ml @selfhosted

Hashtags

#CLI #TUI #Terminal #OpenSource #FOSS #Programming #DevTools #Linux #SysAdmin #Workflow #Python #Backend #ArchLinux #KeyboardDriven #Accessibility #SoftwareDevelopment #TechTalk

RE: https://glammr.us/@platypus/116477665536937182

I hate to say I told you so -- no.

wait.

Truth is, I LOVE to say "I told you so," but I'm so damn tired of it.

A glorious example of why you shouldn't trust AI. #sysadmin

Ruth [☕️ 👩🏻‍💻📚✍🏻🧵🪡🍵] » 🌐 2026-04-27 / 2026-04-27
@platypus@glammr.us

Reading this whole "My AI agent deleted prod and it's everybody's fault but mine" post -- it's on X but public and worth reading for knowing this incident. https://x.com/lifeof_jer/status/2048103471019434248

(it's also a longform post vs. a thread, so easy to read)

looks like my old Intel Mac Air that I bought only for Vellum is about to become my main laptop. Which raises the most vital #sysadmin question when deploying a new laptop: sticker selection and placement.

Alt...

mac air with an assortment of stickers, including various flan emojis, a racoon with a knife saying STAY SAFE STAB HARD, bsd.network, RUN BSD, and a hackers.town puffy. Plus the obligatory THIS MACHINE HACKS FASCISTS.

https://mos-official.net/

#Linux #SysAdmin

RT: https://social.retroedge.tech/objects/1cd82a79-e198-4076-b00d-18cc27cb264d

Opération vide-greniers sur Proxmox ! 🧹
On fait de la place pour de nouveaux projets. Adieu les VMs qui dorment, on ne garde que le meilleur ! 💪
#Linux #Proxmox #SysAdmin #ProxCenter

3rd Party Provider for a mutual client got in touch regarding setting up a feature in a system they support

Them: "We can't get this configured, could you take a look?"
Me: takes look, gets same error, reads the documentation of the software product, finds out why, enable required settings "I was getting the same error, but then I read the documentation and we need to set these options..."
Them: "Oh, that's a nice find!"

It's effectively their documentation! They are the support provider for the product! IT WAS NOT A NICE FIND, IT WAS WRITTEN RIGHT THERE IN SIMPLE WORDS

#SysAdmin #RTFM

Quand l'interface décide de faire grève... 😅 J'ai repéré un petit souci de chargement des contrôleurs JavaScript sur la dernière version de Password Pusher. L'issue est postée, plus qu'à attendre le fix des dev ! 🚀
#SysAdmin #Docker #OpenSource #DevLife #PwPush

Wusstest du, dass `find` und `xargs` zusammen echte Superkräfte entfalten?

find . -name "*.log" -mtime +30 | xargs rm -f

Löscht alle Logfiles älter als 30 Tage. Einmal als Cronjob eingerichtet und du denkst nie wieder dran. 🧹✨

Kleiner Tipp: erst mit `echo` testen, bevor du `rm` unleashed. Vertrauen ist gut, Terminal ist besser. 😅

#Linux #Bash #SysAdmin #FreieSoftware #CLI

I've used RustDesk to connect remotely to Uncle's computer to help him with stuff ever since TeamViewer enshittified.
I've been using the public RustDesk server, whose performance has gotten progressively worse. As performance has worsened they've been more and more aggressively begging people to self-host their own servers. So today I decided to do that.
#homelab #tailscale #rustdesk #synology #sysadmin (1/5)

Haack's Networking

Tolerating Cockpit on Debian

https://tech.haacksnetworking.org/2026/04/21/tolerating-cockpit-on-debian/

It began with tolerance and ended with adoption. Enclosed, please find my recipe for self-hosting Cockpit securely and conveniently !!

#selfhosting #sysadmin #linux #opensource #freesoftware #floss #debian #cockpit

Alt...

Debian logo, ty to Debian project

@CachyOS  Kernel-Update: Erfolgreich! ✅

Das System schnurrt wieder. Nichts geht über das Gefühl, wenn nach dem Reboot alles glattläuft. 🐧💻

Gabe es bei euch Probleme?

#Linux #Kernel #Update #SysAdmin #Tech #SelfHosted

Alt...

Fastfetch Auszug

Kleiner Reminder: `history | grep sudo` zeigt dir alle Befehle, bei denen du Root-Rechte hattest. Manchmal erschreckend, manchmal amüsant, immer lehrreich. 😅

Und falls da `sudo rm -rf` auftaucht – keine Sorge, du lebst noch, also hat's wohl geklappt.

#Linux #Terminal #Tipp #FreieSoftware #SysAdmin

Mein neuer bester Freund im Terminal? Die KI! 🐧💻

Ich muss es einfach mal sagen: Bei der Einrichtung und im Terminal hilft mir KI aktuell extrem weiter. Komplexe Befehle verstehen, Configs anpassen oder einfach mal nachfragen "Was macht dieser Flag eigentlich?" – das spart unglaublich viel Zeit und Nerven.

Aber Hand aufs Herz: Ein gewisses Grundverständnis bleibt Pflicht. Man darf nicht jeder Config und jedem Befehl blind trauen, denn unfehlbar ist die Technik leider noch nicht. Wer den Output versteht und kurz gegenprüft, hat aber das ultimative Power-Tool an der Hand. 🛠️

Nutzt ihr KI auch schon als „Live-Support“ direkt in der Konsole oder tippt ihr noch alles klassisch?

#Linux #Terminal #KI #TechSupport #OpenSource #SysAdmin #LinuxTips #Bash #ArtificialIntelligence #Produktivität

@blackoutvpn ... this is why I use disconnect and pihole. Every time I use a VPN that VPN knows everything about me too.

#VPN #privacy #security #sysadmin

Was mache ich eigentlich…?

cicero-point.net ist seit mehr als 25 Jahren auf die Wünsche der Kunden orientiert. Ich plane, installiere und betreue heterogene Netzwerke, setze dabei #opensource und vorrangig europäische Produkte ein.

Ich sehe mich als Systemanbieter für meine Kunden und biete somit alles, was zum digitalen arbeiten benötigt wird. Angefangen mit der Planung, Installation und Konfiguration, sowie den Betrieb vom #Netzwerk, bis hin zu Serveranlagen, Massenspeicher, Sicherungen, Drucker und der Telefonie.

Meldet sich ein Interessent bei mir, nehme ich mir Zeit. Schaue an, was er macht und was benutzt wird. Führe ein ausführliches Gespräch, um zu erfahren wo der Schuh drückt und wo der Weg hin führen soll. Das ist für mich wichtig, denn ich muß das Geschäftsmodell verstehen, um die richtigen Lösungen zu finden.

Kunden sollte. ein Recht auf Kontrolle haben. Über ihre Daten, Prozesse und die Funktion Ihres Netzwerkes. Datensicherung, Ausfallszenarien und Kapazitäten müssen stimmen. Das sehe ich als meine Verantwortung unseren Kunden gegenüber. Deswegen verkaufe ich nicht nur Hardware, sondern erstelle zusammen mit meinen Kunden Lösungen, die skalierbar, leistungsfähig und bezahlbar sind. Da ich für kleinere Firmen arbeite, bewege ich mich sehr bewußt im Bereich #opensource. Zusammen mit europäischen Produkten entstehen Netzwerke, Serveranlagen und Arbeitsumgebungen die unsere Kunden befähigen effizient zu arbeiten.

Netzwerke installiere ich mit #MikroTik Geräten. Als Firewall, Struktur-, Stockwerk-Switch oder WLAN-Accesspoint, jedes Gerät hat die selbe Bedienoberfläche, ist in den System-Funktionen erweiterbar, oder durch Schnittstellen extern ansprechbar. So sichere ich automatisiert Konfigurationen, oder führe Updates aus.

Server, ob lokal in der eigenen Unternehmung, oder auch in entfernten Rechenzentren, sollen so optimal wie möglich genutzt werden – dazu dienen Plattformen wie #Proxmox. Man kann so nicht nur mehrere Server auf der selben Hardware betreiben, sondern nutzt die Fähigkeiten der Plattform für zusätzliche Sicherheit, ohne sofort ein größeres Investment tätigen zu müssen.

Ein wichtiger Punkt, #opensource. Community Versionen bieten die Möglichkeit, Plattformen intensiv auf Funktionalität zu überprüfen. Wenn die Lösung zur Unternehmung passt, kann diese in das Produktivsystem übernommen, oder durch einen Lizenzkauf in eine Enterprise Version überführt werden – all das sind legitime Lösungsansätze. Ich sehe mich als Partner meiner Kunden. Egal ob es um Diskussionen geht, oder Projekte geplant und umgesetzt werden sollen.

cicero-point.net versteht sich als Partner. Das macht mich zu einem, vielleicht nicht fehlerfreien, aber dennoch interessanten Sparringspartner. Interesse? Dann nehmen Sie doch einfach Kontakt auf…

#neuhier #linux #opnsense #ucs #mediawiki #vaultwarden #zabbix #archiware #wireguard #docker #truenas #it #itsicherheit #sysadmin #digitalesouveranitat

Also, if you run your #Ansible with --check, don't forget to run it without!

#SysAdmin

Heute mal wieder stundenlang ein Open-Source-Tool konfiguriert, das eigentlich "einfach funktionieren" sollte. Aber weißt du was? Ich hab dabei mehr gelernt als in jedem Tutorial. 🔧

Das ist irgendwie das Schöne daran: Der Weg durch die Config-Hölle IST die Dokumentation.

(Der Kaffee war trotzdem alle.) ☕

#OpenSource #Linux #SysAdmin #LearnInPublic

PSA: Please don't forget your `--fail` option to #curl when developing scripts and cron jobs.

#SysAdmin

That feeling...
You go into office room, pointing at one of network sockets on the wall and say to coworkers: Don't use this one, I am doing tests here. I reprogrammed this one to use other network.
Like you are some dark wizard with arcane powers to change fabric of reality... Or you hacked the simulation

#admin #sysadmin #it

A punchline by @mwl again :)
sanity and self-respect - gregR ☯ - /usr/share/images
https://images.gregr.fr/2023-04-06-sanity-and-self-respect.html
#dns #sysadmin

Question to the #mail-admins here who have multiple servers and use #DANE. Let‘s say I have multiple servers and each server creates a wildcard-certificate for the same domain via Let‘s Encrypt. How are those TLSA-records handled? Or do you need a central certificate that gets distributed over all servers with a single TLSA-record? #email #unix #linux #bsd #sysadmin

The big problem with my hip keyboard is that I have to reach up and away to touch the mouse. Annoying.

Solution? My mouse rings have finally arrived.

#sysadmin nerd diagnosis: terminal.

(ETA: https://proloring.com/ -- not yet recommending because I haven't yet played with them much, but folks are asking so there you go.)

Alt...

my hands at my desk, over my hip-level split keyboard. I'm wearing a chonky electronic ring on each index finger.

Lazyweb ( #sysadmin version), if you were to get a small scale external KVM over IP solution that also supported virtual media, do you have any particular views on what you'd get? We're looking at offsite machines we're going to need to reinstall someday with new OSes and that don't have good BMCs. One machine, 8 machines, it's all good if it has KVM over IP + virtual media.

(Yes yes PXE etc, that's more troublesome and challenging than using our existing install media remotely.)

Two nights ago I had a nightmare where I run an Ansible playbook that at some point rebooted network devices, without telling it which machine to apply to, so it run it on all of them, and there was no way to stop it.

Do you have failsafes in your tools for such cases?

#SysAdmin #networking

Adam Savage learning about how evil #USB devices can be is a fantastic thing to watch.
https://youtu.be/OpcuqePIL7k

#security #cybersecurity #sysadmin

Le partage et l'open source, c'est ça qui compte ! 🐧

#Linux #OpenSource #SysAdmin #CronMaster #BlablaLinux #Traduction

🚀 Mise à jour pour CronMaster sur mon ByteStash !

J'ai optimisé le déploiement Docker pour plus de sécurité et de robustesse :
✅ Ajout d'un Healthcheck pour surveiller la disponibilité du service.
✅ Documentation plus précise pour la variable HOST_CRONTAB_USER (la gestion des utilisateurs cron n'aura plus de secrets pour vous).

Retrouvez le snippet complet et mis à jour ici :
👉 https://bytestash.blablalinux.be/s/a3a7439fb75fe126d1df250da5ee5c88

Bon déploiement à tous ! 🐧

#Linux #OpenSource #SysAdmin #CronMaster #BlablaLinux #Docker

The BSDCan 2026 schedule has been published, https://www.bsdcan.org/2026/timetable/timetable-all.html

You can register for the conference, which runs June 17 - 20, 2026 at https://www.bsdcan.org/2026/registration.html @bsdcan #bsdcan #ottawa #freebsd #netbsd #openbsd #development #sysadmin #devops #libresoftware #freesoftware

J'ai publié le snippet complet et prêt à l'emploi sur mon ByteStash :
👉 https://bytestash.blablalinux.be/s/a3a7439fb75fe126d1df250da5ee5c88

Bon déploiement à tous ! 🐧

#Linux #OpenSource #SysAdmin #CronMaster #BlablaLinux

Latest quarterly FreeBSD package upgrade broke my Nextcloud 😮‍💨

Post mortem: The new version of php85-pdo_pgsql is now compiled against PostgreSQL 18, not 17. So pkg upgrade removed postgresql17-server, leaving Nextcloud dysfunctional without a database.

Solution:
- Reinstalled postgresql17-server
- Dumped the db with pg_dump
- Installed postgresql18-server & php85-pdo_pgsql
- Copied over pg_hba.conf & postgresql.conf
- Created empty db/user in PG18
- Imported the db dump
- Ran occ maintenance:data-fingerprint

Restarted php-fpm & nginx

All fine again. But that was unpleasant 🙂

#SysAdmin #SelfHosted #FreeBSD #Nextcloud #Postgresql

Would you pay for a web browser?

#web #technology #programming #askfedi #chrome #firefox #brave #sysadmin #windows #linux #apple #browser #privacy

RE: https://mastodon.bsd.cafe/@stefano/116396058506070034

Sometimes I start "battles" to convince "vibe coding devs" to actually learn something. Sometimes I succeed (especially with the younger ones), other times I don't (especially with the less young ones, who became devs precisely "thanks" to vibe coding).

What holds them back is often practical: they say things move so fast that stopping to learn something means "wasting time", since whatever they learn will be outdated very quickly anyway.

Maybe we've moved too fast and we're still moving too fast. I'm seeing worrying things, like stable projects implemented in Go that are "using AI" to progressively rewrite everything in Rust. Why?

Still, the fact remains that at least the basics should be there. To drive a car, even with semi-autonomous driving systems, you still need a license. So why isn't this considered necessary when writing the code for the system that will handle my sensitive data? Not a license, clearly. But, at least, some basic knowledge.

#Programming #IT #SysAdmin

Tykayn boosted

Stefano Marinelli » 🌐 2026-04-13
@stefano@mastodon.bsd.cafe

My week starts with a request: "I need a server to deploy to production, but the devs have no idea how to do it. They don't know how to use the terminal, they don’t know how to handle certificates, nothing. They need to be able to click a few buttons and deploy directly to production. They're Vibe Coding experts."

Welcome to 2026.

#SysAdmin #IT

My week starts with a request: "I need a server to deploy to production, but the devs have no idea how to do it. They don't know how to use the terminal, they don’t know how to handle certificates, nothing. They need to be able to click a few buttons and deploy directly to production. They're Vibe Coding experts."

Welcome to 2026.

#SysAdmin #IT

I was inspired by @gumnos ' blog post back in November that I posted one of my own. Took 4 months but I've posted it!

My Journey to the BSDs:

https://pertho.net/2026/04/11/my-journey-to-the-bsds/

#FreeBSD #OpenBSD #Linux #Sysadmin

In the world of BSD conferendes, BSDCan 2026 https://bsdcan.org is next, on June 17-20 in Ottawa, Canada.

Read more about the BSD conferences in "What is BSD? Come to a conference to find out!" https://nxdomain.no/~peter/what_is_bsd_come_to_a_conference_to_find_out.html #netbsd #openbsd #freebsd #conference #freesoftware #libresoftware #development #networking #sysadmin

RE: https://mstdn.io/@fitheach/101992283199701916

I do love it when people find, and favourite/boost, my posts from years ago. For some reason my post from 2019 about the "ultimate cheat sheet" suddenly got some love.

As far as I can tell, the cheat sheet has been continuously updated, and is still relevant.

Check it out!

#Linux #UNIX #CheatSheet #FOSS #FLOSS #SysAdmin

🚀 Domptez le stockage S3 en ligne de commande !

Marre de passer par une interface web pour gérer vos buckets ? Je viens de vous pondre un petit guide sur le wiki pour configurer le client MinIO (mc) sur Debian. 🐧

C’est simple, c’est rapide et ça change la vie pour vos scripts de sauvegarde !

👉 https://wiki.blablalinux.be/fr/configurer-client-minio-mc-debian

Retrouvez l'ensemble de mes services sur https://blablalinux.be/mes-services-publics/

#Linux #MinIO #SysAdmin #Debian #OpenSource #BlablaLinux

Anyone here could #help me on understanding why my new #Shaarli is always asking me to log in (like after a few hours) ?
I don’t know where to start…

edit : My Shaarli is behind Caddy with PHP-FPM, could this be linked ?

#sysadmin #server #configuration

TIL

* GNU `tar` has options `--strip-components` and `--transform` to manipulate the resulting filenames.

Edit: it's a GNU extension.

#SysAdmin

current state of the ship at https://arcanechat.me

the system is working completely without pressure to accommodate the by now +13k passengers

only 22% of RAM used
only 9% of disk used
very low CPU used

#selfhosting #sysadmin #opensource #decentralization #digitalindependence #diday #privacy #encryption #sovereignty #european #europe #ArcaneChat #DeltaChat

Linux tip: Use the “setgid” mode bit on shared directories: “chmod g+s /shared/project”. New files will inherit group ownership, which prevents permission chaos between users.

🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/

#Linux #SystemAdministration #SysAdmin

Have you been wondering about ZFS AnyRAID? Allan Jude will be giving a talk about Flexible Disk Layout @ BSDCan

If you register before May 1, the closing reception is free!

Register at https://www.bsdcan.org/2026/registration.html

#bsdcan #conference #bsd #unix #development #freebsd #netbsd #openbsd
#sysadmin #devops

😂 A friend of mine (who's been consulting for way longer than me) got hit with a holy-trinity of demands from a potential client this week.

1. They approached her for a website for their business.
2. They won't do down-payments (start for free).
3. They want complete copyright ownership of code from day one and she works on their org's github pushing code (IP ownership before payment).
4. They quoted her last year's currency conversion rates when she said USD.
5. They won't allow her to showcase the final public facing website on her portfolio.
6. No deemed acceptance clause.

That's got to be a record right? 😭

#consultants #softwareengineering #freelance #sysadmin #askfedi #technology #commission #programming #linux #academia #capitalism

BREAKING: reportedly a baby was sighted successfully self-hosting a #chatmail relay after accidentally typing on the keyboard of unsupervised parent's laptop

#selfhosting #selfhost #decentralization #email #chatting #chat #encryption #security #security #humor #joke #meme #comedy #programmer_humor #sysAdmin

Personnellement je n'ai pas cherché d'usage (j'ai essayé de lui faire écrire une PSSI un soir de désespoir... ca n'a pas été concluant)

#askfedi

Pretty much every day my Nextcloud server reminds me that I am lacking of a High-performance Backend.

Good job I didn't hit my teens in the late 1960s/early 1970s with a daily diet of Carry On films and 'saucy sitcoms', loaded with innuendos and double entendres...

Oh... I did... 😂

#SysAdmin #comedy

Linux sysadmin question (since it's no longer possible to find actual answers via search on the Internet):

How can I configure the PATH to *always* have a specific directory in it when a shell (Bash) is started, regardless of whether the shell is login/non-login, interactive/non-interactive, etc.?

The normal steps (adding a file in /etc/profile.d which adds to the path) work for login/interactive shells, but not for shells opened by sshd with a command to execute (no pty).

#Linux #SysAdmin #LinuxSysAdmin

Why is #htop showing swap usage in two colors?

#SysAdmin #Linux

Alt...

Upper left corner of htop's UI. Shows 4 CPUs, memory and swap gauges. Swap reads 16.8G/48G, but the bar shows some in red and some in brown, the rest (unused) not shown/in black.

Running Podman in production for years now, and I don't miss the Docker daemon one bit.

I just published a deep dive on managing OCI containers the Unix way: daemonless, rootless, and natively integrated with systemd via Quadlets.

I cover:
- Real secrets management
- Auto-updates via systemd timers
- The Docker compatibility layer

This is the guide I wish I had when making the switch.

Read it here: https://blog.hofstede.it/podman-in-production-quadlets-secrets-auto-updates-and-docker-compatibility/

#Podman #Linux #DevOps #Systemd #Homelab #Sysadmin #Containers

2️⃣ Le "Matrix by BlablaLinux" : Mon portail de liens a subi une mise à jour binaire. Une pluie de caractères alphanumériques et Katakana, aux couleurs de mes services et à vitesses variables !
👉 https://link.blablalinux.be

Alors, tu prends la pilule rouge ou la pilule bleue ? 🐧✨

#BlablaLinux #Matrix #SysAdmin #Nginx #WebDesign #AutoHebergement #Proxmox #OpenSource

The Defenestrated Edition has broken another stretch goal! Backers get a free copy of "Dear Abyss" immediately upon backing. Plus, I have to film me defenestrating the books and make the TWP documentation public.

Give your favorite Windows-hating #sysadmin the gift of knowledge while maintaining their open source purity.

https://mwl.io/ks

EuroBSDcon 2026's call for papers is open, see https://2026.eurobsdcon.org/cfp/

Here is a direct link to the submissions form https://events.eurobsdcon.org/2026/submit/ew426G/info/

@eurobsdcon #eurobsdcon #openbsd #netbsd #freebsd #conference #development #devops #sysadmin #freesoftware #libresoftware

With #openbsd 7.9 now in beta and the release expected to hit in a few weeks' time, "You Have Installed OpenBSD. Now For The Daily Tasks." https://nxdomain.no/~peter/openbsd_installed_now_for_the_daily_tasks.html may be due for a re-read. (And minor updates to come, certainly)

#openbsd #development #devops #sysadmin #freesoftware #libresoftware

NodeJS, for all the brilliant projects out there leaning on it, has a supply chain that might as well run the length of a dark alley permanently at 2am in the club district.

https://thehackernews.com/2026/03/axios-supply-chain-attack-pushes-cross.html

Anyway, hope none of you good people are affected by this latest pox

#infosec #sysadmin

Tonight, 22:45 UTC, I'm talking at NYCBUG. "What's Changed Since I Came This Way: A Talk that was supposed to be about #OpenZFS" #sysadmin #freebsd

In meatspace in New York City, and streamed online. https://www.nycbug.org/

Kleiner Reminder: `history | grep sudo` zeigt dir all die mutigen Entscheidungen von gestern Nacht. 🙈

Manchmal ist das beste Backup nicht die Datensicherung, sondern das Wissen, wann man `man` aufrufen sollte *bevor* man einen Befehl ausführt.

Lernt aus meinen Fehlern. Oder macht sie selbst. Ist auch eine valide Lernstrategie. 😅

#Linux #CLI #Sysadmin #FreieSoftware #LearnByDoing

It funded in 15 minutes?

Look. You people didn't read the description. This isn't SUPPOSED to fund well. This silly thing exists entirely so I can train my new helper.

If y'all support the Defenestrated Edition, you will make my life difficult. #sysadmin

https://mwl.io/ks

2️⃣ Gestion à distance : allumez (WOL), éteignez ou redémarrez vos serveurs sans quitter votre canapé. Idéal pour votre facture d'électricité ! ⚡
👉 https://wiki.blablalinux.be/fr/gestion-alimentation-distance-proxmox-wol

À vos terminaux, et vive l'automatisation ! 🐧💻

#Proxmox #SysAdmin #Linux #OpenSource #BlablaLinux #AutoHost

oMailgw 1.0, un outil libre pour superviser des passerelles SMTP sortantes mutualisées
https://linuxfr.org/users/kepon85/journaux/omailgw-1-0-un-outil-libre-pour-superviser-des-passerelles-smtp-sortantes-mutualisees
#sysadmin #email

Haha, wenn #Cowsay installiert ist, integriert es #Ansible automatisch. Liebs. #sysadmin #linux #tweak #schicksalsjahreeineskaisers

@fdroidorg how about you do some responsible journalism and read the part where Google won't stop you from side-loading whatever you want so long as you jump through a couple hoops to make sure you're not being coerced by a third party?
Are you being purposely ignorant or do you have an angle here?
Google has *very clearly* stated they won't prevent you from doing these things with a little hand-holding.
#technology #sysadmin

RE: https://framapiaf.org/@sebsauvage/116313774703216263

This article is quite interesting and I'm interested about the idea of #immutable #Linux, at least for end users. I found nothing official on the #debian wiki.
On Debian, I don't remember having often experienced myself upgrade problems, with more than 25 years using it. Not on stable at least. (because ofc I run #testing :)
I don't know much about Fedora but I had the idea that it was not *that* stable because of its bleeding-edge nature.

#sysadmin #desktop #desktoplinux #yearofdesktoplinux

France Augier (fr|en) 🇵🇸🇺🇦☭🏴 boosted

sebsauvage » 🌐 2026-03-29
@sebsauvage@framapiaf.org

#Linux #système
Les choix techniques fait par Fedora pour mettre à jour le système sont tout à fait intéressants.
https://www.howtogeek.com/fedora-quietly-solved-linuxs-update-problem/
(Même si en plus de 15 ans j'ai très rarement eu de problèmes avec Linux Mint, d'autant que j'ai toujours Timeshift pour faire un retour-arrière en cas de pépin.)

• #systeme

Quand ta stack Proxmox décide d'être très bavarde entre 9h39 et 10h29 ce matin... ☕️🤖
Résultat : une avalanche de notifications Gotify ! Mon téléphone a fait son sport pour le lundi 😂📜
👉 https://picsur.blablalinux.be/i/ee03af7b-ca00-4a94-bb0a-c29f41bed7ad.jpg
Bonne semaine à tous ! 💻🔥
#Proxmox #Gotify #Lundi #SysAdmin #SelfHosted

Wusstet ihr, dass `find` und `xargs` zusammen echte Superkräfte haben? 🦸

find . -name "*.log" -mtime +30 | xargs rm -f

Löscht alle Logfiles älter als 30 Tage. Einmal verstanden, nie wieder vergessen – und euer /var/log dankt es euch morgen früh. 🗂️✨

Aber bitte: erst testen, dann löschen. Mit `echo` statt `rm` schauen was passiert wäre. 😅

#Linux #CLI #SysAdmin #FreieSoftware #TippsUndTricks

Just spent way too long wrestling with a 400-line pf.conf and asymmetrical routing. 😵‍💫

The culprit? Classic rule ordering. A slightly too broad rule (with quick) near the top was happily catching traffic and creating states without the reply-to option before my intended rule could even look at it.

The packets were flowing, just... not back the right way. Debugging that was significantly harder than I expected.

I am officially logging off to take a nap. 💤

#pf #PacketFilter #Networking #Sysadmin #FreeBSD #OpenBSD

I wrote up my entire backup strategy for my servers across FreeBSD and Linux:

- ZFS snapshots with sanoid
- Off-site replication via syncoid to rsync.net (encrypted at rest)
- Proxmox Backup Server fronting Backblaze B2 for VMs
- A Podman trick for backing up RHEL hosts without native packages
- Dead man's switch monitoring
- Quarterly restore tests recorded with asciinema

Real configs included.

https://blog.hofstede.it/my-multi-stage-backup-strategy-zfs-proxmox-and-paranoia/

#backup #zfs #freebsd #linux #proxmox #sysadmin #selfhosted

This morning I coined a new phrase. Inspired by "This meeting could have been an email", I came up with the assonant "This VM could have been a jail".

#FreeBSD #RunBSD #IT #SysAdmin

Finally, I managed to install and configure a graphical environment directly during a #FreeBSD installation session 🎉

Most of the friction was around GPU drivers, but the feedback and suggestions I received were incredibly helpful. A lot of people want to use FreeBSD on their laptops and desktops, and that really shows.

For now, the goal was to provide a simple option to install #KDE Plasma. If there’s interest and more requests, we can definitely expand this in the future with additional desktop environments and options.

Special thanks to the FreeBSD Foundation for their support 🙌

#RUNBSD #FreeBSDDesktop #FreeBSD #BSD #OpenSource #Unix #KDE #KDEPlasma #DesktopEnvironment #GUI #Laptop #Desktop #FOSS #Tech #SysAdmin #DevOps #OperatingSystem

Alt...

A screenshot of the FreeBSD Installer on a blue background. The main focus is the 'Final Configuration' window with a list of system configuration options. The option 'Desktop' is highlighted, indicating the choice to install a graphical environment.

Alt...

Text-based FreeBSD installer dialog prompting the user to install GPU drivers, Xorg, KDE Plasma, and a display manager. The message notes that this is an experimental feature. Two options, “Yes” and “No,” are shown, with “Yes” currently selected.

Alt...

Text-based FreeBSD installer dialog with the title “Desktop installation completed.” The message explains that the SDDM display manager will start automatically at the next system boot and lists configured users. A tip suggests using the VBoxSVGA graphics controller and disabling 3D acceleration in VirtualBox. An “OK” button is highlighted at the bottom.

Alt...

Screenshot of a FreeBSD 15.0 system running inside a VirtualBox virtual machine with the KDE Plasma desktop environment. In the foreground, the “About this System” settings window displays software and hardware information, including KDE Plasma version, Qt version, kernel version, and available memory. In the background, a web browser window is open on the FreeBSD official website.

@fdroidorg 😂 what hyperbole.
First is the falsehood that #Google had ever claimed #Android devices are the "best computing device[s] in the world that [do] everything."
Second, the fallacy that this definition would preclude a protected ecosystem like they propose. Apple? Most people prefer the safety it offers them.
Side-loading? Valid. Silly argument.
The new changes protect *most* users from themselves.
Best? Power users aren't being stopped at all. Its an inconvenience at best.
#sysadmin

Damned #Proxmox doesn't have local disk live migrations enabled by default in newest versions.

And I took that personally

#admin #sysadmin #it

Découvrez comment mettre ça en place sur le wiki :
👉 https://wiki.blablalinux.be/fr/sauvegarde-restauration-sqlite-multiservices-proxmox

#SelfHosted #Proxmox #SQLite #BlablaLinux #Backup #Linux #SysAdmin

Bonnes sauvegardes !

#Proxmox #SysAdmin #OpenSource #DevOps #Automatisation #BlablaLinux #Sauvegarde

New post: shell tricks that aren't exactly secret, but aren't always taught either.

Split into two sections: what works on any POSIX sh (FreeBSD, OpenBSD, Alpine...) and what's Bash/Zsh-specific. Because not everyone is on Linux with bash as their login shell.

Things like CTRL+W, $_, pushd/popd, fc, set -euo pipefail caveats, and more.

https://blog.hofstede.it/shell-tricks-that-actually-make-life-easier-and-save-your-sanity/

#unix #bash #shell #sysadmin #freebsd #linux #cli

@drscriptt @monospace I got my workplace almost entirely converted to XML back when it was "fresh" and then JSON took over and we've mostly avoided the shift.
Explaining to people why I prefer XML over JSON when they're too young to understand the move from CSV is just hard.
#greybeard #sysadmin

@drscriptt @monospace its very handy when looking for specific connections, or frequently in my case, connections not coming from specific subnets:

```ss not src $LOCALNET/24 dport :587```

But those more 'interesting' commands I've just saved to mini ~/bin/ scripts so I don't have to type them and frequently forget the syntax.

#oldmanbrain #sysadmin #networking

u wot m8?

> Most modern operating systems include cURL by default. On Windows, use 'cmd' since in powershell curl is added as alias for Invoke-WebRequest (Microsoft.PowerShell.Utility)

https://techcommunity.microsoft.com/blog/iis-support-blog/using-curl-for-isolation-of-web-related-issues/4369609

Let me get this straight: Microslop decided that it makes total sense to have a "curl" command that in PowerShell is a different thing than the standard "curl" available in `cmd`?..

Ffs. I have no words.

#Windows #SysAdmin #curl

I used ‘find’ on a Linux server today.

find /path/to/directory -type f -mtime +365 -delete   

Yes, I had to look up the flags to make it do what I wanted it to. I do not have them memorized.

#Linux #SysAdmin

RT: https://floss.social/users/mikebabcock/statuses/116284712899761792

Michael T Babcock [https://en.pronouns.page/@bigntallmike] » 🌐 2026-03-24 / 2026-03-24
@mikebabcock@floss.social

One of the most powerful commands on your #linux system is 'find' ... and one of the most annoying commands on your system is also find.

Do you need to use -and between parameters?

Did you specify the right #regex type before -regex search? And "./"?

Can you remember the before and after date syntax?

If you want to do something to a certain subset of files, find is probably the right way. And you'll spend fifteen minutes fixing the command-line before getting it right.

#rant #sysadmin #tips

@thenewoil and yet, passkeys are still single-source authenticators. As a result, they are not as secure as proper 2FA systems, simply better than passwords alone.
#security #sysadmin #fud

@monospace `ss -lpn | grep :8080` is my goto personally. I find it much more robust and fast. ymmv.
#linux #sysadmin #networking

@geerlingguy as a guy who's been building his own routers professionally for decades now, this is great advice. Also its really quite easy (and always has been with the right knowledge).
Just PLEASE don't run additional software on your routers. Run them on a device *behind* the router. You'll thank me eventually.
#firewall #router #sysadmin #networking

One of the most powerful commands on your #linux system is 'find' ... and one of the most annoying commands on your system is also find.

Do you need to use -and between parameters?

Did you specify the right #regex type before -regex search? And "./"?

Can you remember the before and after date syntax?

If you want to do something to a certain subset of files, find is probably the right way. And you'll spend fifteen minutes fixing the command-line before getting it right.

#rant #sysadmin #tips

Oh happy day!

This newbie #sysadmin is VERY HAPPY because in less than 5 minutes I:

• installed tmux (thank you for the recommendation & instructions @teapot_ben and @drfyzziks)

• upgraded PeerTube from Terminal using tmux

now the stakes weren't super high because I did this for my second VPS which is running test apps... the real challenge will be to do this on my primary VPS and my in-production PeerTube instance.

Grabbing another coffee, taking a VPS snapshot and trying this.

As always THANK YOU FOR YOUR SUPPORT AND ENCOURAGEMENT. I couldn't do this without you 💖​

Oh but the larger point in this message was to vouch for tmux - it really is super beginner friendly. I know NOTHING and I was able to easily install it and use it. So you could recommend it to your normie friends for sure ☺️​

#MySoCalledSudoLife #YunoHost

#Linux security best practice: Create system user accounts for services that can’t be used for login: `useradd -r -s /sbin/nologin servicename`

🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/

#Linux #SystemAdministration #SysAdmin

Envie de l'auto-héberger sur votre Docker/LXC ? Voici mes snippets Compose tout frais sur ByteStash :

Version Persistance (API) :
https://bytestash.blablalinux.be/s/4f7a1a645f316457803c94cd237ee388
Version Sandbox (Démo) :
https://bytestash.blablalinux.be/s/dcdcfa327c4d5f666a96b963d19d99de

Projet source sur GitHub : https://github.com/rackulalives/rackula

Amusez-vous bien avec vos baies !

#SelfHosting #Docker #Linux #Rackula #BlablaLinux #SysAdmin #Proxmox

Running a FreeBSD server with two independent uplinks?

My latest deep dive covers how to mix a physical provider and a BGP tunnel to serve NAT'd, routed, and pure public jail traffic on a single bridge.

We break down Dual-FIB policy routing and show you how to use PF's rtable and reply-to directives to fix asymmetric routing and keep traffic strictly separated.

Policy routing done right: https://blog.hofstede.it/dual-fib-policy-routing-on-freebsd-two-upstreams-one-server-zero-confusion/

#FreeBSD #BGP #Jails #SysAdmin #networking #routing

On est d'accord que si on détruit le pool de stockage par défaut de KVM (seul moyen de changer son chemin, apparemment), on ne perd pas les VMs déjà créées ?

(c'est pas pour un ami, c'est pour vérifier)
(avant de faire une connerie, donc)

#KVM #sysadmin #FAFO

THIS IS A POST IN PRAISE OF SNAPSHOTS.

My PeerTube upgrade was a horror show: lost server connection during the upgrade and then PeerTube was automatically removed from my YunoHost server... the routine backup by YunoHost of PeerTube didn't restore... in short: bad, very bad outcome.

I hyperventilated for a few minutes and then... hit "Restore" on the VPS snapshot I had captured before the maintenance operation and... everything went back to normal.

Heart still beating a little fast but I am in AWE of the powers of SNAPSHOTS, ouf.

#sysadmin #MySoCalledSudoLife

Kleines Terminal-Reminder für einen entspannten Nachmittag:

`htop` zeigt dir, was deinen Rechner gerade ausbremst.
`df -h` zeigt, wo der Speicher hingeflossen ist.
`ss -tulpn` zeigt, welche Dienste lauschen.

Drei Befehle, und du weißt mehr über dein System als die meiste proprietäre Software dir jemals verraten würde. 🐧

#Linux #Terminal #FreieSoftware #SysAdmin

#homelab #sysadmin

Damn, nvidia-kmod and VirtualBox-kmod modules don't build on Kernel 6.19

Classic situation (at least with NVIDIA) after @fedora updates

I guess will have to jump around to get Kernel 6.18 back... Why can at least one version of previous Kernel be always available by default?

#sysadmin #fedora #nvidia

🚀 Défi accepté !
Un grand merci à l'équipe de https://www.proxcenter.io/ pour la licence d'évaluation : 10 nœuds à tester, mais seulement 10 jours au compteur ! ⏱️
Le marathon commence : tests, article de blog et vidéo en approche. Je vais pas chômer ! 🐧💻
#ProxCenter #Proxmox #Linux #SysAdmin #BlablaLinux

• Faire ce que dit l'alerte
• Réfléchir a pourquoi on a cette alerte alors qu'avant tout allait bien
• Se rendre compte qu'on ne comprend rien à l'informatique
• Se rouler en boule sur le sol et reflechir a ses choix de vie et comment on en est arrivé là.
• Se reconvertir dans l'élevage de chèvres dans le larzac
• avant de partir faire un ticket dans Redmine pour le prochain sysadmin/DBA.

Comment on fait pour créer un point d'accès wifi sur KVM ?
J'ai pas besoin qu'il se connecte à l'internet réel, je veux juste qu'il soit vu par les VMs et qu'elles puissent s'y connecter...

(je trouve que de la doc sur comment créer un bridge vers le wifi physique)

#Sysadmin #Network #KVM #Wifi

EnshittifAIcation

Three episodes, one week. AI bots that hallucinate VPN requirements, recommend Apache configs on nginx servers, and suggest replacing 128 GB of RAM with a cloud VPS. A field note on the cost of mistaking confidence for competence.

https://it-notes.dragas.net/2026/03/20/enshittifaication/

#ITNotes #NoteHUB #AI #Hosting #Server #SysAdmin #IT

🚀 BentoPDF version BlablaLinux est en ligne !

Instance 100% optimisée :
✅ SEO : Sitemap et robots.txt 100% locaux.
✅ Réseaux : Vignettes Open Graph corrigées (logo BlablaLinux).
✅ Perf : Support WASM & Gzip activés via NPM.
✅ IA : Blocage centralisé des bots.
✅ Branding : Intégration complète.

À tester ici :
👉 https://bentopdf.blablalinux.be

#Linux #OpenSource #BentoPDF #SelfHosted #BlablaLinux #SysAdmin

Une méthode pour déchiffrer automatiquement des volumes LUKS : https://jeremy.lecour.fr/blog/2026/03/18/dechiffrement-luks-auto-clevis-tang/ #linux #sysadmin #debian #clevis #tang #luks

I just finished an amazing call.
The person I was talking to was trying to explain to me that Docker is an entire operating system, so he doesn’t want Linux or any of the BSDs, but Docker. I explained that, in order to run Docker, you need a kernel.

"No, you don't. Docker does everything on its own. If you think that, then you don’t really understand operating systems."

I told the guy that I couldn’t help him, since I'm not experienced enough with operating systems. He was a bit disappointed, but we said goodbye on friendly terms.

I'm used to recognizing when I'm too ignorant for the person I'm talking to, and I'm happy to step aside.

#IT #SysAdmin

Ah, Debian. Add a disk and you yet again renumber your network interfaces. #sysadmin

Well, that was trivial. #FreeBSD daily security script to show SUCCESSFUL logins.

https://mwl.io/archives/24601

"Works on my machine" quality. #sysadmin

Pondering trimming the daily output from my #FreeBSD boxes, eliminating things that have never impacted me. #sysadmin

ICMP unreachable messages? Netflow shows it's always a flood of DNS requests. I don't care.

Failed SSH logins? If I ever want them, they're in the log.

​Ton disque dur USB joue à cache-cache ? 🛑

​Ras-le-bol des erreurs "Input/Output" en plein milieu d'une sauvegarde ? 😫
C’est souvent juste Linux qui veut faire des économies d’énergie un peu trop agressives !
​Apprenez à garder vos disques "éveillés" et vos backups en sécurité avec ce nouveau guide step-by-step 🛠️🐧

​👉 C’est par ici : https://wiki.blablalinux.be/fr/stabiliser-disques-usb-autosuspend

​#Linux #SysAdmin #Autosuspend #USB #HDD #SSD

En attendant de voir si ça finit en article ou en vidéo, je vous ai déjà préparé le terrain. Si vous voulez le déployer proprement (testé et validé en LXC Docker), mon Docker Compose et son fichier .env sont dispos sur mon ByteStash.

🌍 Site officiel : https://proxcenter.io
🔥 Le snippet ByteStash : https://bytestash.blablalinux.be/s/849d4b39f08647dbff1cfee83d681f2f

Affaire à suivre... 😏

#Proxmox #HomeLab #Docker #SelfHosted #ProxCenter #BlablaLinux #SysAdmin

Easy way to kickstart a runbook: Log actions with “history | tail -20 | tee file.md” to capture recent commands, then add explanations.

🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/

#Linux #SystemAdministration #SysAdmin

I have been suggested that the company I'm working is not doing well. Than and a push for AI is telling me it's maybe time to move on.

What am I? Currently I'm doing #Python, #SysAdmin, GitHub/GitLab admin (yes, both), some Kafka, used to do some Postgres (now we have a DB team), Ansible and more.

Edit: more info: https://en.osm.town/@mdione/116302423501761728

What do I want? No AI, no gambling, no blockchain. In #Marseille or remote. I can invoice abroad, but I would rather be an employee.

#FediHire #job

1/

Why I love FreeBSD

A personal reflection on my first encounter with FreeBSD in 2002, how it shaped the way I design and run systems, and why its philosophy, stability, and community still matter to me more than twenty years later.

https://it-notes.dragas.net/2026/03/16/why-i-love-freebsd/

#FreeBSD #ITNotes #RunBSD #IT #SysAdmin #OS #OpenSource

Bug-for-bug compatibility is great, but having an actual feedback loop into enterprise Linux development is better. I wrote about my experience running CentOS Stream in production, how it handles security updates without the rebuild lag, and why the upstream model beats the old CentOS way.

https://blog.hofstede.it/why-i-prefer-centos-stream-over-old-centos/

#Linux #CentOS #SysAdmin #OpenSource

You just provisioned a fresh Linux server. Within minutes, the SSH brute-force bots will arrive.

There are too many ways to build a firewall in Linux. I wrote a practical guide to the four major tools: iptables, nftables, firewalld, and ufw, including their mental models and deployable configs.

Also includes a deep dive into the "Docker Trap" (why Docker silently bypasses your default-deny rules) and how to fix it.

(And yes, I still spend the intro and conclusion reminding everyone that FreeBSD's PF is the undisputed king of packet filtering. Let's argue in the replies.)

Read it here: https://blog.hofstede.it/linux-firewalls-how-to-actually-secure-a-cloud-server-iptables-nftables-firewalld-ufw/

#Linux #Sysadmin #DevOps #Security #Netfilter #Docker #Networking

🚀 Mises à jour en série chez BlablaLinux !

SearXNG, 2FAuth, Gitea, StirlingPDF et plein d'autres services sont tout frais, tout beaux... mais ce n'est même pas moi qui ai bossé ! 😎

Merci qui ? Merci Watchtower ! 🤖🐳

Retrouvez tous mes services ici :
👉 https://blablalinux.be/mes-services-publics/

#BlablaLinux #AutoUpdate #Docker #Watchtower #SelfHosted #LogicielLibre #SysAdmin #Linux #Debian #Proxmox #LXC

Well, it's Friday 13th... What production upgrade should I do in work today?

#admin #sysadmin #DevOps

Alright, here we are. The decline is accelerating.
An IT manager at a client company, someone capable I've been collaborating with for years, recently hired three new developers. However, he asked me for a Linux server instead of the usual FreeBSD because "that way the devs can move faster, AIs can't produce valid results for BSD systems".

Given our relationship, I called him and told him I disagreed. Somewhat bitterly, he replied that these guys had been "imposed on him". They're polite and willing, but completely lacking any real programming principles. They are "experts in vibe coding", and for management that's more than enough.

In other words, we're not supposed to build a working and efficient server anymore, but a vibe-coding-friendly one.

My instinctive reaction was to ask him whether, when a data breach eventually happens, because sooner or later it will if the people writing the code neither write nor read code, they'll be able to tell the authorities that the data controller was an AI.

He didn't say anything else and thanked me. Maybe, and I stress maybe, management will understand that.

#IT #SysAdmin

Échec et mat !

> Check Point ThreatCloud flags whole cloudfront.net... - Check Point CheckMates
> False positives can happen and do happen from time to time. Normally I would not create a CheckMates post for that.
https://community.checkpoint.com/t5/General-Topics/Check-Point-ThreatCloud-flags-whole-cloudfront-net-as-phishing/m-p/271664#M45533
#dns #sysadmin #infosec

My oldest still running server ..

HP ProLiant DL120, installed in May 2012 with Debian 7 Wheezy, even before systemd was a thing.

Continously upgraded up to Debian 12 Bookworm.

Former Mailserver, Blog Server, Photo Gallery, Git Forge ..

5 SAS Hard disks were replaced over the years. Other than that, it just worked since 2012.

root@helium:~# # Farwell old friend. You served well! See you in the nether.

root@helium:~# poweroff
Broadcast message from root@helium.edelga.se on pts/1 (Wed 2026-03-11 18:21:28 CET):

The system will power off now!

Shared connection to helium.edelga.se closed.

🥺

#sysadmin #linux #debian #sad

Linux tip: Use “ss -tuln” to check for open ports. Filter specific port numbers by adding “| grep :80”, for example.

🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/

#Linux #SystemAdministration #SysAdmin

RE: https://mastodon.social/@dzwiedziu/115570876140855775

Sooo, remember my most boosted post of #wrapstodon 2025?

I'm still unemployed, now facing moving out of France by the end of April.

Recap: jack of all trades #Linux sysadmin, with broad, 10y+ experience in system and applications administration. Preferred location would be #Strasbourg or fully remote or as a mentee for #freelance with #ADHD.

(Please clap, I mean boost 🔁)

#Perl #Python #sysadmin #mentoring

If you want to raise your shell scripts to a new level, give this a try! It'll give useful feedback on the style of your shell code and on possible issues with it.

https://www.shellcheck.net/

PS: Know when to switch to a proper programming language.

#Linux #SysAdmin #SystemAdministration

J'arrive pas à booter sur KVM une VM récupérée d'une sauvegarde Proxmox, qu'est-ce que je fais mal ?
La sauvegarde était en vma, elle a été convertie en raw, je l'ai convertie en qcow2, je fais l'importation comme le tutoriel le dit mais j'obtiens soit "no bootable disk" (en BIOS) ou juste un shell UEFI (en UEFI).

#kvm #sysadmin #proxmox

Marre de stresser pour vos données ? 😱

Si Timeshift s'occupe de votre système, il ne faut pas oublier vos fichiers perso, vos sites web ou votre Nextcloud ! 🎯

Nouveau guide sur le Wiki BlablaLinux : un script Rsync universel pour tout sauvegarder proprement, avec des alias simples et des logs automatiques 🐧💻

👉 Tout est là : https://wiki.blablalinux.be/fr/sauvegarde-donnees-script-rsync-universel

#Linux #OpenSource #Backup #Rsync #SysAdmin #BlablaLinux

If your terminal ever gets confused by random control sequences, for example after you accidentally output binary data, there's a good chance you can restore order with the `reset` command.

#Linux #Shell #SystemAdministration #SysAdmin

With #cron or #systemd timers, how can I run something every 2 minutes, except between 23:50 and 00:10?

I don't think there's a way to specify this, right? I can see having to write wrapper scripts to check the time and exit early.

#linux #unix #sysAdmin

D'ailleurs, l'instance Papra BlablaLinux tourne déjà avec toutes ces optimisations !

✅ Le labo (mis à jour) : https://papra.blablalinux.be
✅ Le Docker Compose complet : https://bytestash.blablalinux.be/s/c696e234a3d12996b9d6821d8c684b06

Fini les "je n'ai pas reçu le mail" et les serveurs encombrés, tout roule ! 🐧🔥

#SelfHosting #Linux #Papra #OpenSource #SysAdmin #BlablaLinux #Docker #Automation #Productivité

@SecureOwl I'm so sorry to the few honest ones but the entire #cybersecurity industry feels so corrupt and gross these days. All these "insurance" companies with their own remediation teams they pay out of your insurance plan? Ew. It would be illegal in any other industry.
So do fake message robocalls surprise me? Not at all.
#sysadmin

Goddamnit #Debian, stop changing my network interface names when I change unrelated hardware. #sysadmin

Apparently *_urgent_* action to renew the Certbot Certificate for my server's Webmin remote access control panel *_isn't_* urgent after all. No. Not.
#SysAdmin #security

Alt...

A black cat sits upright on a closed (by her!) laptop. She is turned away, possibly considering pouncing on the laptopee's outstretched bare legs and feet. The photo is in black and white to spare the viewer from the human's pasty pinkness.

Another report forwarded to me by a client saying "your website is insecure because it accepts outdated encryption protocols" - naturally passed along to them by third parties.

Yes, it accepts them. But it's a static website that simply provides some information about the company. Nothing critical, nothing dynamic. No data is exchanged. There is no login.

We had already tightened everything up a few months ago (for me it's literally a one-line change), but they later told me that some visitors could no longer access the site and asked me to revert it. Probably older devices, but there are plenty of those out there. I know organizations that still use Windows 7, and I still occasionally see some XP clients around.

So now I explained to the client that we have two possible choices: accept the "risk" (which, frankly, I'm not entirely sure what it would be, since even if someone decrypted the traffic they would see nothing that isn’t already visible by simply visiting the page normally), or lock it down again, potentially cutting off some devices, just like what happened a few months ago.

The choice is theirs. We’ll see!

#SysAdmin #IT

BSDCan: North America’s largest BSD conference is open for registration!

Tutorials: June 17-18, 2026
Conference: June 19-20, 2026

Full list of talks here:
https://blog.bsdcan.org/blog/

Register before May 1 and the closing reception is free!

https://www.bsdcan.org/2026/registration.html

#bsdcan #conference #bsd #unix #development #freebsd #netbsd #openbsd #sysadmin #devops

Today I rediscovered the joy of saying fuck it to version control and just using FTP and Vim to force in a bunch of changes to a website. Sometimes the best process is to skip the process.

#devlife #sysadmin #yeetOps

📖 À découvrir ici :
👉 https://wiki.blablalinux.be/fr/installation-copyparty-debian-proxmox

#Copyparty #SelfHosted #Linux #Proxmox #SysAdmin #BlablaLinux

The /proc filesystem was a genius idea giving the #sysadmin direct control of the Linux kernel. In this article, David Both explains how to change kernel parameters at runtime.

https://www.redhat.com/sysadmin/linux-kernel-tuning

Optimiser, c'est bien. Comprendre pourquoi on le fait, c'est mieux ! 🧠
J'ai ajouté une section spéciale sur le Wiki pour expliquer mes choix de compression (résolutions, bitrates, CPU).

Pourquoi 3468px ? Pourquoi 6000k ? Je vous déballe toute ma logique basée sur mes propres tests réels 📈💻

Tout est détaillé ici :
🔗 https://wiki.blablalinux.be/fr/optimisation-automatique-medias-nextcloud#pourquoi-ces-réglages-de-compression

#BlablaLinux #Nextcloud #SysAdmin #Optimisation #OpenSource

Vous uploadez, il compresse, Nextcloud sourit ✅

Le guide complet pour l'optimisation automatique des médias est arrivé ! Un script universel, des workflows aux petits oignons et vos précieux gigas préservés, même sur du matériel reconditionné 📦🔥

Le Step-by-Step complet est ici :
🔗 https://wiki.blablalinux.be/fr/optimisation-automatique-medias-nextcloud

#Cloud #SysAdmin #Nextcloud #BlablaLinux #Automation

Marre que votre trafic local fasse le tour du web ? En réécrivant vos domaines vers vos IP locales, vous décuplez vos performances.
Avec cette configuration, vos services (fichiers) s'ouvrent à la vitesse de votre réseau local sans dépendre de votre connexion internet. C'est la solution idéale pour garder des certificats HTTPS valides tout en restant en circuit court.
Simple, invisible et redoutable pour l'auto-hébergement !
#BlablaLinux #AdGuardHome #SelfHosted #SysAdmin #Nextcloud

Y'a une raison d'apprendre LXC de nos jours ou bien c'est complètement remplacé par LXD ?

(question subsidiaire : y'a un bon tuto quelque part ?)

#sysadmin #lxc #lxd #linux

Salut les Ops, est-ce que quelqu'un aurait des recommandations pour une formation k8s orientée ops, de qualité, idéalement gratuite ou pas trop chère (ou éligible CPF si ça existe) ?
En français ou en anglais peu m'importe.

J'ai quelques notions du produit, de ce qu'il fait, mais pas du tout de comment le configurer, l'administrer, ce à quoi il faut faire particulièrement attention, etc

#sysadmin #ops #k8s #kubernetes #devops #sre

Linux tip: Use “sed -n '100,200p' largefile.txt” to extract a specific line range of a log or text file.

🔗 Learn more in my course: https://monospacementor.com/courses/linsys-1/

#Linux #SysAdmin

Lundi matin, 10h07 : Tous les feux sont au vert ! 🟢 Mes LXC sont à jour et aucun redémarrage n'est nécessaire. Ça commence bien ! Bon lundi à tous ! 🐧💻
#Linux #SysAdmin #Gotify #Proxmox

Heads up for any folks using @hetzner: scammers seem to be trying to exploit the recent bump in pricing by sending "unpaid invoice notification" e-mails.

Easy to fall for it before morning coffee.

"Update Payment Method" link obviously leads to a scam site, so not particularly hard to spot either.

Be careful out there.

P.S. yes I am aware of the shitty ways Hetzner treated a bunch of fedi instances; this is not a recommendation.

#Hetzner #InfoSec #SysAdmin

Haack's Networking - Creating a Production Pixelfed Instance

I've completed the write-up on the production PIxelfed instance. I am still a bit unclear on federation/discovery and whether my well-known is functioning correctly or not, but will update folks as soon as I know. Core features are working; if folks find issues, just let me know.

https://tech.haacksnetworking.org/2026/03/01/creating-a-production-pixelfed-instance/

https://wiki.haacksnetworking.org/doku.php?id=computing:pix3lfed

Happy Hacking!

#sysadmin #gnulinux #debian #pixelfed #floss #opensource #freesoftware #selfhosted

Alt...

pixelfed logo

New post: Neovim Crash Course for Sysadmins

Not a beginner's guide. This covers the things you still get wrong after years of Vim - efficient navigation, why your paste lands in the wrong place (and the one-key fix), YAML indentation workflows, quick macros, and what Neovim's LSP actually gives you for infrastructure work.

Written for people who edit configs and playbooks all day.

https://blog.hofstede.it/neovim-crash-course-for-sysadmins-the-20-that-solve-80-of-the-pain/

#neovim #vim #sysadmin #devops #linux #ansible #yaml

Haack's Networking - GNU/Linux Pics

https://gnulinux.pics

The PIxelfed instance, GNU/Linux Pics, is now live and ready for beta testing. Do note that you will need to use the website for now as we are still waiting for our federation status and remote discovery to become active.

#sysadmin #pixelfed #gnulinux #freesoftware #floss #opensource #debian

Alt...

pubglug logo used for post about pubglug instance for pixelfed called gnulinux.pics

Quand tes scripts de purge font le job en silence (ou presque 🔔).

6 serveurs, 6 "OK", et un /var/log tout propre. Dormir tranquille, c’est aussi ça la magie du cluster ! 🐧✨

#Proxmox #SysAdmin #Gotify #SelfHosted

Haack's Networking

Setting up Pixelfed, if time Castopod ...

https://content.haacksnetworking.org/w/tgphVpivvkCqyUfWrmSRyp

#gnulinux #sysadmin #freesoftware #opensource #floss

Transparence totale : Mes utilisateurs n'ont rien senti passer (voir capture 2).

Modernité : PostgreSQL 15 géré proprement et Watchtower pour les mises à jour auto.

Scalabilité : Déploiement en un clic via Docker Compose.

Migrer 4000+ articles et une dizaine d'extensions sans perdre une miette de donnée, c'est ça le plaisir de l'auto-hébergement bien géré ! 🛠️✨

#SelfHosted #FreshRSS #Docker #Proxmox #SysAdmin #BlablaLinux #Databasus #Debian