triptico.com is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.

This server runs the snac software and there is no automatic sign-up process.

Site description
Ángel Ortega in the fediverse, running snac
Admin email
angel@triptico.com
Admin account
@angel@triptico.com

Search results for tag #openbsd

[?]Tim Chase »
@gumnos@mastodon.bsd.cafe

@mwl

meanwhile, giving you the best of both worlds 😉

    [?]Justine Smithies »
    @justine@snac.smithies.me.uk

    Looking forward to 7.8 as I will find out if I successfully manage to bork my desktop machine running current. Yes you've guessed it I've not ran an OpenBSD box on current through a version change so this could be interesting. Hopefully I'll not fudge this up though after reading the docs as I'm growing to love OpenBSD.

      [?]Justine Smithies »
      @justine@snac.smithies.me.uk

      Question for folk, I'm running current and obvs upgrade snapshots with doas sysupgrade -s . When 7.8 comes out I take it I just continue doing the same as I read that I no longer need to do the other stuff as of 7.7 . Am I correct ?

      See referenced text below:

      Theo de Raadt (deraadt@) updated the version of OpenBSD -current to "7.7-current".

      Those running the latest-and-greatest [via a sufficiently new snapshot or built from source] no longer need to use "-D snap" with pkg_add(1) (and pkg_info(1)).

        [?]Peter N. M. Hansteen »
        @pitrh@mastodon.social

        Soon a new OpenBSD release, v 7.8, will be on the horizon. Time prepare and to reprise "You Have Installed OpenBSD. Now For The Daily Tasks." nxdomain.no/~peter/openbsd_ins (also bsdly.blogspot.com/2024/09/you)

          [?]h3artbl33d »
          @h3artbl33d@exquisite.tube

          [2019] Game of Tree - Stefan Sperling

          Stefan Sperling

          Stefan Sperling works as a freelance open source developer and consultant and is based in Berlin. Stefan has been involved in the OpenBSD project for a decade, and he is also one of the main contributors to the Apache Subversion version control system.

          Alt...---

            [?]bsd.nrw »
            @bsdnrw@bsd.network

            [?]Peter N. M. Hansteen »
            @pitrh@mastodon.social

            [?]vermaden »
            @vermaden@mastodon.bsd.cafe

            Latest 𝗩𝗮𝗹𝘂𝗮𝗯𝗹𝗲 𝗡𝗲𝘄𝘀 - 𝟮𝟬𝟮𝟱/𝟬𝟴/𝟭𝟴 (Valuable News - 2025/08/18) available.

            vermaden.wordpress.com/2025/08

            Past releases: vermaden.wordpress.com/news/

              [?]Peter N. M. Hansteen »
              @pitrh@mastodon.social

              [?]Shmok »
              @shmok@snac.bsd.cafe

              Is there many people on here who are not in Europe or are not European that use or all the time? I ask because there seems to be a lot or a majority of users are European on mastodon

                [?]Dr. Brian Callahan »
                @bcallah@bsd.network

                Two posts in less than one week!

                It was considered known that there is no support within GNAT (Ada) for illumos. We cross-build a complete native binutils+gcc toolchain for illumos to test out this claim.

                ...only to discover that illumos has full support within GNAT. Not a single test fails.

                briancallahan.net/blog/2025081

                  [?]​izzy »
                  @izder456@ieji.de

                  the only c project I hard forked was suckless's slock as they have a terrible security model (it doesn't log anything and has a hard need for suid root)

                  its also pledge()'d, uses bsd-auth, and has other code readability cleanups

                  if you're on , I suggest taking a look at it.

                  codeberg.org/Izder456/slock

                    [?]Justine Smithies »
                    @justine@snac.smithies.me.uk

                    Still running and getting just the way I like it. Loving that it's frame based and so configurable. Mind it is still a WIP so I have not made a new git repo for my OpenBSD dot files as yet.

                    A screenshot of my work in progress OpenBSD HerbstluftWM desktop. You can see three terminal windows open the left frame is Neovim showing part of my Herbstluftwm config file then to the right is another terminal window with the Herbstluftwm man page open and below that one is the fastfetch output showing the stats of this PC

                    Alt...A screenshot of my work in progress OpenBSD HerbstluftWM desktop. You can see three terminal windows open the left frame is Neovim showing part of my Herbstluftwm config file then to the right is another terminal window with the Herbstluftwm man page open and below that one is the fastfetch output showing the stats of this PC

                      [?]Peter N. M. Hansteen »
                      @pitrh@mastodon.social

                      [?]Justine Smithies »
                      @justine@snac.smithies.me.uk

                      Just noticed in that there is no manual entry for notify-send yet the manual entry for dunst says there is at the bottom of the doc.
                      SEE ALSO
                      dunst(5), dunstctl(1), dmenu(1), notify-send(1), dunstify(1)

                      When entering the command man notify-send I get man: No entry for notify-send in the manual. and I'm running current.

                        [?]Sijmen @ FrOSCon »
                        @sjmulder@bsd.network

                        To my completely surprise and disappointment I have found out that OpenBSD's vmm does not in fact support FreeDOS. What am I to do now

                          [?]h3artbl33d :openbsd: :ve: »
                          @h3artbl33d@exquisite.social

                          The @EuroBSDCon 2021 😈⛳🐡 video's are now mirrored on Exquisite.tube.

                          So, if you want to:

                          Now you can! Errr, you already could, but now more privately, federated and without Big Tech.

                          The playlist for all 2021 talks can be found here.

                          Good weekend all and happy hacking! :flan_hacker:

                            [?]Michael Jack »
                            @mjack@mastodon.bsd.cafe

                            Giving OpenBSD and Xfce another go on the laptop, but I think I'll go back to OpenSUSE until FreeBSD 15 is released 4Q25. Too many paper cuts for now...

                            hw-probe for the ThinkPad X1 Carbon 5th:

                            bsd-hardware.info/?probe=b1a9d

                              [?]tedu »
                              @tedu@flak.tedunangst.com

                              is OpenBSD 10x faster than Linux?

                              Here’s a little benchmark complements of Jann Horn. It’s unexpectedly slow on Linux.

                              OpenBSD is so fast, I had to modify the program slightly to measure itself, as the time utility is missing sufficient precision to even record nonzero.

                              All it does is create one extra thread, then both existing threads create 256 sockets. What’s so hard about that?

                              #include <pthread.h>
                              #include <unistd.h>
                              #include <err.h>
                              #include <stdio.h>
                              #include <sys/time.h>
                              #include <sys/socket.h>
                              
                              static void open_sockets(void) {
                                  for (int i=0; i<256; i++) {
                                      int sock = socket(AF_INET, SOCK_STREAM, 0);
                                      if (sock == -1)
                                          err(1, "socket");
                                  }
                              }
                              
                              static void *thread_fn(void *dummy) {
                                  open_sockets();
                                  return NULL;
                              }
                              
                              int main(int argc) {
                                  struct timeval one, two;
                                  gettimeofday(&one, NULL);
                                  if (argc > 1)
                                      dup2(0, 666);
                                  pthread_t thread;
                                  if (pthread_create(&thread, NULL, thread_fn, NULL))
                                      errx(1, "pthread_create");
                                  open_sockets();
                                  if (pthread_join(thread, NULL))
                                      errx(1, "pthread_join");
                                  gettimeofday(&two, NULL);
                                  timersub(&two, &one, &one);
                                  printf("elapsed: %lld.%06lds\n", one.tv_sec, one.tv_usec);
                                  return 0;
                              }

                              On Linux, I get results approximately as so:

                              tedu@penguin:~$ ./a.out 
                              elapsed: 0.017770s
                              tedu@penguin:~$ ./a.out 
                              elapsed: 0.026309s
                              tedu@penguin:~$ ./a.out 
                              elapsed: 0.018414s

                              On OpenBSD, here we go, choo choo:

                              ox$ ./a.out                                                                               
                              a.out: a.out: socketsocket: : Too many open files
                              Too many open files
                              ox$ ulimit -n 1024
                              ox$ ./a.out                                                                               
                              elapsed: 0.006096s
                              ox$ ./a.out  
                              elapsed: 0.002508s
                              ox$ ./a.out  
                              elapsed: 0.002326s

                              These aren’t identical machines, but roughly comparable.

                              There’s a hint in the code (nothing to do with networking code, if that was your first guess), with more explanation in the linked thread, which is worth reading and some thinking. I’d love to see the system and benchmark where Linux outperforms here.

                              Really, I just found it a little funny. Usually it’s the weirdo benchmark that shows OpenBSD being 10x slower, so this one is definitely going in the collection.

                                [?]Peter N. M. Hansteen »
                                @pitrh@mastodon.social

                                [?]Tomáš »
                                @prahou@merveilles.town

                                Girl: I would reall like the openbased t-shirt!"

Puffy: "I would really like you to stop consuming youtube content."

                                Alt...Girl: I would reall like the openbased t-shirt!" Puffy: "I would really like you to stop consuming youtube content."

                                  [?]not Evander Sinque »
                                  @FiLiS@mastodon.social

                                  Puffy in the hotel hallway

                                  Pufferfish on a hotel hallway poster

                                  Alt...Pufferfish on a hotel hallway poster

                                    [?]Justine Smithies »
                                    @justine@snac.smithies.me.uk

                                    OMG why have I never delved into you properly before !? This is my new favorite tiling window manager. Oh and yes I'm giving a fair go and I'm actually loving it.

                                      [?]Bryan Steele :flan_beard: »
                                      @brynet@bsd.network

                                      Heads up for Yubikey owners, if you depend on OTP as opposed to FIDO2, -current will no longer attach these devices as keyboards.

                                      deraadt@ modified src/sys/dev/usb/ukbd.c: Most Yubikey ship with OTP support enabled out of the box (and generate accidental output like cccccblddbkhelgbdjuughbjdcvrddggdcjvricrriuk).
                                      Yubikey re-configuration requires crazy buggy and fragile tools using crazy usb feature support, and therefore OTP disabling is very annoying.
                                      We make a policy decision to not attach these as keyboards anymore, because a majority of users just want the FIDO functionality. If you want to use OTP, buy a different device from a different vendor or convince Yubikey to significantly improve their tooling.
                                      idea from kettenis

                                        [?]Stefano Marinelli »
                                        @stefano@mastodon.bsd.cafe

                                        Is anyone able to compile on ?
                                        I've been able in the past but now it seems to fail

                                          [?]Justine Smithies »
                                          @justine@snac.smithies.me.uk

                                          Update It's already on Codeberg, Thanks to @js@io.plaintext.dev for pointing this out.

                                          https://codeberg.org/OpenBSD

                                          I wonder if the folk have considered moving their Git mirror from to say ?

                                            [?]Aaron Bieber »
                                            @qbit@mammothcirc.us

                                            OpenBSD.app has switched to using #Codeberg instead of Github for hosting and for Git repo links. Let me know if you hit any issues!

                                            #openbsd

                                              [?]Justine Smithies »
                                              @justine@snac.smithies.me.uk

                                              Seems someone has tried on a P14s Gen 1 AMD and it just works.

                                              "No head I will not wipe FreeBSD from my laptop in favor of OpenBSD!" 🙄

                                              https://bsd-hardware.info/?probe=8e3bae7f65

                                                [?]Bradley Taunt »
                                                @bt@mastodon.bsd.cafe

                                                Successfully serving some test sites off my local Mac Mini running OpenBSD / httpd. It’s currently using Eero’s DDNS for the port reservations and forwarding, so it’s only temporary until my real router arrives.

                                                Just a good test though 👍

                                                  [?]Peter N. M. Hansteen »
                                                  @pitrh@mastodon.social

                                                  Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to fool spammers rolled past the number of inhabitants in my home country of Norway. It's time for a retrospective.

                                                  Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? nxdomain.no/~peter/eighteen_ye (tracked bsdly.blogspot.com/2025/08/eig)

                                                    [?]Shmok »
                                                    @shmok@mastodon.bsd.cafe

                                                    Is it always recommended to install obsdfreqd in place of apmd for temp control?

                                                      [?]Peter N. M. Hansteen »
                                                      @pitrh@mastodon.social

                                                      [?]vermaden »
                                                      @vermaden@mastodon.bsd.cafe

                                                      Latest 𝗩𝗮𝗹𝘂𝗮𝗯𝗹𝗲 𝗡𝗲𝘄𝘀 - 𝟮𝟬𝟮𝟱/𝟬𝟴/𝟭𝟭 (Valuable News - 2025/08/11) available.

                                                      vermaden.wordpress.com/2025/08

                                                      Past releases: vermaden.wordpress.com/news/

                                                        Tomáš boosted

                                                        [?]Peter N. M. Hansteen »
                                                        @pitrh@mastodon.social

                                                        [Again for those on the other side of the pond] -

                                                        Friends, it finally happened. On August 7th, 2025, the number of spamtraps rolled past the number of people in my home country. It's time for a retrospective.

                                                        Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? nxdomain.no/~peter/eighteen_ye (tracked bsdly.blogspot.com/2025/08/eig)

                                                          [?]Peter N. M. Hansteen »
                                                          @pitrh@mastodon.social

                                                          Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to woo the unwary spammer rolled past the number of inhabitants in my home country of Norway. It's time for a retrospective.

                                                          Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? nxdomain.no/~peter/eighteen_ye (tracked bsdly.blogspot.com/2025/08/eig)

                                                            [?]Shmok »
                                                            @shmok@mastodon.bsd.cafe

                                                            I ordered this a few minutes ago as my new firewall router from AliExpress with N150 DDR5 Intel 2.5Gb

                                                              [?]Michael Jack »
                                                              @mjack@mastodon.bsd.cafe

                                                              I've got a ThinkPad X1 Carbon 5th, currently running OpenSUSE Tumbleweed. I want to try *BSD on this laptop.

                                                              Network controller is reported as "Intel Corporation Wireless 8265 / 8275 (rev 88)" under Linux.

                                                              FreeBSD installs OK, but wireless speed is not impressive, and my USB-C dock doesn't seem to be recognized.

                                                              I can live with using a wifi-dongle when out and about, but missing dock connectivity is not something I look forward to. I don't care about the built-in camera.

                                                              Is there anything else I should worry about? Sound, Bluetooth, sleep mode, battery life?

                                                                [?]Michael Jack »
                                                                @mjack@mastodon.bsd.cafe

                                                                First steps in the BSD world!

                                                                1) OpenBSD on VPS (Amsterdam)
                                                                2) FreeBSD on Raspberry Pi 4 (home)

                                                                I'm running a Wireguard connection between the two.

                                                                Next step is setting up relayd on the VPS to point at services on the Raspberry Pi server.

                                                                Screen shot showing neofetch output from OpenBSD, running on a VPS in Amsterdam

                                                                Alt...Screen shot showing neofetch output from OpenBSD, running on a VPS in Amsterdam

                                                                Screen shot showing neofetch output from FreeBSD, running on a Raspberry Pi server at home

                                                                Alt...Screen shot showing neofetch output from FreeBSD, running on a Raspberry Pi server at home

                                                                  [?]Peter N. M. Hansteen »
                                                                  @pitrh@mastodon.social

                                                                  Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? nxdomain.no/~peter/eighteen_ye (tracked bsdly.blogspot.com/2025/08/eig)

                                                                  Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to woo the unwary spammer rolled past the number of inhabitants in my home country of Norway.

                                                                  It's time for a retrospective.

                                                                    [?]Peter N. M. Hansteen »
                                                                    @pitrh@mastodon.social

                                                                    [?]Joel Carnat ♑ 🤪 »
                                                                    @joel@gts.tumfatig.net

                                                                    Hey #FreeBSD admins with #OpenBSD as second language, what would be the equivalent to ˋacme-client` on FreeBSD?

                                                                    Like in single command you run every night that checks if your Let’s encrypt certificates are up to date and, if not, just request another one. Nothing more, no integration with other software configuration.

                                                                    I have looked in the handbook but there doesn’t seem to be a stock option. Also, I used pkg search but can’t make up my mind from the tenth of results :-/

                                                                      [?]OSNews » 🤖
                                                                      @osnews@mstdn.social

                                                                      OpenBSD gets CDE

                                                                      Adjusted for the inevitable progress of time, the Common Desktop Environment or CDE is the best desktop environment of all time, and no, I will not be taking question at this time. OpenBSD wasn't yet graced by CDE's presence, but this is currently changing as the first commit for porting CDE to OpenBSD has appeared.

                                                                      It's still rough around the edges and very slightly tested. I wouldn't use is as a

                                                                      osnews.com/story/142922/openbs

                                                                        [?]h3artbl33d :openbsd: :ve: »
                                                                        @h3artbl33d@exquisite.social

                                                                        The worst #OpenBSD hacking, breaking stuff, EOL software, cursing [SENSITIVE CONTENT]

                                                                        Sometimes the world has to fucking burn. Today was one of those days - so I challenged myself to see how easy it would be to get -current to run Python 2.7 code, alongside with downgrading modules (like lxml and cryptography).

                                                                        A bit ro my surprise - it was relatively easy to both install packages from 7.2 in -current and have it operating stable and smooth. When attempting this on Linux, it ends up uninstalling systemd :systemd: with most package managers :flan_XD:

                                                                        DO NOT TRY THIS AT HOME - OR WHEREVER - DO NOT TRY THIS AT ALL. YOU HAVE BEEN WARNED.

                                                                          [?]Shmok »
                                                                          @shmok@mastodon.bsd.cafe

                                                                          I am not skilled in various network technologies for configuring a server, can someone suggest something to try learning that comes part of the base installation to expand my skill set?

                                                                          I've considered setting up a CVS mirror, trying to figure out a multimedia server to play from or a NAS, or buy a domain and see if I can host a static website. I'm open to suggesting something more basic as a beginning point

                                                                            [?]Justine Smithies »
                                                                            @justine@snac.smithies.me.uk

                                                                            If I were to host on my reverse proxy, static site, git server running cgit, Syncthing, Radicale, snac instance. Would you put them all on the same machine or would you advise to split them up ? Not saying I'm going to but research is ongoing to see what I can host on one machine compared to my current one machine running with several jails for each service.

                                                                            Sorry if none of this makes any sense but that's just how I roll. 😂

                                                                              [?]Joel Carnat ♑ 🤪 »
                                                                              @joel@gts.tumfatig.net

                                                                              Failure of the day was trying to have #Peertube run on #OpenBSD...

                                                                              Everything looked pretty ok until I switched the instance online and it started doing... well, it's things... And then, BAM: peertube[26957]: node(84677) in free(): double free 0xb475cc26c20.

                                                                              Note sure if the previous

                                                                              "stack": "Error: Cannot find module '/var/www/peertube/storage/plugins/node_modules/sqlite3/lib/binding/node-v127-openbsd-x64/node_sqlite3.node'\nRequire stack:\n- /var/www/peertube/storage/plugins/node_modules/sqlite3/lib/sqlite3-binding.js\n- /var/www/peertube/storage/plugins/node_modules/sqlite3/lib/sqlite3.js\n- /var/www/peertube/storage/plugins/node_modules/@databases/sqlite/lib/index.js\n- /var/www/peertube/storage/plugins/node_modules/listener-rss-aggregator/build/sqlite-tools.js\n- /var/www/peertube/storage/plugins/node_modules/listener-rss-aggregator/build/listener-rss-aggregator.js\n- /var/www/peertube/storage/plugins/node_modules/listener-rss-aggregator/build/index.js\n- /var/www/peertube/storage/plugins/node_modules/peertube-plugin-auto-import-ytb/dist/src/main.js\n- /var/www/peertube/versions/peertube-v7.2.3/dist/core/lib/plugins/plugin-manager.js\n    at Function._resolveFilename (node:internal/modules/cjs/loader:1401:15)\n    at defaultResolveImpl (node:internal/modules/cjs/loader:1057:19)
                                                                              

                                                                              is the culprit. But as I don't understand a single thing about this... :)

                                                                              #SysAdminFail

                                                                                [?]joany »
                                                                                @joany@mastodon.bsd.cafe

                                                                                github.com/9001/copyparty

                                                                                Wow, running this on my

                                                                                I saw the YouTube recommendation, but i seldom get the "hype"
                                                                                Then a friend gave me the link

                                                                                Seems very interesting.

                                                                                  [?]Bradley Taunt »
                                                                                  @bt@mastodon.bsd.cafe

                                                                                  Was ordering myself a new X220 keyboard and a small, fan-less Intel-based router caught my eye (on sale!). I snagged both :)

                                                                                  When it gets here, I plan to swap out my hacked-together router (2012 mac mini) for it. The next goal would be to repurpose that same mac Mini as a web server my personal, public websites.

                                                                                  Only time will tell if I fail...

                                                                                    It's Just Me boosted

                                                                                    [?]Stefano Marinelli »
                                                                                    @stefano@mastodon.bsd.cafe

                                                                                    Ángel boosted

                                                                                    [?]Tim Chase »
                                                                                    @gumnos@mastodon.bsd.cafe

                                                                                    Me: huh, I don't remember logging out of my session on the kids' laptop…oh, right, I did a `doas sysupgrade`, it did the upgrade, rebooted into 7.7, and returned uneventfully to the login screen without requiring any additional intervention or thought.

                                                                                    There's something wonderful about an upgrade-process so boring that you can accidentally forget you did it.

                                                                                      [?]gyptazy »
                                                                                      @gyptazy@mastodon.gyptazy.com

                                                                                      I got asked if I could create a for creating a (public) service - just like I did recently for . With and you can also reach resource in the legacy internet () on only systems.

                                                                                      While this is based on and , there’s also a solution by using the 's native way which is also running on the other gateway. I’ll share a second how to how to do this in OpenBSD and pf.

                                                                                      gyptazy.com/howto-create-a-pub

                                                                                        Ángel boosted

                                                                                        [?]Russ Sharek »
                                                                                        @RussSharek@mastodon.art

                                                                                        While I was mucking about with an port, I got an email from github offering me access to their ai code writing uselessness.

                                                                                        No! Bad website!

                                                                                        *spritzes with water bottle*

                                                                                        My code doesn't work at the moment. Broken is still better than this offer.

                                                                                          Ángel boosted

                                                                                          [?]Jacob Farkas »
                                                                                          @farktronix@mastodon.bsd.cafe

                                                                                          This is my favorite part of the OpenBSD installer because I get it wrong every time, but I love that they anticipated it!

                                                                                          Text from the OpenBSD installer asking "Setup a user? (enter a lower-case loginname, or 'no')". 

The user enters "yes" and the next prompt says "No really, what is the lower-case loginname, or 'no'?"

                                                                                          Alt...Text from the OpenBSD installer asking "Setup a user? (enter a lower-case loginname, or 'no')". The user enters "yes" and the next prompt says "No really, what is the lower-case loginname, or 'no'?"

                                                                                            It's Just Me boosted

                                                                                            [?]Stefano Marinelli »
                                                                                            @stefano@mastodon.bsd.cafe

                                                                                            **BSD Mail Project Update!**

                                                                                            Hello everyone! I wanted to share some exciting updates about the development of BSD Mail, our privacy-focused email service designed with robustness, security, and transparency in mind. Here’s a deep dive into the technical choices I've made, focusing on my use of open source solutions and open protocols:

                                                                                            🌍 **Servers & Location**

                                                                                            - We're running on two physical servers:
                                                                                            - One hosted by OVH in France
                                                                                            - Another by Hetzner in Germany
                                                                                            - Both servers operate on FreeBSD with NVMe drives in a ZFS mirror configuration for speed and data integrity.

                                                                                            🔒 **Virtualization & Security**

                                                                                            - We utilize jails on both servers to ensure isolated environments for different services, managed via BastilleBSD. On one server, jails are set up directly on the hardware, whereas the other server employs nested jails.
                                                                                            - Each server hosts a bhyve VM running OpenBSD with OpenSMTPD for handling SMTP duties securely.

                                                                                            🔗 **Networking**

                                                                                            - A Wireguard setup connects the two servers, facilitating routing capabilities so that jails and VMs can communicate seamlessly, supporting both IPv4 and IPv6.

                                                                                            📧 **Email Services**

                                                                                            - **Dovecot** is configured for maildir replication across the servers using Dovecot sync, ensuring email availability and redundancy.
                                                                                            - **Rspamd** instances are tied to local KeyDB jails, set up in master-master replication for consistent and reliable spam detection and greylisting.
                                                                                            - **ClamAV** runs in corresponding jails for virus scanning, maintaining a high level of security.
                                                                                            - **SOGo** provides a web interface for email management, connected to MySQL databases in master-master replication to handle sessions and authentication smoothly.

                                                                                            💾 **Data Management**

                                                                                            - Email data is stored on separate, encrypted ZFS datasets to secure emails at rest.
                                                                                            - MySQL databases are used for storing credentials and managing sessions for SOGo, also in a master-master replication setup. Importantly, all passwords are securely hashed using bcrypt, ensuring they are salted and safe.

                                                                                            🔎 **Monitoring & Reliability**

                                                                                            - Our DNS is managed through BunnyNet, which continuously monitors our server status. Should one server—or a specific service—become unavailable, DNS configurations are dynamically adjusted to avoid directing users to the affected IP until full service is restored.

                                                                                            🌐 **Commitment to Open Source and Open Protocols**

                                                                                            - Every component of BSD Mail is built exclusively using open source software and open protocols. This commitment is crucial for ensuring data freedom and the reliability of the solutions we use.

                                                                                            This setup not only emphasizes our commitment to privacy and security but also our dedication to maintaining an open and transparent platform.
                                                                                            We're excited to bring you a service where your privacy, data integrity, and freedom are prioritized. Stay tuned for more updates!

                                                                                              Ángel boosted

                                                                                              [?]Stefano Marinelli »
                                                                                              @stefano@mastodon.bsd.cafe

                                                                                              It's official: the new email hosting service I'll be launching will run on OpenBSD as well. The two OpenSMTPD SMTP servers will operate on two OpenBSD installations.

                                                                                                [?]Stefano Marinelli »
                                                                                                @stefano@mastodon.bsd.cafe

                                                                                                Sharing some technical details about how I'm setting up the hosted email service. It will not be a service of BSD Cafe but tied to my own business. It will run entirely on BSD systems and on bare metal, NOT on "cloud" VPS. It will use FreeBSD jails or OpenBSD or NetBSD VMs (but on bhyve, on a leased server - I do not want user data to be stored on disks managed by others). The services (opensmtpd and rspamd, dovecot, redis, mysql, etc.) will run on separate jails/VMs, so compromising one service will NOT put the others at risk. Emails will be stored on encrypted ZFS datasets - so all emails are encrypted at rest - and only dovecot will have access to the mail datasets. I'm also considering the possibility of encrypting individual emails with the user's login password - but I still have to thoroughly test this. The setup will be fully redundant (double mx for SMTP, a domain for external IMAP access that will be managed through smart DNS - which will distribute the connections on the DNS side and, in case of a server down, will stop resolving its IP, sending all the connections to the other. Obviously, everything will be accessible in both ipv4 and ipv6 and in two different European countries, on two different providers. Synchronization will occur through dovecot's native sync (extremely stable and tested). All technical choices will be clearly explained - the goal of this service is to provide maximum transparency to users on how things will be handled.

                                                                                                  Ángel boosted

                                                                                                  [?]Solène :flan_hacker: »
                                                                                                  @solene@bsd.network

                                                                                                  Ángel boosted

                                                                                                  [?]Solène :flan_hacker: »
                                                                                                  @solene@bsd.network

                                                                                                  Running compositor on is very easy (only -current at the moment)

                                                                                                  - pkg_add sway
                                                                                                  - stop xenodm
                                                                                                  - log-in as your user in a tty
                                                                                                  - run /usr/local/bin/startsway.sh

                                                                                                  that's all :flan_thumbs:

                                                                                                  Screenshot of an OpenBSD desktop running the wayland compositor sway

                                                                                                  Alt...Screenshot of an OpenBSD desktop running the wayland compositor sway