Notices by h3artbl33d :openbsd: :ve: (h3artbl33d@exquisite.social)

@stefano @fosdembsd @mwl

Totally. Six lines of Postfix config are equal to three letters (!) for OpenSMTPD: tls.

@mwl @stefano @fosdembsd

Yeah - totally. Slay the Gods. I mean - there is a certain case for the looney bin that is Postfix.

I might be a privileged postmaster - but no legacy crap for me.

@fosdembsd @stefano @mwl

I read that book while travelling to EuroBSDcon. Totally alleviated my pains - by realizing how much I like #OpenSMTPD :flan_hacker:

@stefano @mwl @fosdembsd

Exim. Please stop.

I have sent a USB drive to Ireland, by mail. It took 160 hours, end to end, for 250GB.

Meaning: the sneakernet transfer went with 434KByte/s.

It would have been much faster if we did the transfer over the internet. My connection is 1Gbit FttH. The other end would be the limiting factor, since they have a 80Mbit connection.

If we calculate in some overhead and transfer those 250GB at 70Mbit/s, then it would have taken 7 hours and 56 minutes.

Cool excersize though!

We might have a world first on a proper and just DRM implementation :flan_hurrah: Signal has implemented DRM to protect against the adversarial functionality dubbed Recall :flan_molotov:

#BurnTheClouds

Google has announced that from May, 30, 2025, they will stop supporting 3DES for incoming SMTP.

I had to triple check whether that announcement was a (very) late April Fools prank. It isn't. They are dead serious :flan_nooo:

Meh. OnlyOffice is Russian and they tried to obfuscate it.

@wizzwizz4 @Gina

A moderator should be able to view a users details and reports about them. Having no access to the (limited) user view has a real impact on judgement calls for a moderator.

A moderator can virew the uses details - like previous reports and their e-mail address. And their IP address, if not disabled by the server admin.

A moderator is not able to hijack access to DMs. Even an admin can't do that from the interface. It is possible, but requires access to the database and being able to run queries and/or exports there.

It always remains an issue of trust. Larger instances can't be run by a single person, so you'll have to trust the admins to pick the moderators wisely.

If you are not okay with that, you can always spin up your own instance. That gives you full control, but can also be a burden because of the responsibilities that come with it.

OpenSSH 10.0 is out! :flan_hacker:

True story #selfhosting

Just read this in the docs of a PHP script:

Run as root if you get a permission error.

Run, Forrest, Run :flan_molotov:

@BeAware

People are SO brainwashed

This scares me more than anything else. Is mankind that susceptible to misinformation?

BlueSky has reached 30 million victims.

It is just the next big tech silo. The federated aspect of it is a lie - can't really create an instance for it. Only partial - and even that is broken beyond repair.

I am preaching to the the choir here: but please, please try to raise awareness with your beloved ones and help them make the jump to the Fediverse.

Silos will eventually enshittify. It isn't a question of if, it is a question of when.

@abstractcode

This os exactly what makes projects like #OpenBSD and #HardenedBSD a bliss to use. 'Dogfooding' is the de-facto scenario.

#Signal is gaining massive traction and adoption in the #Netherlands :flan_hurrah: It currently holds the first position on Google Play (category: communication) and the iOS App Store (category: social networking).

@GossiTheDog

Open question - no wrong answer possible: would you be okay wearing the CISO hat? There is quite a lot of politics involved. More than I can personally stomach as a techie :flan_XD:

@farshidhakimy @dale_price

GrapheneOS has contact scopes which is a working implementation of this. It allows to select which contacts you want to share (if any) and offers that to the application. If you seleted none, then it'll be just an empty address book.

You didn't near this from me...

Signal has been working on encrypted clud backups for quite a while. The hopes were that we would see this come to frution at the end of this year, but Meredith Whittaker has just dashed that.

Word is that the current ETA is March 2025. This won't impact local backups or selfhosted backups, but will fix one feature request that has been asked by many over the last years: cross-platform migration (eg, facilitating iOS => GrapheneOS).

A lot of additional details remain to be seen. It is likely that Signal will offer the cloud (in addition to). Only time will tell. But the cross-platform migrations: whoohoo!

#Signal

Flatpak, after many years, is still an insecure shitshow.

Yes. That article is four years old. It still applies :flan_peek: