Posts by Larvitz@burningboard.net
(DIR) Post #AwzQLTXEj3s3tGmOHY by Larvitz@burningboard.net
2025-08-09T09:53:04Z
0 likes, 0 repeats
@jae - Powerdns-Admin- API to use it in combination with ACME and Scripts- I find DNSSEC easier to maintain with PDNS
(DIR) Post #AxEtipzFEEe4E2ls12 by Larvitz@burningboard.net
2025-08-16T20:49:39Z
0 likes, 0 repeats
Started building my entire infrastructure monitoring solution from scratch!- Powered by FreeBSD! :freebsd: - Using Jails and seperation of duty: - One Jail running Grafana and Prometheus - One Jail running Netbird Wireguard to connect my infra securely - One Jail running Nginx and CertbotAll ZFS based for backup / snapshots and rollback options. Routed and NAT'ed via a seperate deficated pf jail.All working fine, I get first metrics and can start slowly improve from here.Todo: - Alerts via AlertManager- Log-Ingestion via promtail- Log analysis with Grafana Loki- Adding remaining servers via WireGuard Mesh VPN- Adding another Jail for Uptime-Kuma#monitoring #freebsd #grafana #loki #linux #devops #jails #bastille #zfs
(DIR) Post #AxGu3QMK5zw98jIna4 by Larvitz@burningboard.net
2025-08-16T10:56:03Z
0 likes, 1 repeats
In the past, I had a pretty car-centric life. I commuted to work by car (2x 25 minutes per day) and, for my work as an IT consultant, I drove around 80,000-100,000 kilometers per year.Then the pandemic came, and everything changed. I started working remotely, and business travel decreased to a minimum. I quickly got used to the additional free time and flexibility, and it made me substantially more productive.In 2023, I quit my old job and got hired at Red Hat. Since then, I do almost all of my business travel by train, and I genuinely enjoy it.The difference is profound. In a car, you need to be focused on the road. On a train, you can live—you can work, take a nap, eat something at the bistro, or just watch the world go by. In contrast to driving, it's not lost time; it's usable time.I never, ever want to go back and am glad that my life nowadays is so much better without being dependent on a car.#TrainTravel #RemoteWork #WorkLifeBalance #PublicTransport #CarFree #train
(DIR) Post #AyQTeozstB4f7QNmb2 by Larvitz@burningboard.net
2025-09-21T09:01:43Z
0 likes, 1 repeats
Big Tech isn’t the web. It’s an empire.• Built on surveillance capitalism. Your data = their profit• Algorithms engineered to manipulate, addict, polarize• Walled gardens with lock-in, enshittification as business model• Governed by US laws + politics (DMCA, Patriot Act, MAGA culture)• Controlled by a handful of tech billionaires in a digital aristocracyWhen you choose Big Tech, you choose profit over people, control over freedom, censorship over community.Free, open, decentralized alternatives break that cycle:No ads, no tracking, no dark patternsCommunity-driven, transparent, auditableNot bound to one country’s laws or corporate agendaDecentralization is digital self-determination.Choose people over platforms. Choose freedom. 💪#Decentralize #Fediverse #OpenSource #StopBigTech #Privacy #DigitalFreedom #unplugtrump #opensource
(DIR) Post #AyQewXK4RK2x0jTSzY by Larvitz@burningboard.net
2025-09-21T08:48:55Z
2 likes, 4 repeats
The old web was decentralized: - Newsgroups- Personal Websites- Bulletin board- Email as a service, not a platform- Internet relay chat (IRC)- Early blogsThen corporations arrived with money and lock-in, turning the internet into centralized ad farms (Meta, X, TikTok). Users became consumers, trapped in algorithms, tracking, and enshittification. Revenue more important than people.The Fediverse is a way back: no ads, no algorithms, no dark patterns. People first. A web worth reclaiming. And open source is the engine of this transformation. Take back the web. Decentralize again 💪 Bring people to the Fediverse, promote open source and build federated services.#TakeBackTheWeb #Decentralized #Fediverse #StopBigTech #OpenSource #DeGoogle #UnplugTrump
(DIR) Post #AyQewffzNiKgv1n5Ga by Larvitz@burningboard.net
2025-09-21T11:00:25Z
0 likes, 0 repeats
Wow I had to turn off notifications because my phone wouldn’t stop buzzing 😅Didn’t expect that post to resonate with so many people. Thanks for all the boosts, favs & thoughtful replies 🙌The fact that this topic hit a nerve shows: people want a better web. Decentralized, open, people-first. Let’s keep building it together 💪#Fediverse #TakeBackTheWeb #OpenSource
(DIR) Post #AyRPxK0k76StrPJIAq by Larvitz@burningboard.net
2025-09-20T19:52:57Z
0 likes, 0 repeats
@jwildeboer @jwildeboer I selfhost everything I can. E-Mail, File sync, Git forge, websites, Matrix and much more. My own Mailserver is maintained for more than 20 years already.For the other points: Heatpumps and solar unfortunately fails because of my landlord.And for transportation, I prefer the "no car at all" approach and am a happy Deutsche Bahn customer and eBike user 🚆
(DIR) Post #AyfUZbR1hvMMLbBDSi by Larvitz@burningboard.net
2025-09-28T12:15:44Z
0 likes, 0 repeats
i know have a little Gemini pod in the Geminispace :-) Of course, hosted on a FreeBSD server and securely running inside a Jail :freebsd: and with native IPv6.gemini://gemini.hofstede.itMore content there will follow 🙂 Gemini is a lightweight, privacy-focused alternative to the web.To browse Geminispace, you'll need a dedicated Gemini client (like a browser but simpler).https://geminiquickst.art/#gemini #geminispace #smallweb #opensource #freebsd #ipv6
(DIR) Post #AyfUZe9Pbs3IlpxgvI by Larvitz@burningboard.net
2025-09-28T12:48:31Z
0 likes, 0 repeats
@thorstenzoeller @tux Exactly! The simplicity and elegance of it, is what I find so appealing. I run it with an absolutely minimal footprint inside a FreeBSD jail/container
(DIR) Post #Aym98l9WjO8vjk4aP2 by Larvitz@burningboard.net
2025-10-01T19:29:11Z
1 likes, 0 repeats
HSI:4 (Host Security ID Level 4) achieved!My ThinkPad T14s Gen4 AMD + Fedora 43 (Beta) setup featuring:- Secure Boot- TME (Total Memory Encryption)- IOMMU + pre-boot DMA protection- TPM 2.0 with PCR0 reconstruction- SPI replay protection- CET platform support- Kernel lockdown enabledPlus the software layer:- LUKS full-disk encryption- NitroKey 3 (fully open-source hardware token!)- FreeIPA + Smartcard authentication- SELinux enforcingDefense in depth, the open-source way.#linux #fedora #security #itsec #nitrokey #crypto #opensource #thinkpad
(DIR) Post #Az6pFdEyd1k2SemR2O by Larvitz@burningboard.net
2025-10-11T19:21:07Z
1 likes, 0 repeats
I donate money to an open-source project every quarter. I always choose one, that was helpful for me or that had a great new release.For Q3/2025 this was now @nitrokey because I absolutely *love* their products. Open source powered hardware crypto keys with FIDO, gpg and PIV. All powered by an Open Source firmware, written in Rust. This is true digital sovereignty! I use it for everything. LUKS, SSH, Mail signing, Git signing, VPN authentication, WebAuthN and more.Amazing product from a company with an amazing spirit! This should absolutly be supported. #linux #security #nitrokey #donation #opensource #foss
(DIR) Post #AzPCs61TrNoyWV3YEy by Larvitz@burningboard.net
2025-10-20T07:19:20Z
1 likes, 1 repeats
20+ years of self-hosted email. Windows-free since 2007 and only using Linux and BSD based computers. Here's my big tech exit so far:X -> Mastodon Reddit -> LemmyWhatsApp/iMessage -> Matrix & ThreemaGoogle Drive -> Nextcloud iCloud Photos -> ImmichNetflix -> Jellyfin & optical mediaAudible -> AudiobookshelfUbiquiti -> FreeBSD routerHomePod -> Home AssistantGitHub -> Codeberg/ForgejoCloud-Computing -> Netcup from GermanyOnline News outlets -> TinyRSSStill trapped: iPhone (ecosystem lock-in is real)#selfhosted #digitalsovereignty #unplugtrump #linux #bsd #bigtech #decentralize #fediverse #digitalfreedom #privacy
(DIR) Post #Azsa6Dc8ShIbmUtdGS by Larvitz@burningboard.net
2025-11-03T18:01:39Z
0 likes, 0 repeats
@Tempest @fox Updating Mastodon isn't hard anyway. We usually update on day0 when a new release drops.We do automated file-system snapshots (copy-on-write) of the servers datasets in 20 minute intervals via sanoid.As user mastodon:$ git stash$ git fetch$ git checkout v4.5.0-rc.2$ git stash pop $ bundle install$ yarn install --immutable$ RAILS_ENV=production bundle exec rails assets:precompile$ RAILS_ENV=production bundle exec rails db:migrateAs user root (in the individual jails):# service $service restartThe last updates 4.4 -> 4.5 did take less than 10 minutes (and that with a pretty large Postgres database already)
(DIR) Post #AzsaMl4bpS72Bd6LS4 by Larvitz@burningboard.net
2025-11-03T20:22:47Z
0 likes, 0 repeats
@fox @Tempest idk. Our Mastodon codebase has quite a lot of modifications:- Additional themes- Code-Modifications for polls, post length, profile fields, SMTP handling , YT-Embed handling etc.- Custom code to fetch additional replies from not federated instances- Custom design modificationsMostly "git stash pop" merges these with the new tag. And sometimes, I haver merge-conflicts, that I manually solve. So far, that approach worked wonderfully for the last ~4 years for me.YMMV.
(DIR) Post #B0v33HbwY92kqoo7Q8 by Larvitz@burningboard.net
2025-12-04T22:25:35Z
0 likes, 0 repeats
Nice #Wrapstodon #Year2025 #lookingback #mastodon #2025 #linux
(DIR) Post #B0v3vf0zkZ4V4hSDyq by Larvitz@burningboard.net
2025-12-04T22:55:33Z
0 likes, 0 repeats
@fox yes if your instance admin enables it
(DIR) Post #B10XdhTnogxNvC52kS by Larvitz@burningboard.net
2025-12-07T14:21:39Z
2 likes, 1 repeats
Just published: how I migrated the Mastodon instance burningboard.net to a multi‑jail FreeBSD setup with BastilleBSD. Central PF firewall, real dual‑stack, and clean service separation.https://blog.hofstede.it/migrating-burningboardnet-mastodon-instance-to-a-multi-jail-freebsd-setup/#FreeBSD #BastilleBSD #Mastodon #SelfHosting #IPv6
(DIR) Post #B1RcKqgTNrGITOVgGG by Larvitz@burningboard.net
2025-12-20T14:29:02Z
1 likes, 0 repeats
Ever heard of Gemini? It's a lightweight internet protocol between Gopher and the Web - no JavaScript, no cookies, no tracking, just text and links over TLS.Think of it as the web before it got complicated. Pages are written in "gemtext", a minimal markup format. The entire protocol spec fits on a few pages.To explore Geminispace you need a client:- Lagrange (GUI, cross-platform): https://gmi.skyjake.fi/lagrange/- Amfora (terminal): https://github.com/makew0rld/amforaStart exploring at gemini://warmedal.se/~antenna/ - an aggregator of active capsules (what we call Gemini sites).I write about FreeBSD and self-hosting at gemini://gemini.hofstede.it/#gemini #geminiprotocol #smallweb #indieweb #freebsd
(DIR) Post #B2eZ6y9nC0rYh9Jx20 by Larvitz@burningboard.net
2026-01-25T10:36:49Z
0 likes, 1 repeats
Life is Strange: Before the Storm has a native Linux version, but it won't start on modern distros like Fedora 43. The game links against internal glibc symbols that were removed in glibc 2.34.The fix: a tiny shim library (~10 lines of C) that wraps the missing functions and injects them via LD_PRELOAD. Played through tentire game this way without issues.https://blog.hofstede.it/reviving-life-is-strange-before-the-storm-on-modern-linux-with-a-glibc-shim/#Linux #Gaming #LinuxGaming #Steam #Fedora #LifeIsStrange
(DIR) Post #B3BjWTUZEn3EsPW4TQ by Larvitz@burningboard.net
2026-02-10T19:27:14Z
0 likes, 0 repeats
New blog post: I added Fediverse-based comments to my Pelican blog. No Disqus, no database, just the Mastodon API and a bit of JavaScript.Replies to this post will show up as comments on the article.Inspired by the blog of @jwildeboer - I ported it to Pelican's Jinja2 templates.https://blog.hofstede.it/adding-fediverse-comments-to-a-pelican-blog/#Fediverse #Mastodon #ActivityPub #Pelican #Blog #SelfHosting