When writing a #daemon that follows best practices (handling of #detaching with a locked #pidfile, and #SIGHUP for #configuration #reload), an extremely simple "init script" will do (reliably!) for #FreeBSD's mewburn-rc.

Call for testing and comment: Make the installer prefer >1G disks https://www.undeadly.org/cgi?action=article;sid=20250502060000 #openbsd #installer #disks #storage #softraid #keydisks #partitioning #development #configuration

What #Ansible Project/Module/Role should I use to provision an #OpenWRT Router?

#ansible #configuration #configurationmanagement

https://forum.openwrt.org/t/what-ansible-project-module-role-should-be-used-to-provision-an-openwrt-router-from-scratch/229252

Guide to Interpreting Security Incident #Announcements:

"extremely sophisticated attack" : The attackers put more time into the attack than we spent designing our defences.

"no evidence customer #data was accessed" : We lack audit records and the logs have been rotated out.

"due to a misconfiguration issue" : We deployed with default #insecure settings.

"possible for only a short window" : We didn't dig too deep to determine how far back the bug existed.

"crafted invalid request data" : We forgot to add input #validation.

"supplementary fix" : We didn't understand the problem as well as we thought, so our previous fix was insufficient.

"may have been exploited" : We're positive they got away with data, but they deleted our #logs.

"multiple threat actors" : Everyone was in our systems before we noticed.

"most customers are unaffected" : There are corner cases that aren't as #vulnerable.

"error in a third-party component" : We forgot to update our dependencies.

"could lead to remote code execution" : You're #p0wned.

"malicious activity has been observed" : The issue has already appeared in the press.

"review equipment inventory to verify if devices require other mitigations" : You need to buy new stuff.

"remotely exploited to allow authentication bypass" : We forgot to require #login for this function.

"not aware of any exploits in the wild" : The attackers aren't bragging on darkweb fora yet.

I've pushed an update to #emacs #substrate, my rock-bottom emacs #config starter. I've decided to cement 'straight' as the base package manager and done some rework on the base package install. I had to change the default theme from evangelion-theme to challenger-deep. I suspect this is because evangelion does not support emacs 30.1.

https://github.com/Etenil/emacs-substrate

Alright, now #emacs #substrate supports #evilmode for those who can't resist a touch of #evil!

#configuration

https://github.com/Etenil/emacs-substrate

#Settings in #reticulum #meshchat #reticulummeshchat #rns for #lora #radio #mesh Always set your stationary / radio #rnode #rnodes to be #gateway nodes (#interfaces) for effective #routing in your #mesh. See Sect 6.14 of rns #reticumlumnetworkstack manual
https://reticulum.network/manual/Reticulum%20Manual.pdf
(and of course always also as #transport node else message packets from other nodes won't spread) Set the settings in the #configuration file or #update the #meshchat program now & set to gateway in the settings menu.

"Perhaps, even though they are not themselves explainable, AIs can help us engineer explainable systems. But I’m not optimistic. It feels like we’re on a path to keep making systems harder for humans to configure, and we keep expanding our reliance on superhuman intelligence to do that for us."

Today I configured logging for a public-facing AWS application load balancer that routes to a lambda function. OMG.

The New Stack: https://thenewstack.io/the-configuration-crisis-and-developer-dependency-on-ai/

Sometimes the role of an #opensource maintainer is to understand when your project is mature and say "no" to most feature requests because the extra complexity isn't worth it.

One recurring request for a popular config module is hot config file reloading, a feature we've rejected many times.

This was today's response explaining why you might not want that feature and why we are rejecting it again:

https://github.com/node-config/node-config/issues/781#issuecomment-2573737173

What's your take: Do you prefer immutable configs?

I have not blogged in nearly two years, so I thought I would blog a summary of the changes I made to my Emacs configuration over the last year. I have been going at my Emacs configuration for over thirty years, and it is still not done!

Enjoy - https://dev.to/oliverburn/emacs-2024-changes-4n0p

Is there any #kickstart #nvim equivalent for #i3 / #sway ? #configuration #linux #desktop

With the release of the nethsm-config crate in version 0.2.0 we have added some exciting new features!

https://crates.io/crates/nethsm-config/0.2.0

A fully validated #configuration file type can now be used to map various system user types to #NetHSM users.
This file format brings us a step closer to our first test setup for #Signstar.

How to set up a mimimal/blank new tab page on Ungoogled Chromium that conforms to your system’s dark mode setting:

https://github.com/ungoogled-software/ungoogled-chromium/issues/1675#issuecomment-2490597528

PS. You can install Ungoogled Chromium easily on macOS using Homebrew:

```shell
brew install --cask eloston-chromium
```

For more macOS setup/configuration tips see my quick gist:

https://codeberg.org/aral/gists/src/branch/main/mac-setup.md

Setting up a new Mac, I finally got round to documenting my setup, including the utilities, privacy apps, etc., I use as well as my fish shell and Helix Editor configurations, Homebrew apps, fisher plugins, etc.

In case you’re curious, here it is:

https://codeberg.org/aral/gists/src/branch/main/mac-setup.md

Linux GPU Configuration Tool LACT 0.6.0: NVIDIA support added (next to AMD)

Originally a control center for AMD GPU's - we now have both main gaming devices in.

/w NVIDIA:

◉All core functionality
◉Monitoring / clocking configuration
◉Power limits / fan control
◉Works under modern display server Wayland
◉...plus many updates for the already existing AMD

https://github.com/ilya-zlobintsev/LACT/releases

HEY! I just noticed that the “Let admins easily set character limit” issue on Mastodon github had activity in the past 3 weeks?

Can anyone confirm whether this means Mastodon admins will be able to set character limits easily on their instances without needing to manually edit files?!

#SelfHost #Mastodon #Github #Admin #Configuration

https://github.com/mastodon/mastodon/issues/12265

In today's #SystemCrafters video, I'll show you how to get started with Guix Home by putting together a small "home-environment" configuration that customizes Bash and integrates your existing config files.

I'll also show you how to test your new config before applying it and how to roll back changes when things go horribly wrong!

https://www.youtube.com/watch?v=XRL3J6rfb3w

Show notes can be found here: https://systemcrafters.net/craft-your-system-with-guix/guix-home-getting-started/

In the latest #SystemCrafters video, I'll show you the strategy I use to organize my Guix configuration files so that I can manage multiple system configurations, home configurations, and custom package and service definitions.

We'll use the power of Guile to turn the whole configuration into Scheme modules!

https://www.youtube.com/watch?v=PGGvoabfvkM

https://systemcrafters.net/craft-your-system-with-guix/how-to-organize-your-config/