bill, technomancer

@bill@bsd.network
244 Followers
259 Following
82 Posts
Former distance skateboarder and part time poet. Balancing homelab, gym time, family life, and doing cool stuff.
pronounshe/him
genderOpenBSD & inevitability
hot takeit's not cynicism if it keeps happening.
bill, technomancer4d ago

Oh great Fedibrain, I have a burning question!

I would like to cut through all of the SEO garbage in search about effective workplace and safety communication. I'm looking for teachable models that ensure conversations result in a standardized approach to:

  • Raising issues
  • Responding to concerns
  • Getting attention or focus on hazards
  • Ensuring everyone understands what those mean
  • Ensuring everyone understands the appropriate response
  • Knowing when an issue is complete, and understanding indicators that the issue is closed.

I've seen this in different locations. The US Army has a pedagogy around this. Many organizations that do safety inspections have an entire culture around this (SGS, for example). Japan has models of some of this behavior, where in many places a person points and says, in a specific manner, what to watch out for.

I'm looking for short classes on this, or books people can reference, something I can suggest to some management folks.

bill, technomancer6d ago
/DΞV/ЯДИDФM6d ago

My dearest OpenBSD / OpenSMTPd / Dovecot / Roundcube gurus.

I absolutely love OpenBSD as my mail server but there is one piece I've never been able to figure out:

Is there a way to be able to create filter rules for Dovecot and within Roundcube mail? I'm just not sure how to find out how to do this?

I've been using imapfilter fine but it would be nice to do this the lazy, GUI way inside Roundcube, if possible.

Guidance very much appreciated!

bill, technomancerMar 2
Justine SmithiesMar 2
Hypothetically if I were to look for another #ThinkPad on the likes of Ebay ( new as in not older than 4-5 years ) and wanted to use #OpenBSD on it with working suspend and resume as well as working intel AX200/AX210 WiFi.
Which model would you suggest ?
bill, technomancerMar 1

If you live in Colorado, you may want to get on the phone directly to your legislator about SB 26-051 which is going to force age verification into every aspect of an OS.

#HardenedBSD

bill, technomancerFeb 28
Phillip VuchetichFeb 28
Since online review sites are full of biased and inauthentic reviews, are there any personal recommendations for a point of sale + online payment processing and reservation system for a new, tiny nonprofit in the US? About 20 or so local artists will be part of 501(c)(3), which will have scheduled classes, recurring membership fees (for access to studio resources), and retail sales of local artist work (need to track per-artist inventory / commission). Initially they are looking at Square Plus because some of them are already familiar with the hardware, and it seems to meet all the requirements, but a post on payroll processors by @coreysnipes reminded me to look at alternatives. Basic CRM/marketing (probably just bulk email to existing customers about upcoming events) would be needed, but can be separate. The price point of $300 POS hardware and $50/month + <=3% credit card fees looks like an amount that could be budgeted. They are making a Wordpress website, so it could either be integrated with that or just link to another site. Thanks!
bill, technomancerFeb 28

After looking at open source api docs last night, do you know what would be really helpful, especially with the Linux focused ones (because most of those assume dependency on search)?

If the people writing the API docs would stop using common words for modules, calls, etc. Even better is if the docs for the API entry are exact matches for what is written in the code.

A module called "stasis" is a terrible name. Worse is naming something m.stasis but documenting it in the API docs as Stasis. Searching for "Stasis" or other common dictionary words is a bad idea. Not much better than naming calls and modules: a, the, and, so, huh, and that.

Maybe I should write a worst practices example app for April 1.

bill, technomancerFeb 27

Any thoughts on alternatives to DUO for heterogeneous self-hosted MFA managed systems? Would like to explore something NOT integrating with Persona.

https://infosec.exchange/@tinker/116142810017259522

Tinker ☀️ (@tinker@infosec.exchange)

Attached: 1 image So Duo (the multifactor authentication service that #infosec loves) has integrated with Persona (the privacy destroying, Peter Thiel backed, AI-linked, facial scanning and mapping "identity verification" software) You know the recent Discord snafu that received such massive pushback and caused so many people to leave Discord that they've dropped their identity verification? Yeah, that Persona. Duo integrates it into Duo Premier, Duo Advantage, and even Duo Essentials... ...which means many working class folks will have no option but to be enrolled into and use Persona... ...or be fired. https://duo.com/docs/identity-verification #Duo #Persona #Privacy #Discord #AI

Infosec Exchange
bill, technomancerFeb 26
Adrian Roselli, pH0Feb 26

“Blind refugee abandoned by Border Patrol is dead”
https://www.investigativepost.org/2026/02/25/blind-refugee-abandoned-by-border-patrol-is-dead/

Given the statements from #Buffalo cops, the medical examiner, and Border Patrol, none of them should be investigating this.

Blind refugee abandoned by Border Patrol dies in Buffalo.

A nearly blind refugee abandoned by Border Patrol miles from his home dies in Buffalo after having been missing for nearly a week.

Investigative Post
bill, technomancerFeb 26

Oh, for fuck's sake, why the hell are SSL certs being issued now for only 200 days instead of a year?

Why not make it 199 days? 32 days? 1.3 days? 4.32 hours?

bill, technomancerFeb 23

The last two weeks of support from a well known storage provider has been abysmal. This prompted me to go through our reports for the last year. Across all of them, all support has been awful, as in catastrophically bad.

I can't think of a single product or service vendor that didn't cause an outage for us in the last year, bad.

These aren't just the low end contracts or low end vendors. This is the major names. Everything about them has been decoupled from the feedback loops which allowed the support organizations to thrive. Every single group now has anonymized support teams where we rarely see the same person twice for subject matter where staff is not easy to replace. Most of our tickets bounce through multiple queues and we are regularly lied to about the status of work or who is doing the work, or if any work was actually being done. The true subject matter experts are often one or two people, if the org is lucky to have even those staff left.

Everything about the support management process has become noticeably worse. This adds pressure on small teams like mine, where we are already stretched and cannot continue to compensate for the lack of engineering level support for complicated products that no longer have accurate, complete or updated product or service documentation.

No wonder people are either leaving IT, or refusing to major in IT related studies. This field is being killed off.