Linux pays the bills, FreeBSD feeds the soul.
FreeBSD enthusiast. Networking, IPv6, firewalls, jails, and all things cleanly engineered.

This profile is from a federated server and may be incomplete. View on remote instance

@Larvitz@bsd.cafe avatar Larvitz , to random

RE: https://burningboard.net/@Larvitz/116070245739595515

ZFS on Linux? Technically, it mostly works just fine.

Why you still shouldn’t run it on a supported enterprise distribution is in my latest, intentionally less-serious blog post 🙂

@Larvitz@bsd.cafe avatar Larvitz , to random

The best way to reclaim your privacy is to own the infrastructure.

I migrated my email to a hardened FreeBSD setup. Encrypted at rest via ZFS, isolated via Jails, and owned by me. Not a data-mining giant.

If you want to build your own communication hub, here is the blueprint:

https://blog.hofstede.it/self-hosting-email-on-freebsd-a-secure-jailed-setup-with-postfix-and-dovecot/

@Larvitz@bsd.cafe avatar Larvitz , to random

New blog post: Hosting a Static Blog on FreeBSD with Bastille Jails

A deep dive into my self-hosting setup:

  • FreeBSD 15.0 with securelevel 2
  • Bastille jails for isolation (Caddy, Nginx, deployment gateway)
  • PF firewall with strict NAT/RDR rules
  • CI/CD via Forgejo Actions with rrsync-restricted deployments
  • nullfs mounts for zero-copy file sharing between jails

The "transporter pattern" keeps the blog jail unexposed while enabling automated deploys. Jails remain the most elegant isolation mechanism around.

https://blog.hofstede.it/hosting-a-static-blog-on-freebsd-with-bastille-jails-and-automated-deployment/

@Larvitz@bsd.cafe avatar Larvitz , to random

Yay, got bhyve :bhyve: running on my Laptop.

With Virtual Machines behind a local bridge and NAT via pf :-)

Just installed a test VM with Debian Linux and it's working flawlessly.

My FreeBSD :freebsd_logo: based workstation gets more feature complete every day :-)