sysadafterdark
13.1K posts

sysadafterdark
@sysadafterdark
💻 Bastard Operator From Hell | ❤️ @mandolinsara | 🟡 Libertarian
Kalamazoo, MI Katılım Aralık 2020
2.1K Takip Edilen13.7K Takipçiler

@sysadafterdark Pickle, onions, bacon and some spicy mustard. Pass on explosive D.
English

I've been a bit burnt out and had a no computer policy for the past week. Decided to hop on and play through Dungeon Siege II for a bit since it's junk food to my brain.
Asked clanker to give me a name for my character. It responded with names and told me to give Casper (my cat) a treat when I make it to a certain area.
I hate technology so much, man.
English
sysadafterdark retweetledi

I co-founded pfSense. For the last year I've been building its successor.
If you run pfSense today, you already know the reasons to look around: development you can't influence, a CE edition that feels like an afterthought, FreeBSD driver roulette on modern hardware, and a config workflow where one bad apply on a remote box means a drive.
nfSensei is my answer. Built from scratch in Rust, on Linux, and designed around the things pfSense users actually complain about.
Your config.xml imports. There's an importer that reads your pfSense config, shows you exactly what maps over and what needs attention, then applies it. You don't start from zero.
You can't brick it from the couch. Changes stage as a candidate, diff before apply, validate through the real engines before anything is written, and auto-roll-back if you don't confirm in time. If a config ever fails at boot, the box falls back to the last good one on its own.
The hardware works. Linux base means modern NICs and drivers just work — and the fast path compiles your rules to XDP at 40Gbps.
Automation is native, not scraped. Everything the UI does is a documented API call — about 1,140 of them, with a built-in explorer. Your Ansible finally gets a real interface.
The VPNs are current. WireGuard, IPsec, Tailscale, and self-hosted mesh — your own control plane, your keys — plus post-quantum key exchange where it counts.
The experimental stuff has its own wing. Thirty-plus Labs features behind toggles: WAN bonding that fuses multiple cheap uplinks through a $5 VPS into one resilient pipe, per-flow SLA telemetry with tamper-evident audit chains, GeoDNS that steers traffic by live RTT and load, application-aware QoS, config push to a whole fleet of remote nodes, and an AI assistant on the box that reads your actual interfaces and logs using local models. Toggles are per-browser and can't touch your running config — flip things on, break them, tell me about it. Oh, and there is much more to mention here!
Self-hosted, on your hardware, no cloud account, no subscription.
It's NOW IN ACTIVE BETA (previously alpha) with about 40 testers, and bug reports typically get fixed in days. I want more people who know what pfSense does well and can tell me exactly where nfSensei falls short.
If you are interested in testing please email me: sullrich@gmail.com. Tell me about your pfSense setup and I'll get you access.
Note: Affiliates and employees of Netgate are not invited.
English

@AWar1586398 Literally every VPS with a public IP. That’s how it works.
English

@sysadafterdark Who has any part of their internal LAN naked on their WAN link?
English

….aaaaand that’s why I put that box on its own VLAN with heavy ACLs. Frickin clankers, man.
✨_geeknik_//✨@geeknik
300,000 exposed Ollama servers run unauthenticated, no login needed. Bleeding Llama (CVE-2026-7482) dumps full memory, including AWS keys, in three API calls. cybersecurityintelligence.com/blog/the-unman…
English

@therealazzurro It boils down to noobs not knowing what they are doing with their shiny new publicity routable VPS with no firewall enabled by default using someone else’s docker compose they know nothing about.
English

@sysadafterdark why the hell does anyone put anything on the internet just like that
English

I think this is what i want to see. Next up, OpenWebUI? Maybe I can get OIDC auth going and give @mandolinsara someone to talk to when she find me too boring? 🤣

English

@mandolinsara Proud of you. I quit cigs for Zyns and I don’t think I can go back.
English

@hoochiepapa They’re coming across the lake now on target for me!
English

@sysadafterdark thunderstorms here, just looking at that makes me nervous.
English

@danjones Nah, our grid can easily handle heavy loads, even from air conditioners. Besides, that’s what the UPS is for!
English

@sysadafterdark would be a damn shame if your power just fell out.
English

@beverins It’s nothing new. People have been schitzo posting stuff like this was possible since the XP Genuine Advantage days. I just didn’t expect Microsoft to publicly state their capabilities.
English

@sysadafterdark Well Microsoft has exposed what they’re been doing
The thing about exposing stuff like that… now everyone knows and a new target has been painted
English


@UK_Daniel_Card I’d give my left one to go back to this era. Let those Pentium III Xeons be free!
English

I got rid of all my Windows computers at home because I was tired of coming home from work and working. Actually pretty crazy how things got fun and interesting again once I broke the cycle.

SwiftOnSecurity@SwiftOnSecurity
I admire IT people 20 years in who still run home labs. It's like coming home from the egg salad sandwich factory, hearing, "what do you want for dinner, honey?" And saying, "same thing we have every night: egg salad sandwiches."
English




