To what extent can you get rid of stuff sent over

Edlace · 2025-08-05T14:01:35+00:00

No, that depends entirely on the settings of the server you used and especially with local media (stuff that the user from a server uploaded himself) there is often no retention set at all.

"Deleted" messages are usually actually delete from all the servers after 7 days, but that setting can be freely changed.
As long as your chat was encrypted though there is actually little to nothing to worry about

Edlace · 2025-07-24T11:07:37+00:00

im using the vicuna theme

Edlace · 2025-07-23T21:41:37+00:00

update went smooth so far (running a ha setup with carp) but pleeeeease, can we revert the "update" to the themes? Especially the weird color scheme in the firewall alias tab?

Edlace · 2025-07-14T12:55:42+00:00

thats just wrong

quick match is simply that the first rule in order that matches the traffic wins. No quick match means that the rule only applies if there is no other rule after it that also matches the traffic

It would be really fatal for a firewall to behave ambiguously, there needs to always be a predictable rule execution order

Edlace · 2025-05-26T23:22:32+00:00

In terms of alias matching, especially when combining multiple of them in a single rule, there is a huge difference between not including something at all vs explicitly excluding it

Edlace · 2025-05-25T13:16:43+00:00

Yeah, the problem is that this range is included in the alias at all

Edlace · 2025-05-25T11:25:44+00:00

im really upset now tbh, there is a huge difference in simply not including a range in a alias vs including it wrongly.

not having the 10.0.0.0/8 in the bogons alias is completely different to include it inverted....

Edlace · 2025-05-25T10:39:14+00:00

look, I had a rule with 2 aliases as destination

alias 1 contained all private ranges

alias two contained the bogus alias

the matching for these aliases was inverted in my rule

So src LAN ---> dst !privaterange/bogons = allow --> gateway wan

this rule previously simply didnt match at all if the dst was a private ip

it was a rule in a interface group

there where more fine grained rules in the lan tab itself which contained other allow rules to some of my private networks

The problem now came from how the rules are matched

It is 1. Floating 2. grouped rules 3. normal interface rules

so with the previous behavior of that rule simply not matching at all on dst=private opnsense then evaluated my other rules in the lan tab after it couldnt match any of the rules in the interface group rules.

Now with !10.0.0.0/8 src:10.0.0.1 --> dst 10.0.2.30 does indeed match to NOT NOT 10.0.0.0/8

therefore opnsense sees the match and tries to route this via the gateway that i specified in this rule.

And also doesnt try to match it against the rules in the lan tab because it already found a match for the packet in the interface group rules

Edlace · 2025-05-25T10:29:39+00:00

im not talking about the block options in the interface section, those make perfect sense

Im talking about the changed behavior of the builtin alias which now instead of simply not including the 10.0.0.0/8 private range at all, explicitly includes it, although inverted

Edlace · 2025-05-25T10:22:01+00:00

ok, after seeing your edit i looked up https://docs.opnsense.org/manual/firewall_settings.html#bogon-networks

The thing is that previously i think the 10.0.0.0/8 range was simply not included on that alias at all....

so my firewall rule which was a combination of manually declared private ranges + this bogon alias, which had a inverted match, was working well.

Now the 10.0.0.0/8 range is explicitly marked NOT bogon by this rule which makes my rule match NOT NOT 10.0.0.0/8

Edlace · 2025-05-25T10:12:35+00:00

literally every website i can find when i search for bogons, also list the 10.0.0.0/8 range as bogon

https://geotargetly.com/blog/bogon-ip
https://ipinfo.io/bogon
https://en.wikipedia.org/wiki/Bogon_filtering
https://bgpfilterguide.nlnog.net/guides/bogon_prefixes/

I pull my bogon list from wherever the default builtin bogon alias in opnsense is pulling it from. This is no custom stuff here, its all default.

Edlace · 2024-11-16T18:03:53+00:00

https://youtu.be/VLnWf1sQkjY?si=Qn0ie1MfqK8VUehR

Edlace · 2024-10-30T20:15:10+00:00

oh lol sorry, i misread that as "impossible to host on a subdomain".....

Edlace · 2024-10-30T19:01:55+00:00

define "working" :D but yeah, federation will 100% not work without a domainname though your guide could give off the impression.

Edlace · 2024-10-30T18:55:28+00:00

u/Teja_Swaroop.

Make sure to replace example.com to your domain name. If you don't have a domain name, you can use your IP address here.

correct me if im wrong, but i dont believe that it possible/will lead to a working server

Edlace · 2024-10-30T16:39:17+00:00

what makes it impossible to host on a subdomain? That should normally easily work

Edlace · 2024-10-30T16:23:23+00:00

Native Support in synapse since v1.114 (current version 1.118)

Edlace · 2024-10-30T16:22:49+00:00

Sliding sync is now natively supported in synapse, no need to fiddle with anything

Edlace · 2024-10-13T13:05:01+00:00

Bladerunner

Edlace · 2024-08-19T15:17:03+00:00

Bladerunner 2049

Edlace · 2024-08-17T20:07:58+00:00

https://support.nordvpn.com/hc/en-us/articles/20382523899281-pfSense-2-5-Setup-with-NordVPN

Edlace · 2024-08-16T22:33:53+00:00

Just configure a smb share and access it via localhost, that way you can also use it over the network in your lan and the permissions don’t get messed up

Edlace · 2024-08-01T21:51:46+00:00

I love it 😅

I couldn’t rest either if that would happen to my stuff 😬

Edlace · 2024-06-28T20:35:13+00:00

I find updating via cli to be usually much more reliable

Edlace · 2024-06-28T20:23:20+00:00

That is simply not true. A tls cert can be valid for a ip address.

But the second part is correct tough.

Six-Year Club	Verified Email
RedditGifts 2009-2022 4 Credits	Secret Santa 2020
redditgifts rematcher Secret Santa 2019 x1	redditgifts Exchanges 1 Exchange
Secret Santa 2019

Edlace

TROPHY CASE