The french company OVH provides Kimsufi dedicated servers. The KS-10 ships with Intel® Core™ i5-2300 and 16GB DDR3 of RAM. The main drawback is that there is no KVM-IP or HTML console. This means you can’t run FDE configuration. AFAIK. But in case you don’t care, there’s a way to install the “unsupported” OpenBSD release on those machines.
I’m using unbound(8) on OpenBSD to block Ads. In the logs, I can see which domains were queried and blocked ; but I like to have a more graphical overview of whats happening over weeks. So I stole a few ideas from the Pi-Hole Web Interface, routed the logs to InfluxDB via syslog-ng and rendered statistics using Grafana.
The Internet is full of Ads and Trackers. Some of them are useful to monetize free content. Some are used in a non-ethical manner. Savvy users will configure Ad-Blocker on their Web browser. Others won’t. Most Appliance and IoT modules won’t allow third-party blocking addons.
Here’s how to add an extra layer of privacy using OpenBSD and its unbound(8) DNS resolver.Continue reading “Blocking Ads using unbound(8) on OpenBSD”
Running OpenBSD on the laptop makes is safe by default. But encrypting the storage of the OpenBSD laptop makes it even safer. This is how my ThinkPad X230i gets encrypted and won’t boot without the proper USB thumb drive plugged in.Continue reading “OpenBSD laptop with Full Disk Encryption”