About me: My name is Solène Rapenne, pronouns she/her. I like learning and sharing knowledge. Hobbies: '(Qubes OS BSD OpenBSD Lisp cmdline gaming security QubesOS internet-stuff). I love percent and lambda characters. Qubes OS core team member, former OpenBSD developer solene@. No AI is involved in this blog.

Contact me: solene at dataswamp dot org or @solene@bsd.network (mastodon).

I'm a freelance OpenBSD, FreeBSD, Linux and Qubes OS consultant, this includes DevOps, DevSecOps, technical writing or documentation work.

2025

2025-03-09 PDF bruteforce tool to recover locked files

2025-01-12 Introduction to GrapheneOS

2024

2024-12-18 Presentation of Pi-hole

2024-12-07 Getting started to write firewall rules

2024-11-02 Self-hosted web browser bookmarks syncing

2024-10-19 Using a dedicated administration workstation for my infrastructure

2024-10-19 Securing backups using S3 storage

2024-10-04 Asynchronous secure file transfer with nncp

2024-09-12 I moved my emails to Proton Mail

2024-08-31 How to use Proton VPN port forwarding

2024-08-14 Emails encryption at rest on OpenBSD using dovecot and GPG

2024-07-24 Full-featured email server running OpenBSD

2024-07-02 WireGuard and Linux network namespaces

2024-06-08 OpenBSD extreme privacy setup

2024-05-24 Improve your SSH agent security

2024-04-27 OpenBSD scripts to convert wg-quick VPN files

2024-04-20 A Stateless Workstation

2024-03-30 Lessons learned with XZ vulnerability

2023

2023-12-31 OpenBSD workstation hardening

2023-12-24 Qubes OS backup transfer from old to new computer

2023-11-03 Run your own Syncthing relay server on OpenBSD

2023-10-18 Run your own Syncthing discovery server on OpenBSD

2023-10-04 Port of the Week: Presenting Syncthing

2023-09-24 Firefox hardening with Arkenfox

2023-09-08 How to add pledge to a program in OpenBSD

2023-08-05 Authenticate the SSH servers you are connecting to

2023-06-22 Ban scanners IPs from OpenSMTP logs

2023-06-17 Why one would use Qubes OS?

2023-06-17 Using git bundle to synchronize a repository between Qubes OS dom0 and an AppVM

2023-06-16 OpenKuBSD progress report

2023-06-06 OpenKuBSD design document

2022

2022-12-01 Authentication gateway with SSH on OpenBSD

2022-11-20 Automatic prompt to unlock remote encrypted partitions

2022-11-17 Hard user separation with two NixOS as one

2022-10-06 A NixOS kiosk

2022-10-02 Extending fail2ban on NixOS

2022-09-29 Automatically ban ports scanner IPs on NixOS

2022-09-25 How to trigger services restart after OpenBSD update

2022-08-03 Creating a NixOS live USB for a full featured APU router

2022-07-23 How to use sshfs on OpenBSD

2022-07-19 How to use Docker from a Linux host system to escalate to root

2022-04-23 Routing a specific user on a specific network interface on Linux

2022-01-13 Harden your NixOS workstation

2021

2021-12-20 Restrict users to a network interface on Linux

2021-12-16 OpenVPN on OpenBSD in its own rdomain to prevent data leak

2021-07-30 Automatically lock screen on OpenBSD using xidle and xlock

2021-07-25 OpenBSD full Tor setup

2021-06-12 How to use Tor only for onion addresses in a web browser

2021-05-09 Introduction to security good practices

2021-03-21 Securely share a secret using Shamir's secret sharing

2021-02-14 What security does a default OpenBSD installation offer?

2021-02-14 Firejail on Linux to sandbox all the things

2021-02-06 Filtering TCP connections by operating system on OpenBSD

2021-02-06 Enable multi-factor authentication on OpenBSD

2021-01-14 Vger security analysis

2019

2019-09-06 GPG2 cheatsheet

2018

2018-11-08 Safely restrict commands through SSH

2018-10-11 Tor part 2: hidden service

2018-10-10 Tor part 1: how-to use Tor

2017

2017-03-17 How to check your data integrity?

2017-01-20 Let's encrypt on OpenBSD in 5 minutes

2016

2016-10-19 Port of the week: dnscrypt-proxy

2016-08-12 Port of the week: pwgen

2016-07-04 Stop being tracked by Google search with Firefox