<?xml version="1.0" encoding="UTF-8"?><rss xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:atom="http://www.w3.org/2005/Atom" version="2.0" xmlns:itunes="http://www.itunes.com/dtds/podcast-1.0.dtd" xmlns:googleplay="http://www.google.com/schemas/play-podcasts/1.0"><channel><title><![CDATA[InSyght]]></title><description><![CDATA[Field notes from an MSP technician managing 40+ dental and orthodontic practices. Networking, practice management software, Windows environments, and the things vendor documentation skips.]]></description><link>https://www.ghostsyght.com</link><image><url>https://substackcdn.com/image/fetch/$s_!9lfI!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3efbf292-95a0-4ec8-baf6-2687b2af9887_500x500.png</url><title>InSyght</title><link>https://www.ghostsyght.com</link></image><generator>Substack</generator><lastBuildDate>Thu, 16 Jul 2026 19:10:02 GMT</lastBuildDate><atom:link href="https://www.ghostsyght.com/feed" rel="self" type="application/rss+xml"/><copyright><![CDATA[Jay Daniel | Ghostysyght]]></copyright><language><![CDATA[en]]></language><webMaster><![CDATA[ghostsyght@substack.com]]></webMaster><itunes:owner><itunes:email><![CDATA[ghostsyght@substack.com]]></itunes:email><itunes:name><![CDATA[Jay Daniel]]></itunes:name></itunes:owner><itunes:author><![CDATA[Jay Daniel]]></itunes:author><googleplay:owner><![CDATA[ghostsyght@substack.com]]></googleplay:owner><googleplay:email><![CDATA[ghostsyght@substack.com]]></googleplay:email><googleplay:author><![CDATA[Jay Daniel]]></googleplay:author><itunes:block><![CDATA[Yes]]></itunes:block><item><title><![CDATA[M365 Lighthouse for MSPs: What to Check Before the Baselines Go Live]]></title><description><![CDATA[A realistic look at what the platform gets right, where it creates friction, and one thing that will quietly break a client environment if you skip it.]]></description><link>https://www.ghostsyght.com/p/m365-lighthouse-for-msps-what-to</link><guid isPermaLink="false">https://www.ghostsyght.com/p/m365-lighthouse-for-msps-what-to</guid><dc:creator><![CDATA[Jay Daniel]]></dc:creator><pubDate>Thu, 04 Jun 2026 17:01:27 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!9lfI!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3efbf292-95a0-4ec8-baf6-2687b2af9887_500x500.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>If you manage multiple Microsoft 365 tenants and haven&#8217;t looked at Lighthouse seriously yet, the pitch lands well when you do. One console, security posture across all clients, risky user and sign-in alerts without logging into a separate admin center per tenant. That part is accurate.</p><p>But the setup guides and feature demos tend to move fast through the part that creates the most real-world friction: what the included security baselines actually do when applied to a client environment that hasn&#8217;t been audited first.</p><p>That&#8217;s the part worth spending time on before anything goes live.</p><div><hr></div><p><strong>The Legacy Authentication Problem</strong></p><p>Lighthouse&#8217;s deployment baselines include a Conditional Access policy that blocks legacy authentication. The name sounds routine. The impact is not.</p><p>Legacy authentication covers older protocols and auth flows that predate OAuth 2.0, specifically POP3, IMAP, SMTP AUTH, and older Exchange Web Services calls. None of them support MFA. That is the security problem: a client can have MFA fully configured in Entra ID, and a credential spray via IMAP bypasses it entirely, because the connection never goes through a flow where MFA can be triggered. Microsoft&#8217;s own position is that most compromising sign-in attempts come from legacy authentication, and that legacy protocols like IMAP, SMTP, and POP3 cannot support MFA, meaning bad actors can bypass enforcement through them. The policy is correct directionally. <a href="https://medium.com/gitbit/enable-conditional-access-policies-to-block-legacy-authentication-de1b43bb5b28">Medium</a></p><p>The issue is execution order.</p><p>Apply the baseline to a tenant without first auditing what is using legacy auth in that environment, and something breaks. Common culprits: printers or multifunction devices configured to use SMTP AUTH for scan-to-email, older line-of-business applications that authenticate to Exchange with Basic Auth, third-party integrations that were never updated to OAuth, and shared service accounts used by automation or scheduled tasks that nobody has touched in years. The authentication attempt fails silently, the device or application stops working, and the ticket comes in with no obvious link to anything that changed.</p><p>The Block Legacy Authentication policy appears in Entra ID as a Conditional Access policy, and administrators can set its state (report-only, on, or off) and manage which identities are excluded from it. That report-only mode is the right starting point. Before enforcing anything, pull the Entra sign-in logs and filter the Client App column for &#8220;Legacy Authentication Clients.&#8221; Every result is a dependency that needs a decision: update it to OAuth, create a targeted exclusion in the policy, or involve the vendor. Run report-only for at least a week per tenant. Watch the logs. Then enforce. <a href="https://learn.microsoft.com/en-us/entra/identity/conditional-access/managed-policies">Microsoft Learn</a></p><p>The baseline is right. The audit is what makes the rollout not a fire drill at 7 AM.</p><div><hr></div><p><strong>Other Drawbacks Worth Knowing</strong></p><p>Legacy auth is the one with the most immediate blast radius, but the other friction points are worth understanding before you commit to the platform.</p><p>GDAP onboarding is slower than it looks. Each client tenant has to actively approve the Granular Delegated Administrative Privileges relationship before Lighthouse surfaces full visibility for that tenant. The setup involves sending relationship requests through Partner Center and walking clients through approving them. For technically engaged clients, that is manageable. For a non-technical office manager who does not recognize what the approval email is asking for, expect it to sit ignored or get flagged as phishing. Build the approval step into a broader onboarding conversation rather than a cold email. <a href="https://learn.microsoft.com/en-us/microsoft-365/lighthouse/m365-lighthouse-setup-gdap?view=o365-worldwide">Microsoft Learn</a></p><p>Licensing gates the useful features. Full Lighthouse functionality requires Entra ID Premium P1. That comes with Microsoft 365 Business Premium, can be added as a standalone add-on to lower-tier plans, and Entra ID Premium P1 is also required for user account data to appear in reports within Lighthouse. Clients running Business Basic without the add-on get a limited view, mostly tenant visibility and service health. Device management and the threat management pages also require Intune enrollment and Defender Antivirus on endpoints. If a chunk of your client base is on minimal licensing, budget the conversation before you build out the workflow. <a href="https://www.dev4side.com/en/blog/microsoft-365-lighthouse/">Dev4Side</a></p><p>Nothing auto-tickets. Lighthouse surfaces findings and leaves them there. A risky user alert across ten tenants sits in the portal until someone looks. If your PSA does not have a native Lighthouse integration (most do not), bridging that gap is a manual workflow or custom alerting build you own.</p><p>It is not an RMM. Patch management, agent-level scripting, remote task execution, and automation live in your RMM. Lighthouse operates on the Microsoft 365 and Entra ID layers. The two tools do not overlap much in practice, but the distinction matters when scoping what Lighthouse is actually adding.</p><div><hr></div><p><strong>Where It Earns Its Place</strong></p><p>The multi-tenant security posture view is genuinely useful. MFA coverage gaps, risky user alerts, and device compliance status across all managed tenants in a single dashboard is something you cannot replicate by logging into each admin center individually.</p><p>GDAP is now a prerequisite for Lighthouse and a cornerstone of secure multi-tenant management. For all its onboarding friction, GDAP is the right model. The older DAP model gave MSPs broad, persistent global admin access to client tenants with no scope limits, which was a significant security liability. A compromised MSP account had full access to every client. GDAP scopes permissions to specific Entra roles. If your MSP is still on DAP across most of your client roster, the Lighthouse migration accelerates the fix. <a href="https://blog.ciaops.com/2025/06/07/secure-access-for-smb-customers-pim-for-msps-with-microsoft-lighthouse-and-gdap/">CIAOPS</a></p><p>Cross-tenant service health is a smaller feature that adds up in practice. All Microsoft 365 service incidents across all managed tenants in one place, no tab-switching. Individually minor, practically useful.</p><p>Lighthouse is free to qualified CSP partners; only the MSP needs to be enrolled in the CSP program, not the clients they manage. You are not adding a vendor line item to evaluate it. <a href="https://learn.microsoft.com/en-us/microsoft-365/lighthouse/m365-lighthouse-requirements?view=o365-worldwide">Microsoft Learn</a></p><p>For MSPs covering specialized verticals, like dental or orthodontic practices running Microsoft 365 for both clinical coordination and admin operations, having security posture and risky user detection aggregated from a single console fills a gap that is harder to justify closing practice by practice. Catching a compromised account or an MFA gap before it becomes an incident matters more in environments with minimal on-site IT.</p><div><hr></div><p><strong>The Short Version</strong></p><p>Lighthouse is worth adding to the stack. The posture visibility is real, the GDAP migration is overdue for most MSPs anyway, and the cost is zero.</p><p>Map your legacy authentication dependencies before the baseline goes live. Use the Entra sign-in logs, filter for legacy auth clients per tenant, run the Block Legacy Authentication policy in report-only mode first, and watch what shows up. That step is the difference between a clean rollout and a client down first thing in the morning.</p><div><hr></div><p><em>If this was useful, the subscribe button is right below. New posts go out when there&#8217;s something worth writing about.</em></p><p><em>The shorter version of posts like this goes out on LinkedIn first.</em></p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.ghostsyght.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe now&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.ghostsyght.com/subscribe?"><span>Subscribe now</span></a></p><div><hr></div><p><strong>Reference links:</strong></p><ul><li><p><a href="https://learn.microsoft.com/en-us/entra/identity/conditional-access/policy-block-legacy-authentication">Block legacy authentication with Conditional Access</a> (Microsoft Learn)</p></li><li><p><a href="https://learn.microsoft.com/en-us/microsoft-365/lighthouse/m365-lighthouse-requirements?view=o365-worldwide">Microsoft 365 Lighthouse requirements</a> (Microsoft Learn)</p></li><li><p><a href="https://learn.microsoft.com/en-us/microsoft-365/lighthouse/m365-lighthouse-setup-gdap?view=o365-worldwide">Set up GDAP in Microsoft 365 Lighthouse</a> (Microsoft Learn)</p></li></ul>]]></content:encoded></item><item><title><![CDATA[UniFi Fabrics Is Out of Beta. Here's What MSPs Actually Get.]]></title><description><![CDATA[The multi-site management layer that just hit the stable branch, and what configure-once, push-everywhere looks like when it actually works.]]></description><link>https://www.ghostsyght.com/p/unifi-fabrics-is-out-of-beta-heres</link><guid isPermaLink="false">https://www.ghostsyght.com/p/unifi-fabrics-is-out-of-beta-heres</guid><dc:creator><![CDATA[Jay Daniel]]></dc:creator><pubDate>Thu, 28 May 2026 17:15:22 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!9lfI!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3efbf292-95a0-4ec8-baf6-2687b2af9887_500x500.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>The way multi-site UniFi management worked before Fabrics was simple and kind of painful. You had Site Manager, which gave you a unified view of all your locations and let you jump between consoles without juggling separate logins. That part was genuinely good. But the configuration work itself was still per-site. You couldn&#8217;t push a firewall rule or a WiFi policy change across 40 locations in one action. You logged into each one.</p><p>For a small footprint, that&#8217;s fine. For an MSP managing dozens of dental and orthodontic practices across the country, it adds up fast. Every new location meant sitting through the same sequence of configuration steps. Every policy change meant doing it over. The only way to maintain consistency was discipline and documentation, and those are fragile.</p><div class="subscription-widget-wrap-editor" data-attrs="{&quot;url&quot;:&quot;https://www.ghostsyght.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe&quot;,&quot;language&quot;:&quot;en&quot;}" data-component-name="SubscribeWidgetToDOM"><div class="subscription-widget show-subscribe"><div class="preamble"><p class="cta-caption">InSyght is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.</p></div><form class="subscription-widget-subscribe"><input type="email" class="email-input" name="email" placeholder="Type your email&#8230;" tabindex="-1"><input type="submit" class="button primary" value="Subscribe"><div class="fake-input-wrapper"><div class="fake-input"></div><div class="fake-button"></div></div></form></div></div><p>UniFi Fabrics, announced in January and officially moved to the stable branch in April 2026, is Ubiquiti&#8217;s answer to that. It&#8217;s a management layer built on top of Site Manager that lets multiple UniFi sites be grouped under a shared administrative and identity model, with centralized role-based access control, identity provider integration, policy and device templates, and more. The short version: a single control plane that treats all your sites as one system instead of a collection of independent deployments.</p><p>Here&#8217;s what that actually means in practice.</p><h3>The Orchestration Engine: Blueprints and Canvas</h3><p>Blueprints and Canvas are the two main tools inside the Orchestration Engine. Blueprints handle initial site deployment. You pre-provision a new site in the Fabric, and installers receive a Magic Link with instructions to bring the site up against your pre-configured settings, including custom WAN settings per site. Canvas handles ongoing configuration compliance. It contains settings that are synced to site devices and can&#8217;t be modified from within the individual site&#8217;s Network application.</p><p>That second part is where the real operational value is. Canvas settings are enforced. You configure a firewall policy, a guest network isolation rule, or a DNS server at the Fabric level and it stays that way across every site. A technician working inside a specific site&#8217;s console can&#8217;t accidentally (or intentionally) drift from the standard. For an MSP environment where you&#8217;re handing different contractors access to different sites, that&#8217;s not just convenient, it&#8217;s a compliance consideration.</p><p>Blueprints are equally useful on the deployment side. New sites can be deployed rapidly while maintaining consistent organization configuration and security standards. Scaling infrastructure is simplified through device templates and policy assignments that enable true Zero Touch Provisioning. In practice this means a new practice location can come online with your standard VLAN setup, your firewall policies, your SSID configuration, and your monitoring integrations already applied, before anyone on your team logs in. The installer follows the link, connects the hardware, and the site comes up in your Fabric. </p><h3>RBAC and Identity</h3><p>Fabrics provide a way to centrally manage people and assign granular permissions across multiple UniFi sites. By defining access at the Fabric level, administrators can scale both user and administrative access without duplicating configuration per site. </p><p>The permission model splits into two categories. Admin permissions control access to the UniFi management interface, ranging from full access to view-only or application-specific grants. User permissions (through the UniFi Endpoint app) cover things like One-Click WiFi, One-Click VPN, and Smart Door Access.</p><p>For MSPs, the more relevant feature is IdP integration. Administrators can bind leading identity providers, apply user-based policies, and deliver secure access through a seamless UniFi Identity experience across platforms. Security is enforced by identity, not location-specific policies. Microsoft Entra is explicitly supported. This means employee onboarding and offboarding in your client&#8217;s directory automatically propagates to UniFi access. A new employee gets provisioned in Entra, and their UniFi permissions appear. Someone leaves, their access is gone. The Identity Sync Service runs on a designated console called the Master Site, which acts as the orchestrator for people and permissions across all sites in the Fabric. </p><p>Hardware requirement worth noting: IdP binding requires one of the following consoles to be present in the Fabric: UDM Pro, UDM SE, UDM Pro Max, EFG, UNVR Pro, ENVR, or ENVR Core. UniFi OS v4.4 or newer is required. If you&#8217;re running older hardware or lower-end gateways as your primary console, plan for that before you start.</p><h3>The API and Automation Layer</h3><p>The Fabric API extends the platform to developers and integrators with complete documentation, Ansible support, and unified access to every connected environment through a single interface.</p><p>This one is early days, but the direction is clear. A single API endpoint that covers your entire deployment is a different thing than site-by-site API calls. If you&#8217;re building automation around UniFi or integrating it with something like N-able or a PSA tool, the Fabric API is where that work will eventually live.</p><h3>The No-Licensing Part</h3><p>Site Manager redefines how enterprise IT is built and managed, bringing together power, simplicity, and scalability without added licensing complexity. The future of enterprise IT is unified, scalable, and completely license-free with UniFi and the new Site Manager.</p><p>That&#8217;s Ubiquiti&#8217;s marketing language, but it&#8217;s accurate. There is no per-site licensing, no controller hosting fee, no tier you need to upgrade to in order to use Fabrics. That&#8217;s a real differentiator. The platforms that compete with this level of multi-site management capability charge for it, usually on a per-device or per-site basis that compounds fast across a large fleet.</p><h3>Getting Started</h3><p>Fabrics is available now on the stable branch. To get started, navigate to Site Manager, select or create a Fabric, go to Settings &gt; Identity, and enable Consolidated People Management. From there you can optionally bind an Identity Provider for Zero-Trust networking and automated employee onboarding and offboarding.</p><p>The recommended approach (and worth doing before you get deep into it) is to make sure a single company-managed UI account owns all your sites. It&#8217;s not strictly required to use Fabrics, but it simplifies RBAC and is required for the Site Magic SD-WAN feature if that&#8217;s on your roadmap.</p><p>The Ubiquiti Academy also has material covering how Fabrics is deployed and operated at scale. If you&#8217;re setting this up for the first time across a large fleet, start there.</p><p></p><div><hr></div><p><em>Resources:</em></p><ul><li><p>Introducing UniFi Fabrics: <a href="https://blog.ui.com/article/introducing-unifi-fabrics">https://blog.ui.com/article/introducing-unifi-fabrics</a></p></li><li><p>The New Site Manager, Now Official: <a href="https://blog.ui.com/article/officially-bringing-unifi-fabrics">https://blog.ui.com/article/officially-bringing-unifi-fabrics</a></p></li><li><p>Getting Started with UniFi Fabrics (Help Center): <a href="https://help.ui.com/hc/en-us/articles/30979808349463-Getting-Started-with-UniFi-Fabrics">https://help.ui.com/hc/en-us/articles/30979808349463-Getting-Started-with-UniFi-Fabrics</a></p></li><li><p>Managing Fabric People, Roles, and Permissions: <a href="https://help.ui.com/hc/en-us/articles/31557407384343-Managing-UniFi-Fabric-People-Roles-and-Permissions">https://help.ui.com/hc/en-us/articles/31557407384343-Managing-UniFi-Fabric-People-Roles-and-Permissions</a></p></li></ul><p></p>]]></content:encoded></item><item><title><![CDATA[From Starbucks to Server Rooms: What This Blog Is About]]></title><description><![CDATA[An IT field tech managing 5,500+ endpoints across 50+ dental practices, a barista past, and finally something worth writing about.]]></description><link>https://www.ghostsyght.com/p/from-starbucks-to-server-rooms-what</link><guid isPermaLink="false">https://www.ghostsyght.com/p/from-starbucks-to-server-rooms-what</guid><dc:creator><![CDATA[Jay Daniel]]></dc:creator><pubDate>Tue, 26 May 2026 19:16:09 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!9lfI!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3efbf292-95a0-4ec8-baf6-2687b2af9887_500x500.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>The first time I pulled a shot of espresso behind a Starbucks bar, I had no idea I&#8217;d end up as the person your orthodontist&#8217;s office calls when their practice management software decides to stop working at 8 AM with a full patient schedule.</p><p>That&#8217;s the short version. The longer version is more interesting.</p><div><hr></div><h2>The Detour That Made Sense Later</h2><p>A few years behind the green apron, then a move that looked completely unrelated on paper: operations management at U-Haul. If that sounds like a wrong turn, it wasn&#8217;t. That job taught me how to troubleshoot systems under pressure when someone is standing in front of you, frustrated, and the clock is moving. That skill transfers directly to IT support. It just wasn&#8217;t obvious at the time.</p><p>At some point, with the support of my family, I made the decision to go all in on technology. I enrolled at Tennessee College of Applied Technology and started stacking credentials. CompTIA A+, Network+, Security+. Then Microsoft&#8217;s Azure Fundamentals, 365 Fundamentals, and Security, Compliance, and Identity (SC-900). No four-year program, no shortcut. Just focused study and a clear direction.</p><p>That path led to Impact360, a managed service provider handling technology for dental and orthodontic practices across the country. The platform I work in shows 5,545 managed endpoints across our client base as of this morning. (Pulled that number directly from our RMM tool before writing this sentence.) Workstations, servers, imaging equipment PCs, and everything in between, spread across 50+ practices where downtime is measured in patients, not just lost productivity.</p><div><hr></div><h2>What the Day-to-Day Actually Looks Like</h2><p>The practices we support run software most people outside this vertical have never heard of: Dolphin Management, OrthoTrac, Dentrix. They have dedicated imaging systems for dental X-rays. They run Remote Desktop Services so multiple users can share a single application instance across a server. They have VoIP phones, Cisco Meraki firewalls, UniFi access points, and SentinelOne doing behavioral detection on every endpoint.</p><p>When something breaks in that stack, the front desk can&#8217;t check patients in. The doctor can&#8217;t pull up treatment records. The X-ray system won&#8217;t capture. That&#8217;s the environment I work in every day, and it&#8217;s a surprisingly complex one for an industry that doesn&#8217;t generate a lot of written IT content.</p><p>I&#8217;ve built custom software to solve a port-conflict problem that shows up in Dolphin Management&#8217;s RDS deployments. I&#8217;ve scripted BitLocker auditing across the fleet and found compliance rates well below what anyone would have guessed. I&#8217;ve done full VLAN schemas for practice networks from the ground up, configured Meraki warm spare HA setups, and worked through the kind of vendor-specific failures that don&#8217;t appear in any official documentation.</p><div><hr></div><h2>Why I&#8217;m Writing</h2><p>I&#8217;ve always had a knack for writing. Not in the &#8220;always wanted to be a writer&#8221; sense. More in the &#8220;I notice when a sentence is wrong and I can&#8217;t move on until I fix it&#8221; sense. It&#8217;s just something that comes naturally, and for a long time I didn&#8217;t have a dedicated outlet for it.</p><p>This is that outlet.</p><p>The blog lives under the Syght Ventures brand, which is the umbrella for the work I put out publicly. What you&#8217;ll find here is field-level IT content with enough detail to be useful, not career advice listicles or surface-level takes on industry news.</p><p>That means posts about the dental and orthodontic IT vertical, which is genuinely underserved in written content considering how complex it is. It also means posts about the broader technology world. Apple, Microsoft, Anthropic, OpenAI, Google, and all the things those companies are building that shape the environments practitioners like me work in every day. AI is changing what managed services looks like. I have opinions about where that goes, and I know how to write them down clearly.</p><div><hr></div><h2>What to Expect</h2><p>Some posts will be technical walkthroughs of specific problems and how they got solved. Others will be field notes from working across a large fleet. Some will be commentary on tech industry news and what it means for people actually working in IT, not just watching it from the outside. </p><p>Posts go out when there&#8217;s something worth writing about. Not on a schedule.</p><div><hr></div><p>If this is the kind of content you&#8217;re looking for, the subscribe button is right below.</p><p>Found me on LinkedIn first? The shorter takes go there. Full posts live here.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.ghostsyght.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe now&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.ghostsyght.com/subscribe?"><span>Subscribe now</span></a></p><p></p>]]></content:encoded></item><item><title><![CDATA[Coming soon]]></title><description><![CDATA[This is InSyght.]]></description><link>https://www.ghostsyght.com/p/coming-soon</link><guid isPermaLink="false">https://www.ghostsyght.com/p/coming-soon</guid><dc:creator><![CDATA[Jay Daniel]]></dc:creator><pubDate>Sun, 14 Sep 2025 16:43:50 GMT</pubDate><enclosure url="https://substackcdn.com/image/fetch/$s_!9lfI!,w_256,c_limit,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F3efbf292-95a0-4ec8-baf6-2687b2af9887_500x500.png" length="0" type="image/jpeg"/><content:encoded><![CDATA[<p>This is InSyght.</p><p class="button-wrapper" data-attrs="{&quot;url&quot;:&quot;https://www.ghostsyght.com/subscribe?&quot;,&quot;text&quot;:&quot;Subscribe now&quot;,&quot;action&quot;:null,&quot;class&quot;:null}" data-component-name="ButtonCreateButton"><a class="button primary" href="https://www.ghostsyght.com/subscribe?"><span>Subscribe now</span></a></p>]]></content:encoded></item></channel></rss>