towerful
@towerful@programming.dev
- Comment on Vibe coding service Replit deleted production database 2 days ago:
Not mad about an estimated usage bill of $8k per month.
Just hire a developer - Comment on Realized 99% of all my chargers are USB-C. This can only mean one thing. New USB bout to drop! 1 week ago:
That’s it re-stoking the internal combustion engine. It’s perfectly fine
- Comment on YSK: If you set up a Lemmy instance, and follow the Docker setup instructions to the letter, it will send lemmy.ml your admin password during the setup process 1 week ago:
I really wish there was a way to enforce transparency of docker env vars.
I get that it’s impossible to make it a part of docker, env vars get parsed by code and turned into variables. There is no way that docker can enforce it, cause a null/undefined check with a default value is all that would be needed to subvert checks by docker, and every language uses a different way to check env vars (eg .env files, environment init scripts, whatever).
And even then, the env var value could be passed through a ridiculous chain of assignments and checks.
And, some of those ‘get env var’ routines could be conditional. Not all projects capture all env vars during some initial routine.I’ve spent hours (maybe days) trawling through undocumented env vars trying to figure out their purpose, in order to leverage them in docker/k8s stacks.
I wish there was something.Thankfully, a bit of time spent with a FOSS project and reviewing the code does shed light on hidden env vars.
And a PR or 2 gets comments and documentation updated.
Open source is awesome - Comment on Krafton Delays ‘Subnautica 2’ Game Ahead of $250 Million Payout 2 weeks ago:
One of the best robot chicken scenes.
I was in tears the first time I saw it - Comment on From Docker with Ansible to k3s: I don't get it... 2 weeks ago:
Interesting, I might check them out.
I liked garden because it was “for kubernetes”. It was a horse and it had its course.
I had the wrong assumption that all those CD tools were specifically tailored to run as workers in a deployment pipeline.I’m willing to re-evaluate my deployment stack, tbh.
I’ll definitely dig more into flux and ansible.
Thanks! - Comment on From Docker with Ansible to k3s: I don't get it... 2 weeks ago:
Everyone talks about helm charts.
I tried them and hate writing them.
I found garden.io, and it makes a really nice way to consume repos (of helm charts, manifests etc) and apply them in a sensible way to a k8s cluster.
Only thing is, it seems to be very tailored to a team of developers. I kinda muddled through with it, and it made everything so much easier.
Although I massively appreciate that helm charts are used for most projects, they make sense for something you are going to share.
But if it’s a solo project or consuming other people’s projects, I don’t think it really solves a problem.Which is why I used garden.io. Designed for deploying kubernetes manifests, I found it had just enough tooling to make things easier.
Though, if you are used to ansible, it might make more sense to use ansible.
Pretty sure ansible will be able to do it all in a way you are familiar with.As for writing the manifests themselves, I find it rare I need to (unless it’s something I’ve made myself). Most software has a k8s helm chart. So I just reference that in a garden file, set any variables I need to, and all good.
If there aren’t helm charts or kustomize files, then it’s adapting a docker compose file into manifests. Which is manual.
Occasionally I have to write some CRDs, config maps or secrets (CMs and secrets are easily made in garden).The way I use kubernetes for the projects I do is:
Apply all the infrastructure stuff (gateways, metallb, storage provisioners etc) from helm files (or similar).
Then apply all my pods, services, certificates etc from hand written manifests.
Using garden, I can make sure things are deployed in the correct order.
If I ever have to wipe and reinstall a cluster, it takes me 30 minutes or so from a clean TalosOS install to the project up and running, with just 3 or 4 commands.Any on-the-fly changes I make, I ensure I back port to the project configs so when I wipe, reset, reinstall I still get what I expect.
However, I have recently found cdk8s.io and I’m meaning to investigate that for creating the manifests themselves.
Write code using a typed language, and have cdk8s create the raw yaml manifests. Seems like a dream!
I hate writing yaml. Auto complete is useless (the editor has no idea what format the yaml doc should take), auto formatting is useless (mostly because yaml is whitespace sensitive, and the editor has no idea what things are a child or a new parent). It just feels ugly and clunky. - Comment on Networking speed issues in my homelab 2 weeks ago:
So uplink is 500/500.
LAN speed tests at 1000/1000.
WAN is 100/400.
VPN is 8/8.I’m guessing the VPN is part of your homelab? Or do you mean a generic commercial VPN (like pia or proton)?
How does the domain resolve on the LAN? Is it split horizon (so local ip on the lan, public IP on public DNS)?
Is the homelab on a separate subnet/vlan from the computer you ran the speed test from? Or the same subnet? - Comment on When does Trump finally start taking accountability? 2 weeks ago:
If a God were to appear and demonstrate all kinds of supernatural activity and capability, I think I’d have to renounce my atheism.
I would also renounce my atheism and become fully anti-theism.
The god is clearly not benevolent, not kind, not caring. The god can go fuck themselves.Trumps track record over the past decades cannot be forgiven
- Comment on 2 weeks ago:
Why do we even have that lever?
- Comment on Unless users take action, Android will let Gemini access third-party apps 2 weeks ago:
No.
I tried a smart watch for a week or so, and hated wearing it.
Hadn’t worn a watch in 20 years, and it felt very strange - Comment on Unless users take action, Android will let Gemini access third-party apps 2 weeks ago:
I’m always nervous about fintech companies. Maybe it’s time to get over that and give curve pay a spin.
The cashback seems nice, considering a lot of shops I use are on there. - Comment on You Should Run a Certificate Transparency Log 2 weeks ago:
Not if you use wildcard dns records.
- Comment on Unless users take action, Android will let Gemini access third-party apps 2 weeks ago:
Yup, true.
But contactless via a phone can have no limit.
Adding a debit card to phone case means the upper limit is £100. Which is actually fine, and is the limit I have normally set for phone contactless. But I can instantly remove that limit via my banking app.And the phone needs to be unlocked to make a payment.
Do if I lose my phone anyone can charge £100 to the debit card. - Comment on You Should Run a Certificate Transparency Log 2 weeks ago:
Servers: one. No need to make the log a distributed system, CT itself is a distributed system. The uptime target is 99%3 over three months, which allows for nearly 22h of downtime. That’s more than three motherboard failures per month. CPU and memory: whatever, as long as it’s ECC memory. Four cores and 2 GB will do. Bandwidth: 2 – 3 Gbps outbound. 3 – 5 TB of usable redundant filesystem space on SSD or 3 – 5 TB of S3-compatible object storage, and 200 GB of cache on SSD. People: at least two. The Google policy requires two contacts, and generally who wants to carry a pager alone.
Seems beyond you typical homelab self hoster, except for the countries that have 5gbps symmetric home broadband.
If anyone can sneak 2-3gbps outbound pass their employer, I imagine the rest is trivial.
Altho… “At least 2 [people]” isn’t the typical self hosting - Comment on Tesla loses $68 billion in value after Elon Musk says he is launching a political party 2 weeks ago:
CEO loses investors $68 billion after $56 billion pay rise
- Comment on Unless users take action, Android will let Gemini access third-party apps 2 weeks ago:
This… Except for contactless payment.
I used graphene for a month. It was lovely. Even things like banking apps worked.
I don’t care about absolute privacy, but I do care about controlling my privacy. Grapheme gave me that.I had only 1 issue.
Contactless payment.
It’s extremely convenient to me, from public transport to groceries. I just bop my phone.The fact that Google has that locked down surely violates some EU laws. But I’m sure they wave away the laws because of “financial security” or some other bullshit.
As if bank card NFC/contactless doesn’t suffer exactly the same issues.
I looked into some “graphene contactless payment” type systems or workarounds, and I couldn’t find anything that would fill the gap. - Comment on Time travel doesn't work unless you also have teleportation. If you travel to the past/future, Earth will be in a different position in its orbit, and you'll die in space. 2 weeks ago:
Everything else. Or anything else, if you select a single quark (presuming we don’t split a quark).
If everything is moving away from us, then everything is moving away from everything else.
It’s just that some things are moving away from us faster than they are moving away from other things - Comment on Time travel doesn't work unless you also have teleportation. If you travel to the past/future, Earth will be in a different position in its orbit, and you'll die in space. 2 weeks ago:
Everything else.
Galactocentrism was established in 1925, which realised that our solar system is not near the center of the Milky Way. So, we are moving relative to the center of our galaxy.
In 1929, evidence was found that everything is expanding. So we are moving relative to everything else.
In 1931, the Big Bang theory started superceding Galactocentrism, which was an acentrist model of the universe (where there is no center).
- Comment on A sovereign Microsoft 365 alternative: Nextcloud and IONOS join forces - Nextcloud 3 weeks ago:
Why do you dislike PHP?
- Comment on The problem with adding forgery prevention features to paper money is that people could just forge the old version of the bill. 3 weeks ago:
The only place that will accept them is banks. And they have all the tools and training to spot forgeries
- Comment on Firefox 140 Brings Tab Unload, Custom Search & New ESR 4 weeks ago:
Windows 11 and OSX are so outdated
- Comment on ELI5: How to put several servers on one external IP? 4 weeks ago:
Who is externally reaching these servers?
Joe public? Or just you and people you trust?If it’s Joe public, I wouldn’t have the entry point on my home network (I might VPS tunnel, or just VPS host it).
If it’s just me and people I trust, I would use VPN for access, as opposed to exposing all these services publicly
- Comment on The hidden cost of self-hosting 5 weeks ago:
Nothing better than a properly formatted data file.
Self hosting teaches you this - Comment on [deleted] 5 weeks ago:
Your threat assessment is way off.
So, you import a phone. What sim do you use? Where do you use it? When do you use it? Who do you contact with it?
All of that is more valuable and easier to get for the police than some sort of modification of firmware or platform as it passes through customs.
If in doubt, flash your own firmware.If this is actually a threat assessment to you, asking on Lemmy is the wrong place. You need people with the same experience that an entire country has at their disposal.
If it’s a concern as opposed to an actual threat, buy some 2nd hand phones from random places and buy some prepaid sims (ideally via smurfs or black market means). And be aware of how you use them
- Comment on Docker is renaming a mounted drive 5 weeks ago:
The commands you used to start the docker containers, or the docker compose contents.
That’s what dictates how much “power” a docker container has - Comment on just beat it 5 weeks ago:
The whole “well, it’s already broken: what’s the worst I can do?” is such a liberating position to be in.
- Comment on We went from LEARN TO CODE to NO ONE LEARN TO CODE GET A CONSTRUCTION JOB in about a 3 year span. 5 weeks ago:
Open source, libraries, frameworks and language development is how this is tackled.
Making software is implementing business logic. It’s the specific nature of whatever problem you are solving which means you can’t use some existing off-the-shelf product.
There are dozens (if not hundreds) of no-code/low-code app builders out there. Things like n8n or ndoe-red.
They get very difficult to maintain at scale. - Comment on [XKCD]#3101 Good Science 5 weeks ago:
XKCD alt text is always worth!
And it’s not always available (like, the well known ones being circulated around social media).Props to the OP for linking to the image from XKCD (as opposed to rehosting it) and further props for linking the source!
Just missing the delicious alt text (at least for me using jerboa, Firefox and a pixel phone)
- Comment on [XKCD]#3101 Good Science 5 weeks ago:
If you think curiosity without rigor is bad, you should see rigor without curiosity
I hope I typed that right. I couldn’t copy the alt text from the source on mobile.
And I was annoyed that XKCD alt text wasn’t included with the post, so I thought I would include it to the best of my ability - Comment on In North Korea, your phone secretly takes screenshots every 5 minutes for government surveillance 1 month ago:
Ah, lol.
Is that the web interface? Or what app is that?