litchralee

@litchralee@sh.itjust.works

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Digital buffer works for a bit, then stops, turning it off for an hour resets it to working again⁩ ⁨⁨18⁩ ⁨hours⁩ ago⁩:
For your edit #2, can you post a schematic of the relevant part of the circuit? It’s a bit hard to imagine how things are arranged, especially where your pull up resistor at the output of the buffer is.
⁨Comment⁩ on ⁨Digital buffer works for a bit, then stops, turning it off for an hour resets it to working again⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
If I had to guess, perhaps the buffer circuit is going onto latch-up due to ESD spikes, which is then locking the open drain to conduct, which is why you’re seeing a LOW output.

When in doubt, I suppose you can tack on more decoupling capacitors nearby the buffer’s Vcc.
⁨Comment⁩ on ⁨Digital buffer works for a bit, then stops, turning it off for an hour resets it to working again⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
When the buffer gets into this glitch scenario, is the output stuck at high or low?
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
Typically, business-oriented vendors will list the hardware that they’ve thoroughly tested and will warranty for operation with their product. The lack of testing larger disk sizes does not necessarily mean anything larger than 1 TB is locked out or technically infeasible. It just means the vendor won’t offer to help if it doesn’t work.

That said, in the enterprise storage space where disks are densely packed into disk shelves with monstrous SAS or NVMeoF configurations, vendor specific drives are not unheard of. But to possess hardware that even remotely has that possibility kinda means that sort of thing would be readily apparent.
⁨Comment⁩ on ⁨Why are Japanese pilots flying airliners into thunderstorms?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
I’m not a pilot but have always looked to the open skies with dreams and admiration. I think we need to unpack a few assumptions.

something that’s very forbidden in the aviation world because of lightning

Weather (WX) has always been an integral part of aviation, as early as the lighter-than-air (ie hot-air balloon) days. The strength of human kind is no match to what nature can throw at us, and so instead we adapt to what nature gives us. On one hand, nature provides niceties like prevailing wind and thermals, to allow us to build runways pointing into the wind and for gliders to gain altitude. On the other hand, nature can decide that an Icelandic volcano shoots hundreds of thousands of tons of particulate matter into the air, grounding all commercial flights in European airspace.

Resilience becomes the objective, to safely operate revenue aircraft in the face of fickle natural phenomena. And this is achieved in a multi-layer approach, with resilience baked in at every step. The aircraft itself, the crew, the airports, ATC, and the regulators, they all are trained and briefed on known hazards, which is part of why commercial aviation is one of the safest modes of travel, sans maybe the elevator.

Unlike volcanic activity or windshears/microbursts, thunderstorms and lightning give plenty of warning through day-ahead WX forecasts, as well as onboard radar. These are not fool-proof – for example, radar can be shadowed by nearby precipitation, hiding enormous thunder clouds beyond. But despite how terrifying it may sound to fly through a storm, it isn’t impossible and certainly not unmanageable. But it does take preparation, and requires sufficient margins so that if anything starts to look awry, there’s an escape path.

Often times, the escape path is just to climb away.

Lightning struck the plane … which could’ve been catastrophic

There are many things which are potentially catastrophic for aircraft: loss of engines, loss of pressurization, a lithium ion battery fire in the cargo compartment, a medical emergency while overflying the mid-Atlantic.

But while a gut-reaction would be to outright avoid risk, human endeavors can make no progress like that. So instead, worst-case planning means developing procedures for when not if something bad happens.

Aircraft are designed to take lightning strikes, and although the Boeing 787 uses a lot of composite material, it too has provisions for lightning.

the report for this incident

Seeing as the incident here occurred on 17 March 2025, I wouldn’t expect the Japan Transport Safety Board (JTSB; the air safety regulator, equivalent to USA NTSB) to have published a final report. There might be a preliminary report, but this is not that.

This appears to be a collection of ADS-B data, a mention of damage to a control surface, and a Twitter post about airline compensation due to diverting from Haneda (HND) to Narita (NRT).

Were it not for the control surface damage, this incident might have fallen below the threshold for reporting, since no source suggests there were injuries and I don’t see – having not watched the video – an emergency being declared by the pilots. Diversions are not wholly uncommon, for a number of operational or WX reasons.

I’m pretty sure if a US or European pilot did this, they’d get their license revoked

I think this is wrong, based solely on the robust safety culture in both the USA and in European airspace. Safety culture means that procesures are developed to manage risk, these procedures are regularly practiced, are updated with the latest available recommendations, and non-wilful deviations from procedure (aka mistakes) will be addressed by additional training, not by punishment.

As Mentour Pilot eloquently reminds viewers of his YouTube channel, if punishment were metted out for every mistake, then it’s a disincentive to report mistakes, which makes safety worse for everyone.

No doubt, there are pilots which have operated grossly outside the bounds of acceptability, like flying an empty jet into coffin corner, or allowing a child to fly the plane. Such accidents are reported precisely because they blew through every layer of the Swiss cheese model of accident causation, and tragically took lives.

So with all that out of the way, I think we can still try to answer the titular question.

A scheduled passenger airliner tries to get passengers from airport A to airport B. A lot of prep is done in the background to make this happen, organizing the ground crew, flight crew, and backend operations at the airliner HQ. Most of the time, the flight is uneventful and arrives as expected. A few times, there might a go-around, but pilots are trained to not shy away from doing a go-around, and have the reserve fuel to do so.

With any sort of damage on approach, be it from a bird strike or lightning strike, the pilots will have to: 1) secure the plane, usually by initiating a go-around to buy valuable time and get away from the ground, and 2) assess the condition of the airplane and make a plan. In this case, the airplane diverted to a nearby airport, which was probably the backup destination airport.

As mentioned before, WX is fickle, and a storm can easily creep over the airport when the plane is within radio contact. And even if the storm was already over the arrival path, if the indications are still suitable for landing – eg low crosswind, no tailwind, no predicted windshears, no prior pilot reports of landing troubles – then the pilots will have discretion to continue their approach.

For a healthy safety culture, the airliner’s own procedures have to place the pilots as the ultimate decision-makers once a flight is underway, and so while it’s unfortunate that damage occurred unexpectedly, nothing from the minimal available information suggests this amounts to a systemic or procedural error, nor wilful malfeasance.

The fact that the airliner returned to service days later means this might simply be slightly more than mundane happenings. Though it would be prudent to keep an eye out for a future report from the safety regulator.
⁨Comment⁩ on ⁨Acquired HPE DL380 G9 - Questions about what is done for self hosting on them these days⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Congrats on the acquisition!

DL380 G9

Does this machine have its iLO license? If so, you’re in for a treat, if you’ve never used IPMI or similar out-of-band server management. Starting as a glorified KVM, it then has full power control authority (power on/off, soft reset, hard reset), either a separate or shared Ethernet connection, virtual CD and USB, SNMP reporting, and other whiz-bang features. Used correctly, you might never have to physically touch the machine after installation, except for parts replacement.

What is your go-to place to source drive caddies or additional bays if needed?

When my Dell m1000e was missing two caddies, I thought about buying a few spares on eBay. But ultimately, I just 3d printed a few and that worked fine.

Finally, server racks are absurdly expensive of course. Any suggestions on DIY’s for a rack would be appreciated.

I built my rack using rails from Penn-Elcom, as I had a very narrow space I wanted to fit my machines. Building an open-frame 4-post rack is almost like putting a Lego set together, but you will have to take care to make sure it doesn’t become a parallelogram. That is, don’t impart a sideways load.

Above all, resist the urge to get by with a two-post rack. This will almost certainly end in misery, considering that enterprise servers are not lightweight.
⁨Comment⁩ on ⁨if pure water is not conductive why would condensation be an issue for electronics?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Wireless water, coming right up: www.youtube.com/watch?v=j_QfX0SYCE8

In all seriousness, not all participate sticks to water vapor, if said particulate is non-polar – the lipid envelope of one SARS-CoV2 comes to mind. It would be more effective to clean the air using a furnace filter taped to a box fan, and it’s only up from there: electrostatic filters or actual air cleaners with a filter.

That said, some console humidifiers push air through essentially a large sponge, and that can already be effective at trapping larger particulate, although not effective for tiny virus-sized particles.
⁨Comment⁩ on ⁨if pure water is not conductive why would condensation be an issue for electronics?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
If water vapor was the only thing airborne, then this would be mostly plausible. But the reality in any typical environment is for small particles of dust, soot, microplastics, COCs, etc to be in the air, in addition to the usual suspects of oxygen, nitrogen, carbon dioxide, etc. Some of those will increase the conductance of water, when condensed upon a cool surface. Think of water vapor as a lint filter that floats around the room until it lands on something.

But even in a hermetically sealed environment with only the typical atmospheric mix of oxygen and nitrogen and other trace elemental gases, and then water vapor, there’s still a problem. Air has a conductivity – measures in Siemens, the inverted unit of Ohms which is resistance – of 3-8 x 10^15, meaning it will not conduct much at all. But compared to condensation upon a PCB in this sealed environment, DI water has a conductance of 5.5 x 10^6. That is 100,000,000x times more conductive, although it’s still a tiny amount.

The reality is that all circuits and electronics leak small currents here and there, even through the air or through their PCB substrates. But the sum total of these leakage and creepage currents will be negligible in all but high-voltage cifcuits. Though that’s only under the rated environmental conditions.

When air is fully saturated at 100% humidity, some of those currents become noticeable. And for high-voltage switchgear, it can become an issue very quickly. But iutright water on most circuit would be disastrous due to arcing or shorting, or both.
⁨Comment⁩ on ⁨How would legal procedure change if every citizen eligible for jury duty was aware of jury nullification?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Supposing that any change did materialize, it is a bedrock principle of legal procedure to not change substantially just because the outcomes have noticeable changed. That is to say, if there was anything like a sudden drop in conviction rates, it would be improper for the judges, appellate justices, and defense and prosecuting attorneys to do anything different than what they would have done prior. That’s kinda the point of having a procedure: to follow it and see what happens.

The source for such changes would have to be brought legislatively, since – at least in the USA/California – that’s how changes to the law and civil/criminal procedure are made. Sure, entities like the Judicial Council of California would be making recommendations, but it’s on the Legislature to evaluate the problem and implement any necessary changes.
⁨Comment⁩ on ⁨What are some of the impacts of a power outage that isn't that obvious / isn't talked about a lot? And What happens to restaurant bills? Do Buses still work? (since card payments wouldn't work)⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
TIL
⁨Comment⁩ on ⁨What are some of the impacts of a power outage that isn't that obvious / isn't talked about a lot? And What happens to restaurant bills? Do Buses still work? (since card payments wouldn't work)⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
The remarkable thing is that modern chip-and-pin cards do support that sort of “offline” transaction, although fortunately without the carbon copy paper. Specifically, a non-networked credit card terminal can present a transaction to the chip, the chip will cryptographically sign this transaction in a unique way, and the terminal will store it for later submittal to the credit card company, when an online connection is possible.

For a typical “online” transaction when there are no connectivity issues, the third step would send the transaction immediately to the credit card company, so they can have the option of declining the charge. The cryptography is otherwise the same, and it’s why offline transactions are possible.

Some vendors like SNCF (the national rail operator) in France use offline transactions for their ticket vending machines at rural stations, where there’s no guarantee of being within mobile phone service. The card issuer also usually programs some safeguards to prevent abuse, such as X number of offline max and then an online transaction is mandatory, or a limit on the value of purchases (eg $50 max for offline). After all, there cannot be a check against one’s credit limit when offline.

In the USA, it is exceedingly rare for credit cards to be issued as chip-and-pin, and while offline transactions can be performed with chip-and-signature cards, it’s rarely enabled since most/all terminals in the USA have been online since the introduction of electronic credit card processing.

Contactless chip cards might have changed the calculus though, since there is no PIN at all for these transactions. So perhaps issuers might allow a few offline transactions when contactless.
⁨Comment⁩ on ⁨What are some of the impacts of a power outage that isn't that obvious / isn't talked about a lot? And What happens to restaurant bills? Do Buses still work? (since card payments wouldn't work)⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
For buses in particular, bear in mind that liquid fuels typically require pumping, which usually uses electricity. So gasoline or diesel pumps might not be available, even if the underground storage tank has fuel. Here in California, a lot of public buses are fueled with Compressed Natural Gas (CNG) which in theory could have already been compressed at the depot, but this would only last so long, since it takes energy to run the compressor, assuming the natural gas pipeline is unaffected.

Obviously, electric buses and trolleybuses need electricity. So at this point, perhaps the only bus that would be totally immune is an omnibus, that 19th century people-mover that was drawn by horses. But consider the “emissions” from a horse though…

In all seriousness, the contingency plans for a transit agency will vary depending on where you are in the world. For American transit agencies, most don’t even offer service on Sunday or holidays (very strange in the land of hyper religiousness; no bus to church??) and any labor strikes usually result in every service being closed, sometimes including essential ADA operations.
⁨Comment⁩ on ⁨In the United States; is it illegal to use a single serve wrapped slice of Kraft cheese as a postcard?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
At the very minimum, this type of mail would incur the $0.46 non-machinable surcharge because it’s smaller than one of the minimum USPS dimensions for postcards, namely that one size has to be 5 inches (127 mm exact). You may also have issues with it being too floppy for basic handling by the postal carrier, especially if it was previously left in a warm mailbox.

But perhaps a more practical issue may arise first: will stamps even adhere to the wrapping of a Kraft Cheese single? If you cannot affix postage, that’s the most immediate impediment.
⁨Comment⁩ on ⁨Infinite interrupts except when logic analyzer is connected. Tried a pull-up resistor.⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Switching noise is naturally the first place to look, when an IRQ is firing rapidly and unexpectedly. But have you verified that your IRQ handler is completely handling each interrupt event? And that another interrupt event while handling the prior one will not lead to unusual behavior?

It could very well be a rare, spurious interior firing due to noise, but then exacerbated by an IRA handler that doesn’t clear properly, leading to high speed sprioois events.

What are the approximate sizes for the internal and external pull-up resistors you’ve attached? And what is the impedance for the actual interrupt source, when it actually fires?
⁨Comment⁩ on ⁨If I snapped you back in time 650 years right this very second, how would you use your current knowledge to succeed?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

no rubber for seals

Modern synthetic rubber would indeed be unavailable, but I vaguely recall reading something to the effect that early steam engines used leather seals or something like that.

But yeah, there’s a lot of missing prerequisites for machinery. Even simple rotary power – like from a windmill or waterwheel – would suffer from being incapable of long distance transmission
⁨Comment⁩ on ⁨⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

should

when it comes to legality

This needs clarification. Are you asking about the legal status of Character AI’s chatbot, and how its output would be treated w.r.t. to intellectual property rights? Or about the ethical or moral questions raised by machine-generated content, and whether society or law should adapt to answer those questions?

The former is an objective inquiry, which can be answered based on the current laws for a given jurisdiction. The latter is an open-ended, subjective question for which there is no settled consensus, let alone a firm answer one way or another.

I decline to answer the latter, but I think there’s only one answer for the objective law question. IANAL, but existing fanfiction does not imbue its author with rights over characters from another author, at least in the USA. But fanfiction authors do retain copyright over their own contributions.

So if an author writes about the 1920s Mickey Mouse character (now in public domain) but set in a gay space communist utopia, the plot of that novel would be the author’s intellectual property. But not the character itself, which remains public domain. However, character development that happens would be the author’s property, insofar as such traits didn’t exist before.

What aspects of this situation do you envision would require different treatment just because it’s the output from a chatbot? Barring specific language in a Terms of Use agreement that transfers ownership to the parent company of Character AI chatbot, machines – and gorillas – are not eligible to own intellectual property. The author would be the human being which set into motion the conditions for the machine to produce a particular output.

In conventional writing, an author does not relinquish ownership to Xerox Corporation just because the final manuscript was printed using a Xerox-made printer. But just because an author uses a machine to help produce a work, that will not excuse plagiarism or intellectual property violations, which will accrue against the human being commiting that act.

(I express no opinion on whether intellectual property is still a net positive for society, or not)
⁨Comment⁩ on ⁨What's the point in getting married?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
There’s at least !bestoflemmy@lemmy.world
⁨Comment⁩ on ⁨How do man made hiking trails keep the grass from overgrowing?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I should clarify that my original comment – foot traffic keeps paths in decent shape – was in answer to the OP’s titular question, about why vegetation doesn’t grow atop the intended walking/hiking trail. But you’re right that traffic will cause other impacts, even if plantlife isn’t getting in the way.

I’m in 100% agreement that for trail upkeep, people have to be mindful how they step. The advisories here in California focus on not eroding the edges of the trail, such as by walking around muddy areas, which would only make the restoration work harder and damage more of the adjacent environment. We have a lot of “stay on trail” signs. We advise people to either be prepared to go right through the mud – only worsens an existing hole – or don’t walk that trail at all.
⁨Comment⁩ on ⁨How do man made hiking trails keep the grass from overgrowing?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Obligatory reference to desire paths: !desire_paths@sh.itjust.works
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
My understanding is that the de minimis tariff treatment for import shipments is different than the duty-free personal exemptions that apply for “accompanied baggage” when re-entering the USA.

Assuming this CBP page is accurate, the $800 exemption is one of three possible exemptions that can still apply. The $1600 exemption only applies when returning with stuff from Guam, American Samoa, or USVI, and the $800 can only be claimed every 30 day. The last resort is the $200 exemption, which is always available, and ostensibly is there to allow Americans living near Canada or Mexico to not have to deal with border taxation just because they had to buy lunch or gasoline during day trips.
⁨Comment⁩ on ⁨Need help getting domain to resolve over LAN⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
I agree with this comment, and would suggest going with the first solution (NAT loopback, aka NAT hairpin) rather than split-horizon DNS. I say this even though I have a strong dislike of NAT (and would prefer to see networks using flat IPv6 addresses, but that’s a different topic).

Specifically, problems arise when using DNS split-horizon where the same hostname might resolve to two different results, depending on which DNS nameserver is used. This is distinct from some corporate-esque DNS nameservers that refuse to answer for external requests but provide an answer to internal queries. Whereas by having no “single source of truth” (SSOT) for what a hostname should resolve to, this will inevitably make future debugging harder. And that’s on top of debugging NAT issues.

Plus, DNS isn’t a security feature unto itself: successful resolution of internal hostnames shouldn’t increase security exposure, since a competent firewall would block access. Some might suggest that DNS queries can reveal internal addresses to an attacker, but that’s the same faulty argument that suggests ICMP pings should be blocked; it shouldn’t.

To be clear, ad-blocking DNS servers don’t suffer from the ails of split-horizon described above, because they’re intentionally declining to give a DNS response for ad-hosting hostnames, rather than giving a different response. But even if they did, one could argue the point of ad-blocking is to block adware, so we don’t really care if SSOT is diminished for those hostnames.
⁨Comment⁩ on ⁨Little weapons⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Well, since I’ve already linked to two of my not-quite-a-lathe projects, I might as well link to the one which started it all: sh.itjust.works/post/16087080

This one does have a motor, but not a conventional one at all. And this only worked because the thing I’m turning would need a center hole drilled through anyway.
⁨Comment⁩ on ⁨Little weapons⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Thank you for the kind words! All of the tools I used were things that were laying around. I’m marginally better at woodworking than metalworking, so that’s why the jig holding the bar was all wood.

I did think about attaching the motor from a disused drill press to spin the bar, but that seemed like it would invite all manner of complexity.

Lathe is in my future, but I kinda want a CNC first. But a CNC + lathe would be god-tier.
⁨Comment⁩ on ⁨Little weapons⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
I am a big fan of makeshift lathes, for tasks that don’t necessitate a full metal workshop. Though I do hope to have a small lathe one day.
⁨Comment⁩ on ⁨How come there are components in TO220 packages that supposedly take 100A with their small legs?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
The datasheet for the IRF1404Z does indeed show that the TO-220 package has a limit of 120 A continuous at 25 C. It should be noted that the junction temperature is rated for up to 175 C, which might provide a lot of headroom for, but we’ll see.

The minimum dimensions for the drain and source leads are 0.36 mm by 1.14 mm. This gives us some 0.41 mm^2 cross sectional area. Assuming the leads are made of aluminum – I’m on mobile and can’t quickly check the composition for the generic TO-220 package – which has a resistance of about 60 Ohm per km, and with the lead being a maximum length of 14.73 mm, the resistance of either lead will be some 0.88 mOhm.

At 120 Amps, the resistance heating would be about 12.6 Watts. That’s quite hot for a short lead, and there’s two of them. But the kicker is that these aluminum leads are also thermally conductive, either into the package towards the junction, or away and into a generous PCB layer or to suitably-sized copper wires.

Either way, that will sink a fair amount of heat, although the thermal resistance for the package legs is not given in this datasheet. It may be defined for generic TO-220 packages though.

As a practical matter, to operate a MOSFET ar 120 A would likely require active cooling, and their test jig plus all reasonable implementations will have a fan. Moderate airflow over the leads will also wick temperature away, which might bring the leads down to a “hot but not fire-inducing” levels. But an EE or thermal engineer would need to sit down to do that simulation.
⁨Comment⁩ on ⁨Why do some drivers turn off the signal sound so quickly?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Is this question about drivers that turn off their indicators while still mid-turn? Or about drivers that turn or change lanes in very little time at all?

IMO, the correct time to use indicators is precisely when in preparation for a turning or lane-change manoeuvre, during such manoeuvre, and that’s it. Once the manoeuvre is done, the indicators should be extinguished to avoid ambiguity, unless a follow-up manoeuvre is planned.

I see no logical reason to enforce a prescribed minimum for indicator time, and it’s why I see minimum-three-blink on some modern cars as an anti-feature. After all, there’s no minimum (nor maximum) time to prepare and make a turning manoeuvre.

To use a USA example, the driving style of Los Angeles Intercity freeways is – for betre or worse – going to necessitate fairly quick lane changes, because of the tighter spacing between cars. In hard figures, a lane change might be prepped and done in 3 seconds. Some might say that all these drivers are violating good driving behaviors for following each other so closely, but it’s sadly a practical necessity when no amount of “just one more lane” can solve the systemic issues with regional road transportation there; it’s why LA is doubling down on public transit building.

Compare this with changing lanes on a rural Interstate freeway to pass a semi-truck, where a lane change can be more sedate because there might not be any other traffic in sight except for the two vehicles involved. Smooth driving on a road-trip might have this manoeuvre prepped and completed over 10-15 seconds, as the car might also be accelerating while also changing lanes.

In both circumstances, the indicators should remain blinking while mid-manoeuvre. Anything short of that is “too quick” in my book.

But if your question is how far in advance should drivers begin indicating before the manoeuvre, that’s a joint matter of regional convention and of law. And the former usually is the strongest influence.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Not “insecure” in the sense that they’re shoddy with their encryption, no. But being free could possibly mean their incentives are not necessarily aligned with that of the free users.

In security speak, the CIA triad stands for Confidentiality, Integrity, and Availability. I’m not going to unduly impugn Proton VPN’s credentials on data confidentiality and data integrity, but availability can be a legit security concern.

For example, if push comes to shove and Proton VPN is hit with a DDoS attack, would free tier users be the first to be disconnected to free up capacity? Alternatively, suppose the price for IP transit shoots through the roof due to weird global economics and ProtonVPN has to throttle the free tier to 10 Mbps. All VPN operators share these possibilities, but however well-meaning Proton VPN and the non-profit behind them are, economic factors can force changes that aren’t great for the free users.

Now, the obv solution at such a time would be to then switch to being a paid customer. And that might be fine for lots of customers, if that ever comes to pass. But Murphy’s Law makes it a habit that this scenario would play out when users are least able to prepare for it, possibly leading to some amount of unavailability.
⁨Comment⁩ on ⁨How do I securely host Jellyfin? (Part 2)⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
I previously proffered some information in the first thread.

But there’s something I wish to clarify about self-signed certificates, for the benefit of everyone. Irrespective of whichever certificate store that an app uses – either its own or the one maintained by the OS – the CA Browser Forum. which maintains the standards for public certificates, prohibits issuance of TLS certificates for reserved IPv4 or IPv6 addresses, among others. See Section 4.2.2.

This is because those addresses will resolve to different machines on different networks. Whereas a certificate for a global-scope IP address is fine because it should resolve to the same destination. If certificate authorities won’t issue certs for private IP addresses, there’s a good chance that apps won’t tolerate such certs either. Nor should they, for precisely the reason given above.

A proper self-signed cert – either for a domain name or a global-scope IP address – does not create any MITM issues as long as the certificate was manually confirmed the first time and added to the trust. Thereafter, only a bona fide MITM attack would raise an alarm, the same as if a MITM attacker tries to impersonate any other domain name. SSH is the most similar, where trust-on-first-connection is the norm, not the outlier.

There are safe ways to use self-signed certificate. People should not discard that option so wontonly.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:

Physical wire tapping would be mostly mitigated by setting every port on the switch to be a physical vlan

Can you clarify on this point? I’m not sure what a “physical VLAN” would be. Is that like only handling tagged traffic?

I’m otherwise in total agreement that the threat model is certainly not typical. But I can imagine a scenario like a college dorm where the L2 network is owned by a university, and thus considered “hostile” to OP somehow. OP presented their requirements, so good advice has to at least try to come up with solutions within those parameters.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
I had a small typo where “untrusted” was written as “I trusted”. That said, I think we’re suggesting different strategies to address OP’s quandary, and either (or both!) would be valid.

My suggestion was for encrypted L3 tunneling between end-devices which are trusted, so that even an untrustworthy L2 network would present no issue. With technologies like WireGuard, this isn’t too hard to do for mobile phone clients, and it’s well supported for Linux clients.

If I understand your suggestion, it is to improve the LAN so that it can be trusted, by way of segmentation into VLANs which separate the trusted devices from the rest. The problem I see with this is that per-port VLANs alone do not address the possibility of physical wire-tapping, which I presumed was why OP does not trust their own LAN. Perhaps they’re running cable through a space shared with other tenants, or something like that. VLANs help, but MACsec encryption on the wire paired with 802.1x device certificate for authentication is the gold standard for L2 security.

But seeing as that’s primarily the domain of enterprise switches, the L3 solution in software using WireGuard or other tunneling technologies seems more reasonable.