IHawkMike

@IHawkMike@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Responsible Adults⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I drink my whiskey straight from the Klein bottle.
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
A) Nope. You’re spreading FUD. Got a link?

B) I’m ignoring you. You’re talking gibberish.

B2) You’re still wrong and in over your head. Remember, the ask was for an out of box solution for full drive encryption, silently decrypted via TPM (using Secure Boot’s PCR 7) that still supports OS hibernation.

C) Wut?
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
A) You’ve said nothing relevant. We already knew all of this. Recall isn’t being installed or turned on on any of my Windows boxes. Copilot is dumb but it isn’t collecting any data you don’t voluntarily feed it.

B) I don’t disagree with whatever point you’re trying to make but it has nothing to do with Windows. Unless you know something we don’t?

B2) You’re lying

B3) What?!

C) You’re initiating searches through the Microsoft Windows Start Menu™ and are mad it’s launching Edge? Do I have that right?
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
A) None of that has actually happened. If you want to back down from hyperbole and provide specific examples, I will consider addressing them.

B) The U.S. Government is not an adversary in my threat model. If it is one in yours, I assume you are running Qubes OS, which is a completely different conversation. With Windows, I have access to Secure Boot and TPM-backed full drive encryption (including hibernation support) out of the box. Can you do that with Linux? Also, you know as well as everyone else here that the MSA requirement is easy to bypass.

C) Again, provide specifics. I don’t default any of my apps to Microsoft’s and this just doesn’t happen.
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I’m sorry, I don’t get it. For what are we coping?
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I should have mentioned that I still love Linux though…
⁨Comment⁩ on ⁨Coming on Lemmy and complaining because there are too many Linux users is like going in to a brothel and complaining that there are too many hookers⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
So where do those of us who don’t think Windows is the literal worst OS ever fit into your analogy?
⁨Comment⁩ on ⁨What I learned from 3 years of running Windows 11 on “unsupported” PCs⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yeah Win11 will probably be a noticeable performance hit on that. Especially Explorer which they made dog slow when adding tabs and the new context menu.

The Office apps and browser will probably be about the same.
⁨Comment⁩ on ⁨What I learned from 3 years of running Windows 11 on “unsupported” PCs⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I’m running Windows 11 on a 12 year old X79 platform. Runs just fine.

But it was definitely top of the line in its day and 48GB of RAM keeps any system relatively snappy.
⁨Comment⁩ on ⁨No longer dating⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
My wife doesn’t like it when I introduce her as my ex-girlfriend.
⁨Comment⁩ on ⁨ps2 graphics⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
It only happens twice a year though.

en.m.wikipedia.org/wiki/Lahaina_Noon
⁨Comment⁩ on ⁨Most file types are just a renamed .zip⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
You’re not missing much. A few modern file types are zips with expected folder structures, especially MSOffice files. But this is nowhere near universally true.

You can open a file in your text editor of choice and if you see it start with PK (for Phil Katz the creator of the format and the original PKZIP/PKUNZIP programs) then it’s really a zip.

Also, by the logic of the OP, all DLLs are EXEs.
⁨Comment⁩ on ⁨Microsoft is enabling BitLocker device encryption by default on Windows 11⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
I’m rocking a 12-year-old 3930k with BitLocker on all drives and it’s perfectly fine.
⁨Comment⁩ on ⁨Microsoft is enabling BitLocker device encryption by default on Windows 11⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Agreed. The immature iamsosmart user base is making me strongly consider leaving Lemmy for good. There just aren’t enough actual professionals here for any serious discussion in a technical community. It’s just a bunch of 20-year-olds who think they have the world figured out. And they all downvote based on emotion rather than facts (which I am quite prepared for).

Microsoft accounts, OneDrive, and BitLocker are absolutely great features for the average user providing SSO, cloud storage with ransomware-proof backups, and seamless full-disk encryption.

I love Linux too, but there seems to be no room for nuance on Lemmy. These children are insufferable.
⁨Comment⁩ on ⁨How exactly does one eat 1500 calories a day?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Yeah that sounds about right.
⁨Comment⁩ on ⁨How exactly does one eat 1500 calories a day?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
There’s no way you need to somehow eat more to lose weight. Are you sure you’re counting your calories correctly? Using an app? Tracking everything, especially drinks like sodas and alcohol?
⁨Comment⁩ on ⁨ochem periodic table⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Image

Still missing a few but it’s the best I found in 30 seconds.
⁨Comment⁩ on ⁨The Google TV Streamer might be the Apple TV 4K rival we’ve been waiting for - The Verge⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Yeah but $30 USD vs $100 USD targets completely different customers and use cases.

I was willing to spend $30 per TV. But not $100.
⁨Comment⁩ on ⁨The Google TV Streamer might be the Apple TV 4K rival we’ve been waiting for - The Verge⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Well they’re discontinuing the OG Chromecast and Chromecast w/ Google TV for this. So you’re probably right.

theverge.com/…/google-chromecast-line-discontinue…

Never invest too heavily in Google anything.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Did you have to install an app called Company Portal or Intune? If no, then they probably don’t have access to your device, except for possibly being able to selectively wipe school data. They could also be using another MDM solution like Airwatch, but again, you would have had to have installed something (and unlikely, since universities get massive discounts on Microsoft licensing).

Even if you do have Company Portal, it doesn’t necessarily mean it’s managed as it’s still used to broker communication and authentication between Office apps on Android. The app itself would be able to tell you if the device is managed.

And as the other poster mentioned, if they had you install a root certificate for the university they can intercept and inspect HTTPS traffic from your device while on their network. But that still doesn’t give them access to the data-at-rest on your device.
⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
If you’re sure you’ve got a DNS entry for the Pihole FQDN pointing at Traefik, open the dev panel in your browser (F12), switch it to the Network tab, and visit the pihole URL.

See if you get anything back and especially take note of the HTTP status codes.
⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Can you see the router and service in the Traefik dashboard and do they show any errors there?
⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I think you’re close.

You need to change service: pihole-rtr to service: pihole-svc.

Do I have to redefine all of the same information I did in my Traefik yml but in this separate config.yml?

No, you just need to reference it like you have. Define once, reference many.
⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
No worries for the question. It’s not terribly intuitive.

The configs live on the Traefik server. In my static traefik.yml config I have the following providers section, which adds the file provider in addition to the docker provider which you likely already have:
```
providers:
  docker:
    endpoint: "unix:///var/run/docker.sock"
    exposedByDefault: false
  file:
    directory: /config
    watch: true
```
And in the /config folder mapped into the Traefik container I have several files for services external to docker. You can combine them or keep them separate since the watch: true setting tells it to read in all files (and it’s near instant when you create them, no need to restart Traefik).

Here is my homeassistant.yml in that folder (I have a separate VM running HASS outside of Docker/Traefik):
```
http:
  routers:
    homeassistant-rtr:
      entryPoints:
      - https
      service: homeassistant-svc
      rule: "Host(`home.example.com`)"
      tls:
        certResolver: examplecom-dns

  services:
    homeassistant-svc:
      loadBalancer:
        servers:
          - url: "http://hass1.internal.local:8123"
```
Hope this helps!
⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I use the Traefik file provider for this.

doc.traefik.io/traefik/providers/file/

It picks up all my .yml configs in the watched folder which define the routers and services external to Docker.
⁨Comment⁩ on ⁨Cloudflare is bad. Youre right.⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I know plenty account SNI already, but thanks. You might want to study more yourself, since we’re being condescending.

blog.cloudflare.com/encrypted-sni/
⁨Comment⁩ on ⁨Cloudflare is bad. Youre right.⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
So now your ISP sees all of your queries instead of CF. (Assuming the cloudflared option is using DoH)

I’ll trust Cloudflare over Comcast/AT&T/etc. any day of the week.
⁨Comment⁩ on ⁨"Hacked" Instagram⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Most likely it was a password stuffing attack. If they used the same password on multiple sites, there is a good chance one of those other sites was compromised and the attackers took the compromised credentials and tried them on other sites like Instagram. It could have been something more advanced like a stolen cookie, but usually the simplest explanation is most likely.

Always use a different password for each service, enable MFA where possible, and use a password vault like Bitwarden.
⁨Comment⁩ on ⁨Ordered back to the office, top tech talent left instead, study finds⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
You need to demand a raise. And keep working from home.
⁨Comment⁩ on ⁨Dell warns of data breach, 49 million customers allegedly affected⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
Right, because international hackers are going to mobilize boots on the ground across the world to steal your fucking Optiplex.