tburkhol
@tburkhol@lemmy.world
- Comment on What are your thoughts on exposing a tool like dockge to outside of your man? 2 days ago:
I just don’t like my logs filling up with scripted login attempts. Even with fail2ban, for a while there I was getting 100+ login attempts every day, and it upset my sense of order.
- Comment on What are your thoughts on exposing a tool like dockge to outside of your man? 6 days ago:
I do ssh because I’m more comfortable with it: it’s ubiquitous and as close to bulletproof as any security. Put it on a nonstandard port, restrict authentication to public keys, and I have no qualms.
- Comment on Electricians of fediverse, should I have my selfhosting box grounded? 6 days ago:
Heh. House I rented was built before ubiquitous electricity. At some point, someone slapped a fuse box on the outside of the back wall and drilled a bunch of 1" holes in said wall to pass wiring. House was built on piers, so they just dragged wires around to places where they wanted outlets, which were mostly planted in the floor. Not a ground wire on site. I have no idea how they got away with renting that out, but it’s not like I called code enforcement, either.
- Comment on What are your thoughts on exposing a tool like dockge to outside of your man? 1 week ago:
Yeah, I think it really depends on use case. Like, I’m trying to imagine what aspect of my home lab could go so wrong, while I’m out of the house, that it would need fixed right away, and there’s nothing. I only leave my house for work or maybe a week of vacation, though, and I can imagine someone who’s occasionally away from home/house for 6-month deployments, or has a vacation home they only visit four weekends a year, might want more extensive remote maintenance. I’d still want to do that via ssh or vpn, but that’s me.
- Comment on Why not serve fried chicken on Juneteenth? How is it different from serving corned beef on St. Patrick’s day? 1 week ago:
en.wikipedia.org/wiki/Coon_Chicken_Inn Black people and chicken was like leprechauns and breakfast cereal for a while.
- Comment on WTF Happened In 1971? 2 months ago:
The US Libertarian Party was founded in 1971. Not saying there’s a causative link…
- Comment on Why is replacement for home device controls so complicated? 2 months ago:
HA doesn’t require 4/4/32, that’s just the hardware the HA people sell. (which, given that your phone may be 8/16/128, is hardly “robust”). Generally, the Home Assistant crowd kind of target an audience that’s probably already running some kind of home server, NAS, or router, and HA can probably be installed on that device.
Theoretically, there’s no reason the HA server couldn’t be installed on your phone, except then your smart home functions would only work while your phone is in the house and not sleeping. Kind of defeats the point of a lot of it, unless you’re just thinking of smart home like “remote control for everything.” Regardless, much smaller niche for an already-small market, and apparently not a priority for the dev team.
- Comment on Owners of a domain, which domain registrar did you choose and why? 3 months ago:
+1 porkbun. $1.60 for a .top whois privacy. 2FA with security key. Even let me host my own nameserver, so I can have separate internal and external views.
- Comment on Appreciation / shock at workplace IT systems 3 months ago:
I recently set up DNSSEC on my home domain, and I have been shocked to learn that none of my financial institutions use it. Going back through my logs, the only external host that even tries is api.weather.gov, and only for the CNAME pointing to a CDN host.
- Comment on What's the deal with Docker? 3 months ago:
I used to have this with homeassistant and zwavejs. Every time I’d pull a new homeassistant, the zwave integration would fail, because it required a newer version of zwavejs. Taught me to build the chain of services into one docker-compose, so they’d all update together. That’s become one of the rationales for me to use docker: got a chain of dependent processes? wrap them in a docker so you’re working with (probably) the same dependencies as the devs.
My other rationale is just portability, and docker is just one of many solutions there. In my little home environment, where servers are either retired desktops or gee-that-seems-cool SBCs, it’s nice to be able to easily move stuff independent of architecture or OS.
- Comment on Noob having fun with Self-Hosting story 3 months ago:
There’s a quote from 1908’s Wind in the Willows: Believe me, my young friend, there is nothing–absolutely nothing–half so much worth doing as simply messing about in boats.
Fill in your own hobby, and it reads just as well.
- Comment on If I put a gallon of 10% cider vinegar in a shallow pan and let 1/2 gallon evaporate, will that make it double its strength? 4 months ago:
acetic acid is almost as volatile as water, and the atmosphere contains a lot less of it. If you evaporate vinegar, you’re likely to lose about as much - maybe more - of the acid than the water. So, evaporation is probably not a good way to concentrate vinegar.
- Comment on Bind 9.18.18 dnssec key location and privileges? 4 months ago:
I’d tried that…this has been going on for five days, and I can not describe my level of frustration. But I solved it, literally just now.
Despite
systemctl status apparmor.service
claiming it was inactive, it was secretly active. audit.log was so full of sudo that I failed to see all of theapparmor=“DENIED” operation=“mknod” profile=“/usr/sbin/named” name=“/etc/bind/dnssec-keys/K[zone].+013+16035.l6WOJd” pid=152161 comm=“isc-net-0002” requested_mask=“c” denied_mask=“c” fsuid=124 ouid=124FSUID=“bind” OUID=“bind”
That made me realize, when I thought I fixed the apparmor rule, I’d used
/etc/bind/dnskey/ rw
instead of/etc/bind/dnskey/** rw
The bind manual claims that you don’t need to manually create keys or manually include them in your zone file, if you use
dnssec-policy default
or presumably any other policy with inline-signing. Claims that bind will generate its own keys, write them, and even manage timed rotation or migration to a new policy. I can’t confirm or deny that, because it definitely found the keys I had manually created (one of which was $INCLUDEd in the zone file, and one not) and used them. It also edited them and created .state files.I feel like I should take the rest of the day off and celebrate.
- Submitted 4 months ago to selfhosted@lemmy.world | 4 comments
- Comment on Why do we have an internal monologue? 5 months ago:
I do wonder if not having to ‘hear’ words changes the rhythm of reading.
Hadn’t thought of this…what’s your take on poetry, especially meter-forward? Like, Robert W Service or Robert Frost, I feel would be less interesting if they didn’t have their beat.
I don’t do voices or accents when I read. Everything is in the same ‘voice,’ which isn’t quite the same as my spoken voice. My internal voice enunciates much better and slightly lower pitch. It’s more like the voice I wish I had than the voice I do have. :)
- Comment on Proper HDD clear process? 6 months ago:
I have an inch-high stack of platters now. Kind of interesting to see how their thickness has changed over the years, including a color change in there somewhere. Keep thinking I should bury them in epoxy on some table top.
For extra fun, you ca melt the casings and cast interesting shapes. I only wish I were smart enough to repurpose the spindle motors.
- Comment on If your instance is defederated from another instance, would it be sockpuppeting to create another account to view posts from that instance? 6 months ago:
No, that’s the way the fediverse is supposed to work. It would be sockpuppeting for both of your accounts, say A@A.social and B@b.social, to have a conversation with each other on a third instance, say !politics@c.social, with which both a & b are federated.
- Comment on How many of you actually use the headphone jack on your phone? 6 months ago:
Too entitled to understand dividing markets by cost. Aesthetics trump functionality when your phone becomes a fashion accessory.
Why would you even waste studio headphones on a device with a $0.25 DAC and no space for signal isolation? Or is that just to signal fellow audiophiles.
- Comment on How many of you actually use the headphone jack on your phone? 6 months ago:
Budget phones have them because wired earbuds or headphones are cheap: wired buds under $10. Last flight I was on gave them away for free. Harder to lose. If you’re paying £1,000+ for a phone, the you’re probably not worried about the cost of accessories. Might even put the style of no dangly wires over the functionality.
- Comment on [deleted] 6 months ago:
Traditionally, RAID-0 “stripes” data across exactly 2 disks, writing half the data to each, trying to get twice the I/O speed out of disks that are much slower than the data bus. This also has the effect of looking like one disk twice the size of either physical disk, but if either disk fails, you lose the whole array. RAID-1 “mirrors” data across multiple identical disks, writing exactly the same data to all of them, again higher I/O performance, but providing redundancy instead of size. RAID-5 is like an extension of RAID-0 or a combination of -0 and -1, writing data across multiple disks, with an extra ‘parity’ disk for error correction. It requires (n) identical-sized disks but gives you storage capacity of (n-1), and allows you to rebuild the array in case any one disk fails. Any of these look to the filesystem like a single disk.
As @ahto@feddit.de says, none of those matter for TrueNAS. Technically, trueNAS creates “JBOD” - just a bunch of disks - and uses the file system to combine all those separate disks into one logical structure. From the user perspective, these all look exactly the same, but ZFS allows for much more complicated distributions of data and more diverse sizes of physical disks.
- Comment on Light No Fire Announcement Trailer 6 months ago:
Valheim, but I can ride a dragon? Keeping my fingers crossed.
- Comment on After I’m Gone Backup Solution 6 months ago:
You might be surprised how much attention family will put into your media, especially any pictures, movies, or audio that you created, when you’re gone. It’s a way to commune with their memory of you. My family still regularly trots out boxes of physical photographs of grandparents’ grandparents & homes no one has visited in 70 years.
- Comment on Could X go bankrupt under Elon Musk? 6 months ago:
The first kind of bankruptcy, Elon & his Saudi bros keep the company, and the banks lose like 50-90% of their loans.
The second kind of bankruptcy, the banks get all the servers and office chairs and sell them to either a new data-mining company or a recycler. This isn’t very likely, because most of the value of Xitter is all the people who keep visiting, regardless of whether Elon knows how to monetize them.
- Comment on Walmart, Costco and other companies rethink self-checkout, some stores removing them 6 months ago:
We really need a code of etiquette for them, though. Trip to the store this morning, and they were down to 3 self-check stations from usual 10 with literally a dozen people in line. Including one couple with a cart full of a week’s groceries and one lady trying to win coupon roulette. Four other people cycled through the third scanner while those two piddled away the day.
- Comment on Car dealers say they can’t sell EVs, tell Biden to slow their rollout 6 months ago:
You’re right. I got my current (smallish) car with the explanation that I could just rent a truck when I want to haul hobby materials, but the practical inconvenience of that rental has meant that I just don’t, and consequently haven’t done any big hobby projects in years. When I imagine renting an EV booster battery, I imagine it being easy, convenient, and reasonably priced, unlike literally everything else in the automotive market.
And there is different emotional content in using your own vehicle vs any alternative.
- Comment on Car dealers say they can’t sell EVs, tell Biden to slow their rollout 6 months ago:
I don’t want to buy the oversized battery, and I don’t really want to buy the on-board generator/charger of PHEV. I only want to own as much vehicle, and incur the manufacturing carbon debt, to meet 95-98% of my needs. Make it easy to rent, borrow, or share the extra capacity for the last 2%, and the world will be a lot less wasteful. I can see renting a trailer with enough generator to replace a series hybrid. I can see renting surplus battery. And those rental services can be a revenue stream to replace dealerships lost service centers.
Clearly, though, I’m a minority of consumers, and no manufacturer actually wants to cater to me and my twelve friends.
- Comment on Car dealers say they can’t sell EVs, tell Biden to slow their rollout 6 months ago:
And let me rent an extra battery pack for long trips. I only need 40 miles day-to-day, but I gotta go 300 for Christmas.
- Comment on A City on Mars: Reality kills space settlement dreams 7 months ago:
Infrastructure for distributing the air once it gets to the settlement is one thing. At least for now, though, Earth is the only place to get oxygen in life-sustaining quantities, which is the single source they’re talking about.
Maybe you can posit harvesting oxygen from mineral oxides, hydrolyzing water if you can find it, or capturing an ice asteroid. Whether you split every atom of oxygen you breathe out of rust or lift them out of earth’s gravity, let alone doing both for redundancy, it’s orders of magnitude more energy and complexity than growing potatoes in Antarctica.
- Comment on US Question. Will the people that have to wait until 70 to get Social Security ever get what they paid in to it back out before they die since men's life expectancy is only 77 now? 7 months ago:
If you make it to 62, your life expectancy is 21 more years. that mean 21*0.7 = 14.7 years worth of social security payments. Full benefit at age 67 gets you 16 years worth of payments. If they’d raise full retirement age to 70, you’d only collect 13 years of payments.
- Comment on US Question. Will the people that have to wait until 70 to get Social Security ever get what they paid in to it back out before they die since men's life expectancy is only 77 now? 7 months ago:
In the US, social security is a tax on poor people earning less than~$160k. That’s the bottom 90% of earners.
The top 10% of earners collect about half of the country’s personal income. Each of them does have to pay SS tax on the first $160k of earned income, but clearly there’s a huge pool of income that doesn’t pay into social security.