Anonymouse
@Anonymouse@lemmy.world
- Comment on I can imagine the "will you be using the mobile app?" question to get cheaper food is going to devolve into the Mark of the Beast and someday no one will be able to buy anything without using the apps 3 weeks ago:
That is the plan. Imagine an app that can provide personalized pricing to extract just less than the amount that would cause you to go elsewhere?
It knows when you get paid and can splurge. It knows when you are drunk or high and have less self control. It’s the digital pricing tags at the grocery store, but personalized to you (and not with your best interests in mind).
- Comment on Simple safe encryption for a server? 3 months ago:
Take some time and really analyze your threat model. There are different solutions for each of them. For example, protecting against a friend swiping the drives may be as simple as LUKS on the drive and a USB key with the unlock keys. Another poster suggested leaving the backup computer wide open but encrypting the files that you back up with symmetric or asymmetric, based on your needs. If you’re hiding it from the government, check your local laws. You may be guilty until proven innocent in which case you need “plausible deniability” of what’s on the drive. That’s a different solution. Are you dealing with a well funded nation-state adversary? Maybe keying in the password isn’t such a bad idea.
I’m using LUKS with mandos on a raspberry PI. I back up to a Pi at a friend’s house over TailScale where the disk is wide open, but Duplicity will encrypt the backup file. My threat model is a run of the mill thief swiping the computers and script kiddies hacking in.
- Comment on Replacing CD Collection 8 months ago:
I had one from Sony a long time ago. It even had a cable you could attach between two of 'em (600 CDs!) so that it could seamlessly start playing another track while loading the next song. I dropped it during a move and the next time I opened the door, it spit gears at me. I had intended to fix it some day, but started watching Hoarders and decided it wasn’t worth it.
- Comment on What is a good multirole server setup for a racked server? 8 months ago:
Can you elaborate on the scenario this is solving for? Isn’t software RAID a performance hit?
- Comment on [deleted] 10 months ago:
I have. I was kindergarten-aged and my friend was over and she didn’t flush. That was also the day that I learned that girls poop…a lot!
- Comment on [deleted] 10 months ago:
I made one of these when I was a kid using a ton of rubber bands. One of the “arms” flew off and hit me in the face. It was definitely not as fun as the cartoons advertised.
- Comment on Kiteworks acquires ownCloud & Dracoon - Nextcloud 10 months ago:
This may be the push I need to migrate to Nextcloud. I’m struggling to identify my use cases, though and am wondering if all I really need is Syncthing.
- Comment on What do you use to mount encrypted drives on boot? 11 months ago:
I’m using mandos with the server on a raspberry pi. Unfortunately, mandos doesn’t work with my Fedora boxes as far as I know.
- Comment on What 2D printers do 3D printer people prefer? 11 months ago:
I switched to Brother after my HP updated itself when I forgot why I had a particular firewall rule, deleted it and let the printer onto the internet to roam. It pulled down a patch which added an amazing security feature to block the use of the toner that I bought. I bricked it while trying to downgrade the firmware (after placing an order for their “certified” toner). I tried returning the toner, but couldn’t and eventually took it tongue recycling center, swearing to never buy HP again.
- Comment on Should I move to Docker? 11 months ago:
It depends on what you do with Docker. Podman can replace many of the core docker features, but does not ship with a Docker Desktop app (there may be one available). Also, last I checked, there were differences in the
docker buildcommand.That being said, I’m using podman at home and work, doing development things and building images must fine. My final images are built in a pipeline with actual Docker, though.
I jumped ship from Docker (like the metaphor?) when they started clamping down on unregistered users and changed the corporate license. It’s my personal middle finger to them.
- Comment on English is weird 11 months ago:
Y’all crack me up with many of these comments!
- Submitted 11 months ago to showerthoughts@lemmy.world | 41 comments
- Comment on Disclosure of sensitive credentials and configuration in containerized deployments - ownCloud 11 months ago:
I’m using Kubernetes and many of the apps that I use require environment variables to pass secrets. Another option is the pod definition, which is viewable by anybody with read privileges to K8s. Secrets are great to secure it on the K8s side, but the application either needs to read the secret from a file or you build your own helm chart with a shell front end to create app config files on the fly. I’m sure there are other options, but there’s no “one size fits all” type solution.
The real issue here is that the app is happy to expose it’s environment variables with no consideration given to the fact that it may contain data that can be misused by bad actors. It’s security 101 to not expose any more than the user needs to see which is why stack dumps are disabled on production implementations.
- Disclosure of sensitive credentials and configuration in containerized deployments - ownCloudowncloud.com ↗Submitted 11 months ago to selfhosted@lemmy.world | 22 comments
- Comment on Lemmy disproves the stereotype that Germans lack a sense of humor 1 year ago:
Is it hard to get citizenship? Can’t you just live there with some sort of visa?
- Comment on New York Bill Would Require a Criminal Background Check to Buy a 3D Printer 1 year ago:
I agree that this is a boogeyman law.
I don’t understand the threat to revenue streams. From gun manufacturers? Would anybody who is allowed to purchase a gun bother with a 3D printed one other than for the novelty of it?
My biggest gripe is that I feel that politicians usually don’t get involved in creating laws until way late. Think laws around the regulation of AI or cloning or genetically modifying humans. Is there a credible threat related to printed weaponry? I seriously doubt it.
I saw something similar a few weeks ago on the national news to allow local police to shoot drones around regulated airspaces. In this case it’s a football game. The stadium security said that a drone flew in and distributed pamphlets but could have easily carried in a bomb. Again, this is a theoretical threat, but they’re more likely concerned about illegal filming of a sporting event.
- Comment on New York Bill Would Require a Criminal Background Check to Buy a 3D Printer 1 year ago:
That was sort of my point. I’m going to go out on a limb and say without any research that bears kill more people every year than 3D printers.
- Comment on New York Bill Would Require a Criminal Background Check to Buy a 3D Printer 1 year ago:
A self replicating 3D printer? I like it.
- Comment on New York Bill Would Require a Criminal Background Check to Buy a 3D Printer 1 year ago:
I don’t even own a gun, so maybe somebody with more experience can correct me, but I do believe that many states, if not all, require a background check and waiting period. I assume there are certain crimes that remove your right to own a firearm. There are (or were) loopholes for purchasing guns at gun shows where a background check and waiting period are infeasible.
As for other weapons, there aren’t such provisions, but it may depend on the weapon. A bow and arrow, hunting knife or machete can be purchased at any wall-Mart. A grenade? I’m not sure.
- Submitted 1 year ago to 3dprinting@lemmy.world | 137 comments