aksdb

@aksdb@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Looking for an html-based secure message service⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
I think CryptPad has delete-after-view.
⁨Comment⁩ on ⁨What exactly is a self-hosted small LLM actually good for (<= 3B)⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
True.

Although in Germany for example it can also be an issue when recording. If you have a security camera pointed at a public space (that can include the sidewalk infront of your house), passersby can sue you to take it down and potentially get you fined. Even pretending to constantly record such an area can yield that result.
⁨Comment⁩ on ⁨What exactly is a self-hosted small LLM actually good for (<= 3B)⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:

So, buzzer WRONG.

Quite arrogant after you just constructed a faulty comparison.

If I say my name is Doo doo head, in a public park, and someone happens to overhear it - they can do with that information whatever they want. Same thing.

That’s absolutely not the same thing. Overhearing something that is in the background is fundamentally different from actively recording everything going on in a public space. You film yourself or some performance in a park and someone happens to be in the background? No problem. You build a system to identify everyone in the park and collect recordings of their conversations? Absolutely a problem, depending on the jurisdiction. The intent of the recording(s) and the reasonable expectations of the people recorded are factored in in many jurisdictions, and being in public doesn’t automatically entail consent to being recorded.

See for example www.freedomforum.org/recording-in-public/

(And just to clarify: I am not arguing against your explanation of Twitch’s TOS, only against the bad comparison you brought.)
⁨Comment⁩ on ⁨Day 332 of posting a Daily Screenshot from the games l've been playing⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
My impression of Starfield (after release, at least) was, that it was a bunch of pretty well intended and implementation subsystems (as is, to my knowledge quite common in game development; each team works on a different one), but they just don’t fit really well together. All the subsystems are good parts of a theoretically good overall big picture, but the complexity seemed too high for them to actually flesh out the big picture.

Technically it all works, but IMO you feel the conceptual gaps whenever you transition (UX wise) from one gameplay mechanic to the next. It just doesn’t (or didn’t) feel like a cohesive game.
⁨Comment⁩ on ⁨Ansible Playbook - How do I reverse engineer a running system?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
No, I keep that private to minimize the information I leak about what I host, sorry. (I also don’t do git-ops for my server; I back the mentioned directories up via kopia so in case of recovery I just restore the last working state of data+config. I don’t have much need to version the configs.)
⁨Comment⁩ on ⁨Ansible Playbook - How do I reverse engineer a running system?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
What I did to get rid of my mess, was to containerize service after service using podman. I mount all volumes in a unified location and define all containers as quadlets (systemd services). My backup therefore consists of the base directory where all my container volumes live in subdirectories and the directory with the systemd units for the quadlets.

That way I was able to slowly unify my setup without risking to break all at once. Plus, I can easily replicate it on any server that has podman.
⁨Comment⁩ on ⁨Any experience with Pangolin?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
No, since at the moment it wants to manage certificates, but I don’t intend to run pangolin as my main reverse proxy.
⁨Comment⁩ on ⁨Any experience with Pangolin?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Pangolin is the most user friendly self hosted alternative to Cloudflare tunnels. There are dozens alternatives, but none with that feature set and such a UI.
⁨Comment⁩ on ⁨SteamOS massively beats Windows on the Legion Go S⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I would rather bet that most people have no clue what an operating system is and that the one they (unknowingly) use is made by Microsoft. On the other hand if they play games (on that PC), they will know Steam, because they actively had to install it and click it’s icon frequently.
⁨Comment⁩ on ⁨Introducing Calendars, Contacts and Files in Stalwart | Stalwart Labs⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Yes. You can simply not expose SMTP at all and just use the IMAP/JMAP part. Unless you need also JMAP, I am not sure it brings you a lot to the table you wouldn’t also get from a good old dovecot. IMO the big advantage of Stalwart is the all-in-one package it delivers plus the good defaults. It also shines when you want a multi node deployment. For a single node IMAP only it might not be the best choice, in my opinion. But it would work, if you want to.
⁨Comment⁩ on ⁨Introducing Calendars, Contacts and Files in Stalwart | Stalwart Labs⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
We can ask, but the indicators are there:
- it has roadmap with bigger features that slowly shrinks as they get implemented
- new versions still bring big reworks (I think this is the third time now that the data structure is being migrated)
- optimizations happen between the versions
- benchmarks are still on the horizon
⁨Comment⁩ on ⁨Introducing Calendars, Contacts and Files in Stalwart | Stalwart Labs⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It aims at both, otherwise it wouldn’t ship with sqlite and rocksdb. Stalwarts default is clearly for single node setups and expanding it to clustering takes further steps. So while it supports large scale deployments, it should not be limited to it.
⁨Comment⁩ on ⁨Introducing Calendars, Contacts and Files in Stalwart | Stalwart Labs⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It’s a 0.x release. It makes sense building the intended features first before optimizing heavily. There’s no point having an optimized data structure that then falls flat once you need to add new features that brings new requirements to the data structure.

Once they label it 1.x (i.e. feature complete and production ready) I would expect it to be optimized. If it isn’t, criticism is warranted.
⁨Comment⁩ on ⁨Self hosting email, FLOSS, Python ...⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Well exactly as you say: it’s a single service instead of having to combine multiple. In my case dovecot was a lot faster for my mailboxes, but postfix was a piece of shit and I was happy to get rid of it and the many components (rspamd, dkimproxy, etc.) it required. It has far too many footguns, and I shot myself multiple times with them over the years. So the most important part (SMTP) is significantly simpler and IMO better with stalwart. And the mailbox part hopefully evolves as well (it already has JMAP, so that is already an advantage over dovecot as well).
⁨Comment⁩ on ⁨Self hosting email, FLOSS, Python ...⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Use Stalwart as mailserver. Besides coming with sane defaults, it allows to put hooks into almost every mail stage. Those hooks can be sieve scripts, local binaries or http calls.
⁨Comment⁩ on ⁨Helldivers 2 and Palworld devs wish players understood that 'easy' additions and updates are sometimes really hard: 'That's half a year's work. That takes six months'⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
It kind of is, unfortunately. Games are often developed with a lot of pressure and the constant dangling of the budget being cut off. I don’t think the devs are incompetent and think what they produced (code quality wise) would be the best, but what could they do if they need a result to present to the publisher end of week and then don’t get money (aka time) to clean it up but instead they get the next deadline.

On the other hand I am also not sure I can blame publishers. Things can easily spiral out of control if managed badly in the other direction… see Cloud Imperium Games (i.e. Star Citizen).
⁨Comment⁩ on ⁨Verifying & Validating a Docker Container⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
I talk fully about software. Add appropriate nftable rules to the container network and that’s it.
⁨Comment⁩ on ⁨Self-hosting is having a moment. Ethan Sholly knows why.⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
For me it’s not even about better or worse, but about different. For them it’s a nice iteration after many years, but for be it is one of the dozens of apps I use irregularly that suddenly behaves and works different and forces me to relearn things I don’t have any gain from. Since each of the different apps get that treatment every once in a while, I end up having to adjust all the damn time for something else.

I would really like we could go back to functional applications being sold as is without forced updates. I do not need constant changes all the time. WinAmp hasn’t changed in 20 years and still does exactly what it is supposed to. I could probably spin up an old MS Word 2000 and it would work just like it did 20 years ago.

Many modern apps however change constantly. No wonder they all lean towards subscriptions if they “have to” work on it all the time. But I, as a user, don’t even want that. I want to buy the thing that does what it’s supposed to and then I want it to stay that way.
⁨Comment⁩ on ⁨Verifying & Validating a Docker Container⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Well, a big advantage of containers is, that you can isolate them pretty aggressively. So if you run a container that is supposed to serve content on a single HTTP port, expose only that port, mount no unnecessary volumes and run it on a network that blocks all outgoing traffic. Ideally the only thing left will be incoming traffic on the one port the service is supposed to serve.
⁨Comment⁩ on ⁨Ansible iptables best practices?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Half off-topic, sorry: if you have some spare time on the weekend, you might want to take a look at nftables. AFAIK iptables is also just using nftables under the hood, so you are basically using a deprecated technology.

nftables is so much nicer to work with. In the end I have my custom rules (which are much saner to define than in iptables) in /etc/nftables.conf, then I have a very simple systemd unit:
```
[Unit]
Description=Restore nftables firewall rules
Before=network-pre.target

[Service]
Type=oneshot
ExecStart=/usr/sbin/nft -f /etc/nftables.conf
ExecStop=/usr/sbin/nft flush table inet filter
RemainAfterExit=yes

[Install]
WantedBy=multi-user.target
```
and finally if I push updates via ansible I simply replace the file and run nft -f /etc/nftables.conf (via ansible; on-change event).
⁨Comment⁩ on ⁨Developing a self-hosted alternative to Google Keep⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
The shopping list alone is beautifully done. Glad that I could help 🙂
⁨Comment⁩ on ⁨Developing a self-hosted alternative to Google Keep⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
There are 2 hard problems in computer science: cache invalidation, naming things, and off-by-1 errors.

– Leon Bambrick
⁨Comment⁩ on ⁨Developing a self-hosted alternative to Google Keep⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Regarding your requirement, you might want to take a look at KitchenOwl.

If you prefer freestyle notes/lists, Joplin can share and sync note collections as well.
⁨Comment⁩ on ⁨Online office suite alternatives⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
CryptPad is absolutely fantastic. Easy to host and secure design.
⁨Comment⁩ on ⁨Kingdom Come: Deliverance 2 hits 1m sales in just one day⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
The second one gives you the necessary flashbacks to catch up if you should intend to follow the story. It also explains all the basics of the game mechanics as part of the quests.