Flipper
@Flipper@feddit.org
- Comment on Single Sign in for Home Assistant now possible with OpenID 2 days ago:
I should have been more clear.
I meant for self hosting.
Though realistically, even if the service is provided for the public, you could just use an instance of keycloak or something similar with open registration. That’s what an association I’m close to is doing already.
- Comment on Single Sign in for Home Assistant now possible with OpenID 2 days ago:
By default, the Credentials provider does not persist data in the database. However, you can still create and save any data in your database, you just have to provide the necessary logic, eg. to encrypt passwords, add rate-limiting, add password reset functionality, etc.
That is exactly the complexity I wouldn’t want. With just SSO it is enough to send a redirect URL to the browser and on the callback set a cookie. No js needed. If your service gets compromised and someone leeks the credentials, just log everyone out.
- Comment on Single Sign in for Home Assistant now possible with OpenID 2 days ago:
If i created a service I would go in the opposit direction. Only offer SSO and no other option.
You loose quite a bit of complexity that way.
- Comment on ‘Pokémon Go’ players have been unknowingly training delivery robots 3 days ago:
If anyone ist surprised by that they should look up why niantic was ever founded.
It was always about data collection in the real world.
- Comment on You can’t replace the battery in Lego’s Smart Bricks — and many of its sensors aren’t available yet 1 week ago:
Bis Video fehlt Mord linke an ad.
- Comment on Cheapest 14x4tb NAS 1 week ago:
You say you are on a budget. Yet you talk about 128 Gigs of ram.
Maybe you should clarify what your budget is.
- Comment on nothing & no one is safe from this plague 2 weeks ago:
Im sorry, but what integrity are we talking oft?
- Comment on Yes this year is going to be really good and productive 4 weeks ago:
Not every country is as lax as america. In Germany is often 3 months. On the other side a really good reason is required to fire someone.
- Comment on Getting worn out with all these docker images and CLI hosted apps 1 month ago:
I manage all my services with systems. Simple services like kanidm, that are just a single native executable run baremetal with a different user. More complex Setups like immich or anything that requires a pzthon venv runs from a docker compose file that gets managed by systemd. Each service has its own user and it’s own directory.
- Comment on Lawsuit Alleges That WhatsApp Has No End-to-End Encryption 1 month ago:
For Facebook it doesn’t matter if its e2e. They control the client on both sides. They can just let the client sent the clear text data to them.
- Comment on Why isn't using a key file the most common way to log into self-hosted servers? 2 months ago:
If a service doesnt offer Oidc, just dont self host it. The SSO service can then be properly secured and even if its only a password, at least its not reused.
- Comment on La satira e le news dal mondo su: attualita 2 months ago:
You know how at some point ww1 was just called world war? Get ready for Cuban missile crisis 1 & 2.
- Comment on China Is Banning Tesla-Style Retractable Door Handles Over Safety Concerns 2 months ago:
We wouldn’t even need to ban them outright. Just ban the usage for important things like windscreenwipers and climate control.
- Comment on Anubis is awesome and I want to talk aout it 3 months ago:
At least in the beginning the scrapers just used curl with a different user agent. Forcing them to use a headless client is already a 100x increase in resources for them. That in itself is already a small victory and so far it is working beautifully.
- Comment on China solves 'century-old problem' with new analog chip that is 1,000 times faster than high-end Nvidia GPUs 4 months ago:
The fun thing is, for LLM you don’t need perfectly repeatable result. It won’t speed up training but running the chips could be significantly cheaper with that kind of tech. Veritasium had a video about it a couple of years back, before the ai craze.
- Comment on Assign privileged port to caddy running with rootless podman 4 months ago:
Most people expect a domain to work without adding 8080 as a port number in the URL. Hell, I’d say a majority don’t even know that it’s possible.
- Comment on Framework supporting far-right racists? 5 months ago:
For the same reason you compare things lightly to the holocaust. At some point the word looses the gravity of it’s meaning.
- Comment on Girls 5 months ago:
As a specific example: it is used in control loops to accurately describe your system. If you have an accurate description it then becomes trivial to describe the PID controller to manage it. Going from open to closed loop is as simple as adding +1 to your equation for example.
- Comment on issues setting up nginx as an https proxy 5 months ago:
Consider using Caddy. It is much simpler to setup and all the required headers get set automatically.
- Comment on Fuck you in particular 5 months ago:
I’m getting the feeling he really doesn’t like Anish. Every page I’ve looked at has Anish mentioned. The anal apocalypse is especially for him. The glow in the dark pigment is free, if you can prove that you are associated with him to share the light.
Do they have some big feud going on?
- Comment on Everytime i come across a 3d printing post 6 months ago:
Insert scroll of truth meme here.
- Comment on Israel | An IDF soldier just exposed that Israel deliberately let October 7 happen 7 months ago:
Combined with ordering soldiers to shoot their own civilians
Excuse me, WHAT? Do you have a proper source because that sounds bonkers!
- Comment on Anubis is awesome! Stopping (AI)crawlbots 8 months ago:
No. The rate limit doesn’t work as they use huge IP Spaces to crawl. Each IP alone is not bad they just use several thousand of them.
Using the API would assume some basic changes. We don’t do that here. If they wanted that, they could run their own instance and would even get notified about changes. No crawling required at all.
- Comment on Cloudflare wants Google to change its AI search crawling. Google likely won’t. 8 months ago:
The article links to 4 incidents that are reported on Hackernews. So yes. At least 4
- Comment on Anubis, The Opensource Defender Against AI Bots: I fight bots in my free time 8 months ago:
You can bypass it by changing the user agent to not include Mozilla in the beginning.
- Comment on Signal – an ethical replacement for WhatsApp 8 months ago:
Matrix still has it’s problems. All the meta data is still saved on every server permanently.
There is still space to improve from there.
- Comment on New fuel cell could enable electric aviation 9 months ago:
Both Boeing and Airbus are working on H2 Tech for Planes.
- Comment on Don't Look Up 9 months ago:
I disagree on some spots. There are electric motors for paramotors which are significantly quieter..
You could use it in the night. With still air you also don’t need to have the breaks in your hands all the time.
I still wouldn’t use it as an attack vehicle.
- Comment on 28 years later, Lego Island's lost source code has been rediscovered – but the fans who spent nearly two years painstakingly decompiling it by hand "can't have it" 10 months ago:
No. The code was discovered by a person who used to work on it back in the day. They don’t give it out, unless the decompilers have the permission to get it from the original rights owner. It’s however unclear who owns the rights. They tried to get the permission but all three companies that might own it, didn’t even answer.
- Comment on Is it normal to not have any malicious login attempts? 11 months ago:
It’s possible to stream from jellyfin without an account. Jellyfin should not be connected to untrusted networks, like the internet. Several API just don’t check the key or don’t require one in the first place.