irotsoma
@irotsoma@lemmy.blahaj.zone
- Comment on Would there be any potential problem of hosting public and/or private (vpn) services in a school office? 21 hours ago:
This. Get in writing the specific legally binding policies for personal use of their network resources. Not just the personal opinion of the IT people. They don’t write the legally binding policy that you are responsible for following.
- Comment on Police told not to close investigations until they have used facial recognition 1 day ago:
Someone in charge is getting a kickback or is heavily invested in the company that supplies the facial recognition service.
- Comment on Risks of self-hosting a public-facing forum? 1 day ago:
I mean, in most cases this isn’t criminal law (in the US at least), so it means you have to attract enough attention of a corporation since they’re usually the only ones who can afford the legal costs to file the DMCA requests and responses for copyright violation. And with many other civil issues, often corporations with the money for it, don’t have standing to sue, and if they did, would be required to sue each individual in the appropriate jurisdiction.
With the removal of Section 230, these costs will go down significantly as a single user’s violation could be enough to bankrupt or shut down an entire site of violating content or, if serious criminal violations like child porn, put the person who hosts the site in prison who, will be much easier to identify and sue in a single jurisdiction or arrest than a random internet user.
- Comment on Risks of self-hosting a public-facing forum? 1 day ago:
Yeah, other countries have similar or even more strict requirements, so yeah it all depends on the jurisdiction. You have to also understand that just hosting something externally, doesn’t mean you don’t fall under laws of another country. It’s the internet. And if you live in a country, you may be held responsible for obeying their laws. I’m not a lawyer, so it’s something to be careful of even if externally hosted.
- Comment on Risks of self-hosting a public-facing forum? 2 days ago:
This is especially necessary to consider if you live in the US right now. One of the things the current administration is pushing for even harder than past administrations is removal of Section 230 of the communications act that was enacted in the 90s. This provides a defense against liability for the content you host as long as you make a reasonable effort to remove content that is illegal. Problem is that this makes it really difficult to censor (maliciously or otherwise) content because it’s hard to go after the poster of the content and easier to go after the host or for the host to be under threat to stop it from being posted in the first place. But it’s a totally unreasonable thing, so it basically would mean every website would have to screen every piece of content manually with a legal team and thus would mean user generates content would go away because it would be extremely expensive to implement (to the chagrin of the broadcast content industries).
The DMCA created way for censors to file a complaint and have content taken down immediately before review, but that means the censors have to do a lot of work to implement it, so they’ve continued to push for total elimination of Section 230. Since it’s a problematic thing for fascism, the current administration has also been working hard to build a case so the current biased supreme court can remove it since legislation is unlikely to get through since those people have to get reelected whereas supreme court justices don’t care about their reputation.
So, check your local laws and if in the US, keep an eye on Section 230 news as well as making sure you have a proper way to handle DMCA takedown notices.
- Comment on Cheapskate's Guide: Nuking web-scraping bots 4 days ago:
Are there any guides to using it with reverse proxies like traefik? I’ve been wanting to try it out but haven’t had time to do the research yet.
- Comment on Organic Maps migrates to Forgejo due to GitHub account blocked by Microsoft. 4 days ago:
Problem is that unless the person was paid for contributing, what goods or services are being exchanged with the project. I mean if Microsoft received money from that person for a subscription or something I might see them having to ban the user and refund the money. But what did the project receive that would violate sanctions? Volunteer work is usually not covered or else relief organizations and religious missionaries would be banned and the US historically loves sending those. What am I missing?
- Comment on ChatGPT is shifting rightwards politically 6 days ago:
That’s going to always happen when training data with the entire internet. The outliers will always skew thing more than the mainstream if the models are not designed to exclude them.
And there are a lot of contributing factors, for example with right leaning stuff being more available for LLMs to process as the platforms are generally less concerned about privacy and more concerned about policing and control (that’s just what right wing is), of course the models are going to see more of it than the left leaning stuff where people are more on the repressed side, more likely to use more private communication methods, and less likely to be able to safely, publicly share outlier kinds of views to skew things the other way. Even the people who pretend to be extreme left-wing, like the USSR or the Chinese Communist Party, are usually, in reality, right-wing.
- Comment on CVE-2025-1974: vulnerabilities that could make it easy for attackers to take over your Kubernetes cluster 1 week ago:
Yes it’s defects in the ingress-nginx controller package.
- Comment on Making sure restic backups are right 1 week ago:
Depends on what you’re backing up. Is it configs for applications, images, video, etc? If it’s application configs, you can set up those applications in a virtual machine and have a process run that starts the machine, restores the configs, and makes sure the applications start or whatever other tests you want. There are applications for doing that.
If it’s images or videos, you can create a script to randomly pick a few, restore them, and check the integrity of the files. Usually just a check of the file header (first few bytes of the file) will tell you if it’s an image or video type of file and maybe a check on the file size to make sure it’s not an unreasonably small size, like a video that’s only 100 bytes or something.
All this seems like overkill though in most scenarios.
- Comment on Mastodon.online invitation if anyone wants it 1 week ago:
I’ll take one. Feel free to DM me.
- Comment on Self-hosted SSO 2 weeks ago:
Keycloak. Took me a bit to learn the basics, but it has been way easier to troubleshoot than Authentik and has more features. If you need something that mimics LDAP rather than syncing with an existing LDAP, then Authentik is pretty good. I don’t use LDAP, though.
- Comment on What one Finnish church learned from creating a service almost entirely with AI. 3 weeks ago:
It brought in 120 people, many of whom wouldn’t have otherwise come. Probably made some good donation money out of it and got some publicity for the church.
- Comment on First Porn, Now Skin Cream? ‘Age Verification’ Bills Are Out of Control. 3 weeks ago:
I mean dihydrogen monoxide can cause permanent injury or death if irresponsibly used. Let’s get that on the list next!
/s
- Comment on What host names do you use? 3 weeks ago:
I use Arthurian legend related stuff. Servers and desktops are locations. My portable devices are the names of swords. IoT devices are more explicitly descriptive since I won’t need to type in, but it’s more important to recognize them when I see them, like lightswitch-livingroom.
- Comment on I Used to Teach Students. Now I Catch ChatGPT Cheats. 4 weeks ago:
Yeah the push to objectify performance in education so that legislation can cut funding to what they consider underperforming, has made it something that needs to be gamed to prevent schools from losing funding since often the reason they’re underperforming is that the students and their families that they cater to have attended underfunded schools their whole lives. Giving fewer resources to those who never had any, on purpose, is classism. So if students are judged based on how well they do menial tasks and standardized tests, then it’s much easier to cheat. It’s not like they’re learning anything from those anyway so they don’t see any value in trying. And teachers have too many students to pay enough attention to actually teaching especially when now their primary job is making sure the school doesn’t lose funding.
- Comment on Pi-Hole question regarding unbound and cloudflared 5 weeks ago:
DNS over TLS handles that. No need for DoH really. Unless DNS ports are blocked or captured by NAT or something and you need to use port 443 with DoH. At least not with a DNS server. DoH is useful for individual applications to do their own DNS lookups bypassing the OS or network level DNS. Otherwise DoH and DoT provide the same basic protection. DoT is just at a lower network layer and thus applies more broadly across the network or OS rather than being application or resolver specific. There’s never been a real need for a DNS server to use DoH instead of DoT unless DoT is blocked upstream.
- Comment on which softwares can I self host without public IP? 5 weeks ago:
Use VPN or DDNS connected to your domain registrar. Of course DDNS might not update immediately, especially if your domain host is not the same as your DNS provider, so you might have outages for short periods when your IP changes. So, depends on if you’re OK with that or what kind of connection you have and whether it changes your IP a lot.
Also, might be able to get an IPv6 address for free depending on your ISP or at least you can set up your router to request that your address block is retained for you. I know Comcast does this. Unfortunately, my host does not.
- Comment on Pi-Hole question regarding unbound and cloudflared 5 weeks ago:
Unbound supports DoH if compiled with the support and given TLS certificates. I don’t use it internally on my home network because I have a pihole that I want to capture the traffic. I do use DNS over TLS for upstream communication, though.
- Comment on AI Killed The Tech Interview. Now What? 5 weeks ago:
Have people who actually understand what they are asking do the interviews. Problem with mist interviews is they are non-technical people asking complex technical questions and expecting a very specific answer that only people whose brains work a certain way will come up with. This often eliminates the mist creative developers because they come up with different solutions than the one the nontechnical person was taught is the right answer. Not to mention often the questions they ask are obsolete things that most people aren’t going to know off the top of their heads because it’s something they would normally look up in real work not something they need to memorize. Tech interviews are horrible at finding good talent. Good riddance.
- Comment on What is wrong with the architecture of the Internet? 1 month ago:
The problem with all software is adoption. Usually it’s trying to get people to adopt a protocol or buy a piece of software that causes less than optimal decisions to be made. There have been lots of good replacements for all of the things you mentioned, they just never caught on. And the problem in the beginning when they didn’t have those pressures was the hardware and bandwidth limitations.
- Comment on Does AI detect breast cancer better than doctors can? 1 month ago:
Yes. X-ray, MRI, and other complex images are difficult to analyze at a glance and it takes a lot of experience to make a guess on whether something is normal or not. This is exactly what AI is good for. Learning the relationship between some complex set of data points and assigning a probability that it is something based on historical data. AI is just not being used for the correct things most of the time. This is one of those correct things.
- Comment on AI is Stifling Tech Adoption. 1 month ago:
And AI will stifle creativity in all areas that it’s used in. That’s the problem with predictive models being called “AI”. They are only as “intelligent” as the information they were trained on and will always be biased towards what that data set was biased on and won’t be able to create anything truly new, only improve existing things.
- Comment on An OpenAI whistleblower was found dead in his apartment. Now his mother wants answers 1 month ago:
The other recent “suicides” of whistleblowers have gone unpunished, so it’s no surprise that it’s now standard practice. Especially unsurprising given that it’s standard practice of the dictator currently in control of a large percentage of American politicians and billionaires.
- Comment on Turning a mini-pc into a WiFi access point 1 month ago:
Mine has those, but it was a different model that had the hardware required to do WiFi. Likely it’s not included and unless the device was designed to modify, it’s likely that the motherboard doesn’t have a way to add it easily and there won’t be much space to do your own WiFi card and soldering if the board does have the connections and support in the firmware/BIOS. Best bet would be a USB WiFi card.
- Comment on CISA staffers offered deferred resignations, extending broader cybersecurity fears. 1 month ago:
Anyone who isn’t a loyalist and doesn’t take this is likely in for a bad time. Better to have time to find another job than get fired for insubordination when they start the purge for not being loyal enough as defined in the letter from Trump and lose their ability to transition to other jobs or keep their other tenure related benefits.
- Comment on Spyware firm cuts Italy access after alleged targeting of activists - reports 1 month ago:
They’re just the only ones who got caught. Giving that kind of access to almost any corporation or government agency without oversight is going to result in them targetting people who are critical of them.
- Comment on More Google Spyware to Enjoy! 1 month ago:
Alternative suggestions? I’m going to check out Fossify messages for now.
- Comment on It is time to ban email. 1 month ago:
Agree email needs to be replaced, but what a crappy article. Especially love how they don’t understand that things like the fact that CC used to be a standard letter writing concept and so, yes, people knew what it meant. Making me feel old. Yes people used to have to learn how to formally write letters on paper, and they had lots of things that could note additional information like ps, cc, att, and so on.
- Comment on Bluesky Proves Stagnant Monopolies Are Strangling the Internet. 1 month ago:
I mean, that’s what late-stage capitalism is all about. It has been predicted in a million writings. Any competition won’t survive for long though. Eventually, it will either get gobbled up and merged into the monopoly/duopoly or it will get “regulated” out of existence by those forces hands in the government.