truthfultemporarily
@truthfultemporarily@feddit.org
- Comment on AI experts return from China stunned: The U.S. grid is so weak, the race may already be over 1 week ago:
Let’s be fair: no one ever warned that this could happen.
- Comment on Valhalla awaits 2 weeks ago:
You can also hang yourself from an ash tree!
- Comment on [deleted] 2 weeks ago:
I understand this, but this is inconsistent behavior. You now use 22 inside your network and something else outside. Whenever you create inconsistent behavior, everyone using it has to have an awareness of all these inconsistent behaviors.
Also, it is hard to troubleshoot because the tool most admins would want to use (netstat) will not give you useful information to understand the situation.
- Comment on AI chatbots are becoming popular alternatives to therapy. But they may worsen mental health crises, experts warn 2 weeks ago:
If you have a drink that creates a nice tingling sensation in some people and make other people go crazy, the only sane thing to do is to take that drink off the market.
- Comment on AI chatbots are becoming popular alternatives to therapy. But they may worsen mental health crises, experts warn 2 weeks ago:
I’m not sure LLMs can do this. The reason is context poisoning. There would need to be an overseer system of some kind.
- Comment on [deleted] 3 weeks ago:
If you change it, definitely change it on the server so it shows up in netstat and is consistent.
- Comment on [deleted] 3 weeks ago:
The idea behind keys is always, that keys can be rotated. Vast majority of websites to that, you send the password once, then you get a rotating token for auth.
Most people don’t do that, but you can sign ssh keys with pki and use that as auth.
Cryptographically speaking, getting your PW onto a system means you have to copy the hash over. Hashing is not encryption. With keys, you are copying over the public key, which is not secret. Especially managing many SSH keys, you can just store them in a repo no problem, really shouldn’t do that with password hashes.
- Comment on [deleted] 3 weeks ago:
This is mostly nonsense.
- Why block outgoing? Its just going to cause issues for most people. If you’re going to do that, do it centrally (hw firewall)
- Why allow http and NTP incoming, when there is no http / NTP server running.
- If there is http server running no mention of ssl-config.mozilla.org and modsecurity
- If you’re using ufw anyway why not go with applications instead of ports?
- In a modern distro, the defaults are usually sane (maybe except TCP), most of the stuff in the SSH config is already default.
- Why change the SSH port of a home server, which most likely is not reachable from the outside anyway?
- Actually potentially impactful stuff like disabling services you don’t need, such as cups, is not mentioned
- unattended-upgrades not mentioned
- SELinux / AppArmor not mentioned
- LKRG not mentioned lkrg.org
- Fail2ban not mentioned
Don’t just copy random config from the internet, as annoying as it is, read the docs.
- Comment on AI chatbots are becoming popular alternatives to therapy. But they may worsen mental health crises, experts warn 3 weeks ago:
It’s not better than nothing - it’s worse than nothing. It is actively harmful, feeding psychosis, and your chat history will be sold at some point.
Try this, instead of asking “I am thinking xyz”, ask " my friend thinks xyz, and I believe it to be wrong". And marvel at how it will tell you the exact opposite.
- Comment on The Substack app sent a push notification promoting a Nazi newsletter to several users. 3 weeks ago:
Its probably talking about the UK stratospheric aerosol injection research. Like all conspiracy theories, just enough of a grain of truth.
- Comment on Is it okay to cover the outside of a microwave in aluminum to prevent or lessen microwave WiFi interference? 3 weeks ago:
I mean don’t see why not, but you need complete coverage around it, including underside.
You could also try switching to 5 GHz wifi if your walls allow it.
- Comment on Study Reveals How Mobile Apps Track Users Through WiFi and Bluetooth: 86% of these apps collect at least one type of sensitive data, such as GPS location or unique device identifiers 3 weeks ago:
Could use mullvad DNS.
- Comment on YSK: Deezer, the music streaming service, is owned by a company whose Founder and CEO is a Russian Oligarch with connections to the Kremlin and donates to the American Republican party. 3 weeks ago:
So deezer is owned by a geezer.
- Comment on Looking for recommendations for a multi home NAS solution 4 weeks ago:
If you are sure that every household can only change their own data, and not that of anyone else, meaning there is only one “true copy” for every file, then yes, you can just replicate that to the other locations.
- Comment on Authentik vs Authelia? 4 weeks ago:
I do not consider Authelia secure from an architecture point of view.
That is because there is, by design, no authentication between authelia and the backend. That means that if anyone ever manages to directly access the backend services, they can impersonate anyone, including admin.
- Comment on Looking for recommendations for a multi home NAS solution 4 weeks ago:
I want to write this in a separate post because I see many questionable suggestions:
Your scenario does not allow for a simple rsync / ZFS copy. That is because those only work with 1:many. Meaning one “true” copy that gets replicated a couple of times.
As I understand you have a many:many scenario, where any location can access and upload new data. So if you have two locations that changed the same file that day, what do you do? many:many data storage is a hard problem. Because of this a simple solution unfortunately won’t work. There is a lot of research that has gone into this for hyperscalers such as AWS GCP, Azure etc. They all basically came to the same solution, which is that they use distributed quorum based storage systems with a unified interface. Meaning everyone accesses the “same” interface and under the hood the data gets replicated 3 times. So it turns it back into a 1:many basically, with the advantages of many:many.
- Comment on Looking for recommendations for a multi home NAS solution 4 weeks ago:
So I think this can be achieved in different levels of complexity.
First of all, you may want to look into ZFS, because there you can have multiple “partitions” that all have access to the entire free space of the device or devices, meaning you won’t need two separate drives. Or probably you want multiple smaller and cheaper devices that are combined together because it will be cheaper and more fault tolerant.
You also need some way to actually access the data. You have not shared how that is supposed to work: smb/nfs, etc. In either case you need a software that can do that. There a various options.
Then, you probably want to create some form of overlay network. This will make it so that the individual devices can talk to each other lime they are in the same lan. You could use tailscale/headscale for this. If you have static public IPs you can probably get around this and build your own mesh using wireguard (spoiler: thats what tailscale does anyway).
Then, the syncing. You can try to use syncthing for this, but I am not sure it will work well in this scenario.
The better solution is to use a distributed storage system like garage for this, but that requires some technical expertise. garagehq.deuxfleurs.fr
Garage would actually allow you to for example only store two copies, so with three locations you would actually gain some storage space. Or you stay with the 3x replication factor. Anyway, garage is an object store which backup software will absolutely support, but there is no easy NFS/smb. So your smart TV, vanilla windows or whatever will not be able to access it.
Overall its a pretty tricky thing that will require some managing. There is no super easy solution to set this up.
- Comment on Looking for recommendations for a multi home NAS solution 4 weeks ago:
Your requirements are really unclear.
- how many houses
- how far are they apart (latency)
- what is their internet connection like? up/downstream? Static IP? Is it stable?
- how are they supposed to access the data?
- what kind of data is it, and what is the access pattern? Meaning, is it text files? Occasional pictures? Movies?
- how much data do you need in total (yours+others)
- Comment on Maybe just do the hard work yourself 4 weeks ago:
I just want to point out that it doesn’t fake or lie or anything. That is giving machine learning too much credit. Just picks the statistically most likely next thing to say from its training data.
I guess training data includes reddit twitter Facebook etc. and so humans probably sometimes say that in that context.
- Comment on Any nominations? 5 weeks ago:
Its wild mustard all the way down.
- Comment on Could you fcking not. 1 month ago:
- Comment on The signatures are still coming and it's already making an impact 1 month ago:
Look I get it. The planet is dying, income inequality, it seems everything is unfair and going to shit. People yearn at an opportunity to help make things better. But yelling for simple solutions is the opposite of helpful. Because there are no simple solutions.
Saying to “just open source it” does not make sense.
What do you do about:
- proprietary codecs
- proprietary software that just does not exist as open source
- the fact you need a copy of the game engine to actually build the game from sources
- assets that have been bought on asset stores. Do the people who make those for a living not have a right to continue to make a living?
Making single player games without always online DRM: yes totally doable
Running game servers of online games forever: not really doable, as soon as all the libraries etc. they depend on are unsupported they will shut down one way or another. You need staff basically forever. Not even mentioning the maintenance headache that every legacy system always turns into.
Letting people run their own dedicated servers: sometimes doable, depends on the game though. Some games do not have “a server” but a whole infrastructure of stuff, look at foxhole. Some “servers” are a house of cards barely held together by duct tape.
This initiative all comes down to the definition of “reasonable”. What is reasonable, actually? Running an infrastructure at a loss until bankruptcy? Or just keeping it online until it starts making a loss.
- Comment on The signatures are still coming and it's already making an impact 1 month ago:
There is a reason it’s included though. Stuff like fmod, bink video etc. does complicated things that you otherwise need to implement yourself.
- Comment on Injured dog walkers could be costing NHS £23m a year 1 month ago:
I btlet they are saving the NHS multiple times that amount due to having an enforced consistent sleep rhythm and going for walks twice a day.
- Comment on Looking for an html-based secure message service 2 months ago:
I mean that’s pretty easy to build yourself. You can write a super simple web app and on get it displays a message then deletes it from database.
- Comment on Reappraisal of the Geologic Time Scale: Evidence for a 6,001-year-old Earth 2 months ago:
The earth is only 6001 years old [1]!
- Comment on Docker is not available in RHEL10 2 months ago:
So containers have been standardized for a while now (OCI), and even if you install “docker” it’s actually just installing containerd with docker-cli. For years kubernetes is not even supporting docker-shim anymore. So there should be no issue. What is even the problem you are running into?
- Comment on An alien who sees in the radio part of the light spectrum would probably be blinded by all our wireless communications 2 months ago:
If you were an alien sensing radio waves a city for you would be the same as a bright day for us: we are used to lots of visible light being scattered around, and the aliens would be used to radio doing the same.
- Comment on An alien who sees in the radio part of the light spectrum would probably be blinded by all our wireless communications 2 months ago:
We see in the visible part, yet we are not blinded by all the light.
- Comment on Samsung teams up with Glance to use your face in AI-generated lock screen ads 2 months ago:
What the fuck.