dgdft
@dgdft@lemmy.world
- Comment on Archaeology dig helps Tonkawa Tribe rediscover Texas roots 9 hours ago:
I got back yesterday from working on this dig, and had a great time. It was my first field school experience — but despite the fuckery that is tent-camping in central Texas midsummer, I can safely say I’ll be back every chance I get.
The project was a beautiful reminder that even in rural Texas, there are plenty of unsung heroes out in the wild who dedicate their entire lives to building community and looking out for others.
- Submitted 9 hours ago to archaeology@mander.xyz | 1 comment
- Comment on Got any security advice for setting up a locally hosted website/external service? 1 week ago:
Please tell me more, which firewall would you recommend that plays nice with Docker?
Firewalld
No NAT?
Another user in this thread suggested DMZing, so combine your advice with theirs and boom. It’s not uncommon. Most people don’t knowingly choose to use a firewall that they don’t intend to work, like you would.
why would you copy paste a docker compose without reading it?
There’s more than one way to use docker. Spinning up an official mysql image using the official
docker runORdocker composecall suggested by the docs would start up a server wide open to the entire internet if DMZ’d. - Comment on YouTube Music Downloader 1 week ago:
Just to throw out an easy option: if the music is well-labeled on Youtube, you can get pretty close to that full suite with just yt-dlp by using
–embed-thumbnailas a stand-in for album art, dump your files with an “Artist - track - album” naming structure using the–output-templateflag — then using an awk or python script as a second pss to add the artist/track/album names to the file as tags. - Comment on YouTube Music Downloader 1 week ago:
Yt-dlp is the gold-standard for that.
- Comment on Got any security advice for setting up a locally hosted website/external service? 1 week ago:
You shouldn’t suggest UFW at all then. There are other firewall options that can be used just fine with docker.
It does have real potential to cause serious issues, e.g. if OP were to put their server in DMZ mode on their router and later copy some docker setup instructions that don’t explicitly bind to localhost.
- Comment on Got any security advice for setting up a locally hosted website/external service? 1 week ago:
This is dangerous advice because docker is well-known for undoing UFW’s iptable rules.
- Comment on Got any security advice for setting up a locally hosted website/external service? 1 week ago:
No need to cargo-cult security practices here, chief. You’re not gonna get pwned by publishing your hardware specs. If you’re planning to build some kinda webapp for yourself, that’s a different story - but you have to fuck up hard to get hacked while hosting raw HTML.
Use an SSH key, disable password auth, make sure you’re firewalled, and call it a day.
- Comment on Jellyfin 10.11 RC1 Released 1 week ago:
Is there a buried lede here? What’s noteworthy about an RC of a minor version release?
- Comment on So it begins... 2 weeks ago:
Not a triad user in sight. Just lemmings living in the moment.
- Comment on File collecting program? 2 weeks ago:
While I’m sure there’s a pre-canned tool out there for you, if you have basic software experience (which you seem to), this is one of those times where it’s usually most efficient to hack together a dumb CGI script and call it a day.
This prompt should get you most of the way there, using your llm of choice:
Write a minimalist cgi script to help upload files to a server. Upon a GET request, serve a light page with a centered form that takes in a file and a submission code. Submission codes will be stored on individual lines of a plaintext file. Adding new codes to this file is out of scope - but the codes will be 8-char hex strings (do validate that submission strings are not empty!). The script should accept the submission as a POST, and save the file to an upload dir if the submission code is valid.
Vet the output, harden as needed, setup a systemd service to serve with busybox httpd, and optionally reverse-proxy. If you’ve done this sorta thing before, you can probably knock it out in a half hour.
- Comment on ISPs seem designed to funnel people to capitalist cloud services 3 weeks ago:
This is @Shimitar@downonthestreet.eu‘s work, not mine - but it’s pretty similar to how I’d set things up:
- Comment on ISPs seem designed to funnel people to capitalist cloud services 3 weeks ago:
This is a great suggestion!
Lest anyone miss the buried lede, this approach means that traffic is pre-encrypted as it passes through the gateway VPS - so even if your VPS gets hacked, it’s way harder to steal credentials and break into your services running on the home network.
- Comment on ISPs seem designed to funnel people to capitalist cloud services 3 weeks ago:
If you’re looking for sympathy, you got it. Fuck the state.
If you’re looking for solutions, use a cheap $5/mo VPS that exists purely as your gateway host. Run everything you want on your home machines, then tunnel the traffic to your gateway and reverse-proxy it there. Your data stays in your hands, you can spin up and expose new services publicly in a matter of minutes, AND your home IP isn’t vulnerable to doxxing or DoS.
- Comment on Garage - S3-compatible Object Storage alternative to Minio 3 weeks ago:
Object storage is indeed a specialized filesystem in a trenchcoat.
Object storage is typically (but not always) associated with non-hierarchical key-value lookups, as opposed to the directory tree pattern most file systems use. Object storage systems are also typically (but not always) designed with sharding and distribution in mind.
- Comment on Better music management 3 weeks ago:
This is a Jellyfin problem; not a beets problem. You can easily solve it with beets config if you’d like to, though.
The distinction between what you want vs. what you’re getting is that Jellyfin is grouping by the “Artist” tag instead of the “Artist Album” tag. I haven’t touched Jellyfin in years, but look for a builtin setting or alternative view to group by album artist - you’ll almost certainly find it.
If you want to solve it in beets, you can do that through a custom script, the FtInTitle plugin, or a combo of the inline + advancedrewrite plugins. Remember to run a re-import on the Jellyfin side after making your tweaks to the beets pipeline to make your changes show up without duplication.
- Comment on Researchers Scrape 2 Billion Discord Messages and Publish Them Online 4 weeks ago:
I was hoping to play around with the dataset over the weekend to toy with some text-embedding techniques, but they’ve pulled the cord on the download links.
Anyone have a copy of the full archive they’re willing to share, or a magnet link?
- Comment on What OS should I use for self-hosting that doesn't require extensive terminal knowledge? 1 month ago:
You didn’t start by asking a question. You needlessly trashed a helpful suggestion from a place of ignorance, then asked a naive question defensively to mask a lack of knowledge.
That is rude and trollish behavior.
- Comment on What OS should I use for self-hosting that doesn't require extensive terminal knowledge? 1 month ago:
Since it seems like you don’t know much about bash at all, I promise the book will help you.
You can be someone who actually knows what they’re talking about instead of making embarrassing, snarky comments that expose your lack of education on the topic at hand.
- Comment on What OS should I use for self-hosting that doesn't require extensive terminal knowledge? 1 month ago:
Bash has had some nice minor features and syntax sugar added, but the fundamentals are entirely the same. All the examples in the book work just the same today as they did when it was written.
What was added in 4.X or 5.x that you can’t live without?
- Comment on What OS should I use for self-hosting that doesn't require extensive terminal knowledge? 1 month ago:
It’s a 36 y/o language, mate. I still reference my copy all the time, and found it to be a great definitive resource when I was learning.
How many bash 4/5 features are you seriously using on a regular basis? What do you think is out-of-date?
- Comment on What OS should I use for self-hosting that doesn't require extensive terminal knowledge? 1 month ago:
I highly recommend O’Reilly’s Learning the Bash Shell in paperback form: www.oreilly.com/library/view/…/0596009658/.
The other responses you’ve received so far don’t offer much insight into the historical background and underlying mechanics of the shell, which are crucial to understanding the "Why?"s of command-line quirkiness.
- Comment on What are some FOSS programs that are objectively better than their proprietary counterparts? 2 months ago:
For anyone who missed it, the Windows Terminal team is infamous for claiming that it would require PhD level expertise to implement some basic optimizations suggested in a Github thread. Within a few hours, another developer countered that claim by submitting a functioning PR with said improvements implemented.
Team lead Dustin Howett then went on to double down on the original claim that said optimizations were unfeasable, and publicly attacked the author of the original suggestion thread on Hacker News. He issued an extremely half-assed apology and is still a Micro$haft employee to this day.
- Comment on Synology could bring “certified drive” requirements to more NAS devices 2 months ago:
Synology runs a proprietary OS OOTB that’s had multiple sloppy vulns exposing full remote access to users’ files. Putting your data in the hands of fuckups who have and will continue to leak it is the opposite of total control.
It’s completely trivial to store any data you want to in a cloud provider 100% securely just by piping it through openssl before uploading.