JustEnoughDucks

JustEnoughDucks , 7 days ago

Well many smart locks can be exploited physically rather than hacking wise.

On the other hand, flipper zero can probably exploit a lot of 2.4GHz locks.

JustEnoughDucks , 15 days ago

Are you absolutely sure that you have the firmware installed?

If you have gone through these steps of adding the modules: https://jellyfin.org/docs/general/administration/hardware-acceleration/intel/#low-power-encoding

and it doesn't work, you may have to manually download the git linux firmware library, extract the i915 folder and place it in your firmware folder.

That is how I got jellyfin working on my A380 after pulling my hair out about it.

Please check and post your dmesg starting up.

You should see GUC and HUC enabling.

JustEnoughDucks , 15 days ago

It was just copied frame by frame from LG 16 years before.

https://youtu.be/NcUAQ2i5Tfo

The death of creativity is very apt considering they had no creativity making it, they just stole it and remade it.

JustEnoughDucks , 17 days ago

Lol this was one of the earlier nature valley bar, before their single packed one. They were around 15 years ago at least. Always been packed per 2 with the hope that you will just eat 2 at a time

JustEnoughDucks , 18 days ago

Do you have an authentication frontend like Authelia in front of your Jellyfin domain? Apps often break with that extra security layer in front.

JustEnoughDucks , 19 days ago

Or, because studies have shown that in early and mid childhood development stages cell phones and tablets can actually stunt motor proficiancy and cause arrested social development, just give them a damn key.

Much easier than every single other option. If they lose things, actually parent them and teach them to be responsible and different organizational methods and tie the key to something they always have.

JustEnoughDucks , 18 days ago

It's funny because everyone arguing for phones and tablets for kids is like "hurt durr but their education"

You know what the vast vast vast majority of kids use the phones and tablets for? Fucking sure as hell that it isn't education.

Addicting microtransaction games, social media, and the lowest trash YouTube channels.

Pretty much every teacher in existence will tell you that phones for young kids have been hell and the kids can't focus at all and have much more trouble learning.

And every single person with any awareness at all will know that social media has been an absolute plague to kids social and mental health.

Sure give a phone to your kid when they are 14, 15, 16. But when they are in primary school it is not needed and they are at the most risk for every bad aspect of phones.

JustEnoughDucks , 18 days ago

Parent control

JustEnoughDucks , 17 days ago

They don't want people to innovate. Innovation is a buzzword that they use to market themselves as something other than parasites.

Most companies want to safely follow market trends to suck away large profit margin with minimal payout to workers. If they make a product that doesn't work, they just assert that it does and that the customer is wrong.

That's also why they intentionally quiet fire seniors like in the article. They don't give a fuck about quality or innovation. They want the cheapest labor possible while hiking service/product pricing.

They don't want employees to be happy. They want them to be cheap and exploitable.

That is literally the base form of businesses in the flawed reality of capitalism.

JustEnoughDucks , 18 days ago

If you want to mirror the entire system, OS and all, then clonezilla is the best option.

JustEnoughDucks , 20 days ago

Last week for me lol.

AMD DRM bug in the kernel that prevents certain 3D rendering or something. Most games through WINE/proton was broken. Had to downgrade the kernel.

Wouldn't call that fun as it prevented one of the very few days per month I get to play games with some of my friends

JustEnoughDucks , 20 days ago

Yeah I think current graphic development is going at breakneck pace, but of course that means a lot more bugs...

JustEnoughDucks , 23 days ago

What is Futo? Their website says absolutely nothing besides their "company values."

What is their business model?

Who is running it?

How do they earn money to give out?

What do they ask in return besides hoarding the trademarks?

Flat fee is always good, but I am always skeptical about these sort of completely opaque, altruistic companies that often turn into not-so-altruistic companies after they see more profit capabilities.

JustEnoughDucks , 25 days ago

It ends when trump popularizes his shitty brain microchip and the engineers figure out technology to project image and sound into your head.

24/7 unmodifiable banner ads, ads while you sleep, ads related to what you see that cover your vision until you pay an extra subscription fee, then just border ads.

That is the future that musk and tech BoDs cum in their pants for.

The consumer advertising industry is a scourge of humanity. The dregs of the groveling worms.

JustEnoughDucks , 26 days ago (edited 26 days ago)

Compatibility and storage.

Do you want only 2 devices of the 10 your family possibly owns to work?

Do you want your family to complain that jellyfin "isn't as good as Netflix/Disney+/etc.." Because it constantly stops to buffer and a can't keep up the framerate?

It is completely fine if you are single and have 1-2 devices that work with AV1 and h.265 client side and that is all you need, then you don't have to bother with transcoding at all. When you start letting other people into it, compatibility becomes an issue.

As for storing it beforehand, the entire point of AV1 and HEVC is to significantly reduce the size on disk. If you have to store 10 versions or each file, 5 resolutions each, half h.264, then you are taking up about 20x the space per file compared to 1 copy of HEVC or AV1.

A transcode GPU like the A380 or new QSV compatible CPU is MUCH cheaper than a new good quality 12TB drive lol

Sorry for the long text, it pretty much depends on the living situation.

JustEnoughDucks , 25 days ago

I have one, it is fantastic.

Someone said that it is "not terribly performent" but it doesn't matter for transcoding. It can do multiple 4k streams of AV1 & HEVC. That is perfect.

According to benchmarks, it beat the 3080 and 6800XT when it was released for transcoding performance. That is what you have to look at in this case, you aren't gaming on it.

Just remember to enable all of the correct kernel modules to get it working. You often have to manually download the firmware git repo and move it to the firmware folder in Debian to get it working.

JustEnoughDucks , 25 days ago

https://www.tomshardware.com/reviews/intel-arc-a380-review/5

Blows the 6950XT and 3090 out of the water in transcoding performance. I would say that is performing very well. That was before drivers have gotten much much better too probably a bigger difference now.

JustEnoughDucks , 30 days ago

Government grants should come with government share % of the company.

Or at least with heavy requirements and obligations like every government "grant" for normals people.

JustEnoughDucks , 1 month ago

Swedish city names, but only the ones with pure english characters to avoid hassel 😅

Kiruna

Halmstad

Lund

Etc...

JustEnoughDucks , 1 month ago

Licensing is also harder here in Belgium.

The drivers and in the netherlands are still some of the shittiest drivers outside of Italy.

80%+ of bmw and range rover drivers (of which a huge percentage of cars are) never ever use their turn signals, people literally stand still in the middle of intersections in a 5 car pileup combined with the fact that a huge percentage of people blatantly run red lights so when the light turns green in the opposite direction during a busy period, hundreds of intersections are completely blocked causing immense traffic. This comes from the rule where you generally pass behind the car turning opposite of you. When you have a 5 car pileup in both directions, nobody can pass behind.

Not to mention the rampant "Belgian exit" where cars speed up over the speed limit to go from the right lane, passing a few cars on the left, only to re-enter the right lane past a solid line to screech into the exit a second or two faster. I see this one multiple times every time I drive.

Strict requirements don't mean much if your driving culture is completely fucked. But culture is also the hardest thing to change.

JustEnoughDucks , 1 month ago

Mealie is absolutely the best

• Home Assistant integration

• SSO through OIDC (though mine is broken and I need to file a bug)

• meal planning functionality with shopping checklists

• equipment checklists

• advanced grouping through tagging, cookbooks, and categories. Everything can be beautifully sorted

• then the holy grail: recipe parsing through URL. I haven't found recipe parsing this good since the discontinued ChefTap app

JustEnoughDucks , 1 month ago

As someone who doesn't live in the US:

The data from google and facebook is hoarded by a foreign nation (the US is basically a quasi-democratic plutocracy which also has extremely extensive surveillance both legally and agencies caught working in grey areas) to boost surveillance and that is pretty blatant about their espionage and political propaganda. We get US political right wing propaganda on these platforms all over the rest of the world.

There is a difference of course, but the gap is closing significantly every few years.

JustEnoughDucks OP , 1 month ago

Yes, that is why I gave an example of how i thought it worked, but i have a single physical server with *arr suite, HA, reverse proxy, and all of my other services.

If it is a near physical separation of traffic, how can 1 device with 1 MAC and 1 IP be isolated on multiple parts of the VLAN?

JustEnoughDucks OP , 1 month ago

Yeah, for that threat model, a VLAN is not needed in my opinion:

• esphome devices are for sure not data collecting and pihole will block most of the phone homes with a good block list, where possible (like simple smart devices) they are flashed with a local open source version. Still the vast majority are KNX and Zwave which are local only

• video cameras are local-only always and have completely blocked internet access via the router

• This is probably the biggest threat unpreventable in other ways. Though definitely citation needed for them actually being caught recording conversations lol. People think phones do that too, but it is simply a lot easier (and more importantly, cheaper with a much higher ROI) to make a complete data picture through search/watch history + proximity to other devices.

JustEnoughDucks , 1 month ago

I think the wording is off.

Many or most add-ons need their own docker containers, that is what the add-ons are.

Every integration does not need its own docker container.

JustEnoughDucks , 1 month ago

There are a few add-ons that are very handy that don't have a docker equivalent. Namely the google cloud backup.

I also agree that you generally don't need add-ons and hopefully if someone is running HA on docker, they don't need them, but for a few select ones, it is "needed"

JustEnoughDucks , 1 month ago

Just don't port forward ssh. There is 0 reason to in 99.99% of home cases

JustEnoughDucks , 1 month ago

If you are looking for user management and registration, then Authelia is the wrong software for you.

Authelia is a very light weight security layer (and more recently SSO) that is only meant for few users precisely because it doesn't have an onboarding process, dynamic access control, and more advanced features. Everything is done through config files and secrets. The admin has to manually create a file or plaintext lines with the user and password for each new user and restart the container.

Authentik is what you want if you want a bunch of users and new user sign up.

As for bitwarden/SSO, they should be fully separate. Otherwise you will likely break Bitwarden app and browser integration functionality.

You also do not want to run into the case where you don't know your SSO password so you can't get into bitwarden to find the password and you are screwed.

Bitwarden, TOTP method, and SSO should ideally be separate and you should be able to access your passwords and TOTP without requiring any password that is exclusively in the Bitwarden database.

JustEnoughDucks , 1 month ago

I think he is saying that his physical attack surface is very small since he is remote, so maybe he doesn't bother?

Either way, encrypting drives is simply always good if you ever resell the computer or upgrade drives.

JustEnoughDucks , 1 month ago

The only problem there is that, at least a whole ago, you will get duplicate images. Between the external library and your app upload

JustEnoughDucks , 1 month ago

True, but if you are not from America, many many people use VOIP calling on apps like WhatsApp to call.

DnD priority overrides don't work for that.

JustEnoughDucks , 1 month ago

Maybe that is a new android thing or a Samsung thing? That phrase doesn't show up in my settings.

2 years ago, my mother and I tested it extensively when I moved trying all of the "allowing app" settings combined with starred people and it never worked for whatsapp, only stock dialer and texts.

JustEnoughDucks , 1 month ago (edited 1 month ago)

A new 12 TB drive is literally 300€ now.

I don't think it was EVER 100€ for a 12TB, certainly not helium filled. Prices during covid went up, but not even near 3x for hard dives.

JustEnoughDucks , 1 month ago

Yes and they sold shitty generic bluetooth earbuds that they pulled from the market a year and a half later with 0 support when they were almost ready to launch their Bluetooth headphones.

JustEnoughDucks , 1 month ago

Can't be hit by new backdoors when your packages haven't had updates for years 😉

In all seriousness Debian makes solid choices that makes everything as low maintenance as it can get for self hosting.

For someone who recently lost a bunch of their free time, that is amazing to not have to mess with stuff.

JustEnoughDucks , 2 months ago

Researchers have found a malicious backdoor in a compression tool that made its way into widely used Linux distributions, including those from Red Hat and Debian.

https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/

JustEnoughDucks , 2 months ago

Depends, for example Debian unattended-upgrade caused system restarts after many updates that was extremely inconvenient for me because I have a more manual bringup process. I had restarts turned off in its settings and it still restarted.

I uninstalled it and have not one single unwanted restart since then, so manual upgrades it is.

JustEnoughDucks , 2 months ago

What is the first one? Looks like Debian to me.

JustEnoughDucks , 2 months ago

If you go for WD red plus 12TB drives, they are helium filled and less noisy even than the 8TB air versions.

I have one and it is silent when not tracking, but all hard drives have some seeking noise. Mostly because it is irregular so human ears pick it up more than white fan or spinning noise.

Best idea for absolute noise reduction in the same room is getting a good closed case, reinforcing with some foam panels with a direct air path that you can direct through a cupboard cutout for example.

What you are looking for is high capacity SSDs in this situation, but that is pricey.

JustEnoughDucks , 2 months ago

Use antennapod. They literally highly discourage donations now because they have enough donations to cover their operating coats and then like 50% extra on top.

Because updating a podcast app is literally not a full time job if it is so stable as these two apps. They both release small feature updates and bug fixes for a while. Antennapod even did a full UI update to the new material standard.

Pocketcasts devs seem to want maximum profit from it. They probably have an order of magnitude more income already than antennapod due to how many more people use it and how they push subscriptions. I just don't understand why they need that much money.

JustEnoughDucks , 2 months ago

I definitely use the previous 10 versions of electron that I definitely didn't completely forget to uninstall.

In unrelated news, by root partition is now about 2GB lighter.

JustEnoughDucks , 2 months ago

Yes, have it running right now!

JustEnoughDucks , 2 months ago (edited 2 months ago)

I am very confused what you mean that a phone doesn't count as a 2nd factor.

Your password is factor one.

An OTP is factor 2, whether it is on a phone or a yubikey makes literally 0 difference practically. It is a "something you have".

If you need biometric unlock to get into your 2fa app or on the yubikey itself, that is a 3rd factor of "something you are."

If you are very worried about someone compromising your phone app and already knowing your password, (which is not how 99% of intrusions are done) then put a pin or fingerprint on your 2FA app and it is back to being a secure 2nd factor.

The probability of someone breaking into your phone, hacking your bitwarden password, and having a fingerprint exploit that allows them to break into your 2FA app is like 1 in 1 billion unless you are like top 1000 most important people in the world. But as a thought exercise, a dongle indeed has the potential to be more secure because it is an additional "something you have" to your phone.

JustEnoughDucks , 2 months ago

But this is only the case if you store your passwords in a plaintext file on your phone. Something that I hope nobody would be dumb enough to do, but I guess many people would.

If you have an encrypted password manager like Bitwarden or so where you have a single long password to open and get at your other long secure passwords, then it is essentially a different factor than your phone, right? Since having the phone unlocked would do nothing to help the attacker get to your password vault.

JustEnoughDucks , 2 months ago

Lol as if. It is owned by the trade union who workers are required to be a part of, but have 0 say in.

The "union officials" are not chosen by the workers, but by management who are chosen by their management and so on until the Chinese head trade union officials which are party men who, just like in the old soviet Union, are essentially the chinese bourgeoisie. It is essentially a fascist oligarchy which is the exact same as under capitalism, just a different structure and cover story.

The workers get 0 say and there is no evidence that they share in the profit either, and huawei does not deny that structure either.

https://techcrunch.com/2019/04/22/why-its-so-hard-to-know-who-owns-huawei/?guccounter=1

JustEnoughDucks , 2 months ago

Well, moving the goalposts, but exactly, it doesn't solve the problem at all that I talked about.

Again, it is completely fine if people want separate services, but there is currently seemingly no documented way to tightly integrate services into homeassistent to be able to be used within homeassistant via containers.

JustEnoughDucks , 2 months ago

https://github.com/sabeechen/hassio-google-drive-backup

And any add-on that you actually want usable from within home assistant. I.e. tight integration like having esphome in the sidebar.