vsis

vsis OP , 6 days ago

Vault features are cool. I really like it. But with Hashicorp now there is this big risk of "rug pulling" regarding its license.

The wise thing, in my opinion, is to avoid this company as much as possible.

vsis OP , 5 days ago

It's no longer open source. Big Deal in my books.

vsis , 1 month ago

🔒Verified secure ✅

vsis , 1 month ago

you are a printer we are all printers

vsis , 3 months ago

Hey, ChatGPT, my uncle says new Macbooks are just glorified Raspberry Pis.

How many MB/s are in a Raspberry Pi?

vsis , 3 months ago

If you’re concerned about security, consider GPG signing your kernel with Libreboot GRUB for an additional layer of verification at boot.

Hey! I had no idea that was possible. I usually encrypt everything but /boot, because it's easy that way.

I don't have a "threat model" of someone puting malware in /boot while I'm away of the computer. But it would be nice to know how to prevent that.

Do you have a link of a guide or tutorial for that?

vsis , 3 months ago

It's in the archwiki 😤😤😤

vsis , 3 months ago

Keys and tokens will be shared securely via singaporean hotels wifi.

vsis , 3 months ago

If your comments have been federated to other instances, they will be there until they are deleted locally.
If someone clicks on your user profile, they will get a DNS error if the domain is no longer there. Images in the comments pointing to you instance will be broken too.
Nothing terrible actually happens.

Migrating accounts a la Mastodon is not happening soon in Lemmy.

My advice is: Go on and save some money.

vsis , 4 months ago

Modern problem: *exists

thAt bEcaUse le USA baD

vsis , 4 months ago

I'm too lazy to label them. So, I usually keep the PDs connected to the charger and that's it.

But if it becomes a problem I'll probably use a wire labeler.

It would be nice if they came labeled from factory, though.

vsis , 4 months ago

so, jesus can it?

vsis , 4 months ago

Sorry to read that.

I've dded an external drive instead of an SD card once by mistake. I've never felt more stupid than that day.

vsis , 4 months ago

Friends don't let friends to use snap.

I used to love Ubuntu. But for many reasons, snaps among them, it no longer exists to me. It's just Mint or Debian if I need something Ubuntu-like.

vsis , 4 months ago

Rich stupid guy doing things is not technology.
Why is this community flooded with this guy doing or saying things?

vsis , 4 months ago

It's running NetBSD, isn't it?

vsis , 5 months ago

Nothing illegal is being discussed.

But I'm happy to talk about Jolly Roger.

vsis , 5 months ago

Random ports are easy to discover and there are tools to discover what service is behind a port.

It's annoying for the legitimate user and easy to bypass by an actual attacker.

Also, if you use a random port above 1024 it could be a security issue since any user could star listening if the legitimate process crashes.

See this

vsis , 5 months ago (edited 5 months ago)

Some security tips:

Firewall should block everything by default, and you start allowing incoming and outgoing connections when you need them or if something fails.

Disable passwords and root access in ssh daemon.

Use fail2ban or something similar to block bots failing to log-in.

Use random long passwords for everything (eg: like databases). And put then in a password manager. If you can remember the database password, it's not strong enough. If you can remember the admin password for a public web service, it's weak.

Don't repeat the passwords. Everything should have its own random long password.

.env files and files with secrets should be readable only by its service user. Chmod them to 400.

Monitor logs from time to time to see if something funny is happening.

vsis OP , 5 months ago

Thanks to both of you.

I had the hope that DMARC, SPF and DKIM was stuff I could just ignore if not sending email. It seems I was wrong about that.

vsis OP , 5 months ago

https://workaround.org/

Wow! this is exactly what I needed. Although, I didn't exactly ask for it.

Thank you very much

vsis , 5 months ago

These news are obviously false. Google is not doing this.

spoiler

Bard was trained from the beginning with your messages. They are not going to start now.

vsis , 5 months ago

Political "debates" are useless, but I always like to watch different conceptions from different countries.

When I see USA politics right-wingers have some speeches and actions that left-wingers have in my home country and vise-versa.

Like, leftwingers in my country usually attack a former rightwing president because he supposedly fomented immigration, specially illegal immigration. (Although, here rigwingers also have more hate against the inmigrant, just like US) 1 (sorry for the language, didn't find an english version of it)

Or a former leftwing president that mobilized our army to Haiti to protect their democracy 2

Same with labels: In US "liberal" is a left wing label, in my country is a righ wing one.

Same apply in other countries, like I see Spanish news when "republicans" are the radical ones, usually left-wing, because they oppose monarchy, and the "republican" flag is a left-wing symbol for spaniards.

That's why political labels are pretty useless too. Republican means literal nazi or revolutionary against monarchy depending where you are lol.

vsis , 5 months ago

Probably Snapchat or the phone automatically reported something.

I don't believe the Snapshat app doesn't use TLS, nor the airport performed some sophisticated man-in-the-middle attack.

vsis , 5 months ago

I don't think so.

Trump himself was victim of credential stuffing. And he's not the only politician or billionaire who has suffered stolen accounts of something.

vsis , 5 months ago

It's not FOSS and I don't see a way to review if what they claim is actually true.

It may be a way to just help to diferentiate legitimate human made work vs machine-generated ones, thus helping AI training models.

Can't demostrate that fact neither, because of its license that expressly forbids sofware adaptions to other uses.

Edit, alter, modify, adapt, translate or otherwise change the whole or any part of the Software
nor permit the whole or any part of the Software to be combined with or become incorporated
in any other software, nor decompile, disassemble or reverse engineer the Software or
attempt to do any such things

sauce: https://nightshade.cs.uchicago.edu/downloads.html

vsis , 5 months ago

I've got 3 tricks for ya:

• backups
• backups
• backups

vsis , 5 months ago

1.3K forks already lol

Please remember to fork it outside github. They will probably delete all forks based on intellectual property bs written in their TOS.

vsis , 5 months ago

Hidden hardware feature.

Not a backdoor at all.

vsis , 5 months ago

If it's paywalled, yes. I'm just reading the title.

vsis , 5 months ago (edited 5 months ago)

And you have to pay like 5K to USB-IF to build your own implementation. Because everybody forgets that USB is proprietary.

But the madness of every vendor having it own proprietary conector is worse.

USB-C and USB PD may not be good enough, but it's better than the previous alternative.

vsis , 5 months ago

Installed Chrome via GUI

kinda sus

vsis , 6 months ago

Since you posted it in a selfhosting community, this is the feeling I get:

https://feddit.cl/pictrs/image/b67b37ed-41ed-4547-a5d2-4dfc669073bc.jpeg

vsis , 10 months ago

Kubernetes is useful if you have gone full cattle over pets. And that is very uncommon in home setups.
If you only own one or two small machines you cannot destroy infra easily in a "cattle" way, and the bloatware that comes with Kubernetes doesn't help you neither.

In homelabs and home servers the pros of Kubernetes are not very useful: high availability, auto-scaling, gitops integrations, etc: Why would you need autoscaling and HA for a SFTP used only by you? Instead you write a docker-compose.yml and call it a day.

vsis , 10 months ago

chinese proverb: everything is tasty if you fry it enough.