Dark Arc @ Dark_Arc @social.packetloss.gg

Hiker, software engineer (primarily C++, Java, and Python), Minecraft modde

---

Read more

Posts

5

Comments

2,032

Joined

2 yr. ago

IIRC telegram does as well

That's not really true... No closed source software that isn't actively developed should be expected to last forever. Eventually the binaries will get to the point where nothing will run them.

You also can't emulate Windows. Maybe you could virtualize Linux and use wine, but even that is a tall order for "forever".

Typically live service games last a lot longer in terms of new content and updates. There are a lot of recent complete failures of live services though that didn't make it more than a couple of months ... they're just bad games.

So, the web uses a system called chain of trust. There are public keys stored in your system or browser that are used to validate the public keys given to you by various web sites.

Both letsencrypt and traditional SSL providers work because they have keys on your system in the appropriate place so as to deem them trustworthy.

All that to say, you're always trusting a certificate authority on some level unless you're doing self signed certificates... And then nobody trusts you.

The main advantage to a paid cert authority is a bit more flexibility and a fancier certificate for your website that also perhaps includes the business name.

Realistically... There's not much of a benefit for the average website or even small business.

Even more so, FBI wants to know where the money grandma gave to get her pictures back from the ransomware went.

All this money tracking stuff AFAIK was originally more about organized crime than tax revenue.

I actually really wish we could flag communities or posts as "excluded from the main feed."

There have been several posts I've made or that my bot has made (from community specific RSS feeds) that get down votes seemingly from people completely outside of the community.

For instance, I had a post about a heavy Standard Notes discount ... pretty relevant to Standard Notes users; down voted like crazy in the early days of lemmy.world.

Similarly, the other day Bungie made several post about Destiny around the same time. The bot faithfully posted all of them, but several got down voted, almost definitely because someone who didn't care about Destiny down voted the "spam" since several posts were about Destiny around the same time in the "main feed" (and they were probably sorting by "New").

My retort/unpopular opinion: There's no recommendation algorithm, if it's not a community you're subscribed to, and you don't care about it ... what the heck are you doing engaging with it? Move on to the next post or block the community.

Alternatively, we should be able to block interactions from people who haven't subscribed to the community without limiting federation or making it moderator only.

When you down vote a post of a community you're not a part of you're actively hurting its surfacing in the feeds of people in that community that use feed algorithms other than "New" or "Controversial".

I'd give up any and every gun point in favor of police reform, proper election and transition of power legislation, and climate change.

Actually, I think they have it exactly right. The problem is Republican voters views and priorities have been misaligned with their respective party representatives for at least a decade.

This is no more evident than in evangelical voters jumping through hoops to justify a detestable candidate of poor morals.

What Trump, the tea party before him, etc represents to folks that adore them is quite different than what those things are.

So the local machine doesn't really need the firewall; it definitely doesn't hurt, but your router should be covering this via port forwarding (ipv4) or just straight up firewall rules (ipv6).

You can basically go two routes to reasonable harden the system IMO. You can either just set up a user without administrative privileges and use something like a systemd system level service to start the server as that user and provide control over it from other users ... OR ... if you're really paranoid, use a virtual machine and forward the port from the host machine into the VM.

A lot of what you're doing is ... fine stuff to do, but it's not really going to help much (e.g. building system packages with hardening flags is good, but it only helps if those packages are actually part of the attack surface or rather what's exposed to the remote users in someway).

Your biggest risk is going to be plugins that aren't vetted doing bad things (and really only the VM or using the dedicated user account provides an insulation layer there -- the VM really only adds protection against privilege escalation which is pretty hard to pull off on a patched system).

My advice for most people:

• Make a new user on the system to run each game you want to run
• Run the game using systemd and that user
• Use something like kopia + the root user's crontab (easier than systemd timers, but systemd timers also work) to backup the files on disk

For Minecraft in particular, to properly back things up on a busy server you need to disable auto save, manually force save, do the backup and then enable auto save again after your backup. Kopia can issue commands to talk to the server to do that, but you need a plugin that can react to those commands running on the server (or possibly to use the server console via stdin). Realistically though, that's overkill and you'll be just fine backing up the files exactly as they are periodically.

Kopia in particular will do well here because of its deduplication of baked up data + chunking algorithm that breaks up files. That has saved me a crazy amount of storage vs other solutions I've tried. Kopia level compression isn't needed because the Minecraft region files themselves are already highly compressed.

I didn't feel particularly safer in Europe... About the same... Watch your wallet, don't go down dark alleys alone, etc.

Some things definitely felt more grandiose, but on average things felt like they could be in an American city if not for their vintage.

Public transportation was definitely the biggest difference I observed, trains in Germany were an all but fantastic experience.

I was surprised how heavy German food was and how much smoking folks in Germany, the Czech Republic, and Bulgaria do. It seemed elevated compared to the average US city.

I got banned from signal's subreddit for talking about how telegram works and the case for it.

So most dorms don't want you using your own routers because a bunch of student routers causes A LOT of inference.

You should probably reach out not to the dorm folks but the university networking folks as they're the ones that will ultimately make the decision on whether or not to turn things off/disconnect you.

A cheap networking switch would probably be okay by them to get some more wired connections in your dorm room (routers aren't really a great way to do that).

https://www.amazon.com/Linksys-Business-LGS105-Unmanaged-Enclosure/dp/B00FV12VSW/ref=mp_s_a_1_1_sspa?crid=3PUXDK6TFLZIT&dib=eyJ2IjoiMSJ9.zm2b2eGNCSReGFJuUskv6-s3cUVDK12lfqOmf729Jjx1nw8mI07xRjx4RZCcnWDhplIUW-7IOfSn6R7TMu0yVy_k9hGXtOs0SNS7RO8sN4RI5aa_8-iwSOXz6biaUH5pE27eM8eYyBzJl9tkYxX4erfrbMwkWwhSrqIKQGOSqx1DQ1z5ZiDGCyQ_u0k8IhaN1Ra-Zpsr07cg-ZjJnDz6lA.iHHYMOhPc6OW0LmOOPkf8taxFxWnD5Sbwy_NxZwTQbU&dib_tag=se&keywords=network+switch&qid=1725717407&sprefix=network+%2Caps%2C186&sr=8-1-spons&sp_csd=d2lkZ2V0TmFtZT1zcF9waG9uZV9zZWFyY2hfYXRm&psc=1

As a secondary concern, using a router will cause a double NAT for all your connected devices (universities don't operate in the way ISPs do). That could cause some weird networking shenanigans, particularly for anything peer-to-peer like online games.

I mean there's quite clearly a victim here, the child.

I've been reading her book, the truancy thing is interesting. She had data that showed that kids that weren't showing up at school, particularly young ones, didn't learn how to read sufficiently well, and then fell behind in school and struggled to catch up, they then ended up struggling later in life, and often ending up either as victims or perpetrators of crime.

So, she used the California DA's office to enforce truancy laws across California, encouraged reaching out to fix the problems at home if at all possible, and also encouraged reaching out to folks that had been written off as "not caring" (she cites an example of a father that hadn't been paying child support but upon learning that his daughter wasn't going to school, started taking his daughter to school every morning, and volunteering in her classroom).

Of course this is all by her account, but that sounds overall quite positive to me.

Sure, there's a cost to breaking things up, all multiprocessing and multithreading comes at a cost. That said, in my evaluation, single for "unity builds" are garbage; sometimes a few files are used to get some multiprocessing back (... as the GitHub you mentioned references).

They're mostly a way to just minimize the amount of translation units so that you don't have the "I changed a central header that all my files include and now I need to rebuild the world" (with a world that includes many many small translation units) problem (this is arguably worse on Windows because process spawning is more expensive).

Unity builds as a whole are very very niche and you're almost always better off doing a more targeted analysis of where your build (or often more importantly, incremental build) is expensive and making appropriate changes. Note that large C++ projects like llvm, chromium, etc do NOT use unity builds (almost certainly, because they are not more efficient in any sense).

I'm not even sure how they got started, presumably they were mostly a way to get LTO without LTO. They're absolutely awful for incremental builds.

Slow compared to what exactly...?

The worst part about headers is needing to reprocess the whole header from scratch ... but precompiled headers largely solve that (or just using smaller more targeted header files).

Even in those cases there's something to be said for the extreme parallelism in a C++ build. You give some of that up with modules for better code organization and in some cases it does help build times, but I've heard in others it hurts build times (a fair bit of that might just be inexperience with the feature/best practices and immature implementations, but alas).

There's no precompiler in C++. There's a preprocessor but that's something entirely different. It's also not a slow portion of the compile process typically.

C++ is getting to the point where modules might work well enough to do something useful with them, but they remove the need for #include preprocessor directives to share code.

Have you ever seen a vacuum chamber? Science does suck ... and it's fucking awesome at it. 🥁

Basically TikTok has been proven to serve the Chinese Communist Party (via influence over what users see and data collection). Additionally, the Atlantic article goes on to explain how the United States has a long history of protecting its citizens from foreign influence campaigns going back to the early radio days (and trying to ban TikTok is not a divergence from the status quo or an attack of free speech, rather the continuing of policies that have largely worked and served the public good).

Here's the big difference. Automated assembly lines do a job better than the average human can. LLMs do the job consistently worse than the average human would.