JustEnoughDucks @ JustEnoughDucks @feddit.nl

Posts

9

Comments

1,042

Joined

2 yr. ago

Neither are all but the cheapest smart TVs.

It's called double and triple dipping. Every single company that can get away with double, triple, quadruple dipping can and does.

Buying the initial product + Subscription + selling your data + dropping support to force you to buy a new product is quite commonplace. The old mantra of "if you are not paying, you are the product" doesn't apply anymore because most companies do both.

Honestly, crowdsec with the nginx bouncer is all you need security-wise to start experimenting. It isn't perfect security, but it is way more comprehensive than fail2ban for just getting started and figuring more out later.

Here is my traefik-based crowdsec docker composer:

    
services:
  crowdsec:
    image: crowdsecurity/crowdsec:latest
    container_name: crowdsec
    environment:
      GID: $PGID
    volumes:
      - $USERDIR/dockerconfig/crowdsec/acquis.yaml:/etc/crowdsec/acquis.yaml
      - $USERDIR/data/Volumes/crowdsec:/var/lib/crowdsec/data/
      - $USERDIR/dockerconfig/crowdsec:/etc/crowdsec/
      - $DOCKERDIR/traefik2/traefik.log:/var/log/traefik/traefik.log:ro
    networks:
      - web
    restart: unless-stopped

  bouncer-traefik:
    image: docker.io/fbonalair/traefik-crowdsec-bouncer:latest
    container_name: bouncer-traefik
    environment:
      CROWDSEC_BOUNCER_API_KEY: $CROWDSEC_API
      CROWDSEC_AGENT_HOST: crowdsec:8080
    networks:
      - web # same network as traefik + crowdsec
    depends_on:
      - crowdsec
    restart: unless-stopped

networks:
  web:
    external: true

  

https://github.com/imthenachoman/How-To-Secure-A-Linux-Server this is a more in-depth crash course for system-level security but hasn't been updated in a while.

Lol ssh has no reason to be port exposed in 99% of home server setups.

VPNs are extremely easy, free, and wireguard is very performant with openvpn also fine for ssh. I have yet to see any usecase for simply port forwarding ssh in a home setup. Even a public git server can be tunneled through https.

Trakt also sells your data off to whoever wants it even though they explicitly say that they don't. https://trakt.tv/privacy

I hadn't had anything on any ad service about harry potter in years. Never searched anything about it or anything. Watched a quarter of one movie via jellyfin on linux completely locally with the trakt plugin. A few hours later I had harry potter advertisements everywhere that I don't have an ad blocker.

Using the official company social media to double down on what the CEO said = company policy = how company will act

People on all social media really can't seem to understand that the choices aren't exclusively "everything has a perfect open source, non-profit utopia" and "fuck it, everyone is corrupt so it doesn't matter what service you use."

You are able to do what you can, where you can, to mitigate risks and try your best not to support fascists. Especially when there are a dozen alternatives.

Then again, maybe people are just arguing in bad faith.

Cops will literally have long term relationships and marry the person they are spying on when it comes to eco-activism.

https://www.theguardian.com/uk/2011/jan/19/undercover-policeman-married-activist-spy

The oil companies have such incredibly firm control over the worlds' police forces that they have cops have long term sexual relationships with people opposing their ecocide and spy on them the entire time.

I think you will find that almost all grants either come from a corporation or a government. Crazy isn't it? A very small amount comes from non-profits and often those nonprofits are majority funded by governments and corporations.

They should be removed by force. They are constantly violating laws, committing countless acts of treason, stealing classified documents.

Nobody in the entire military has yet to lift a single feature or even speak out against the treason going on.

I am starting to think that the entire US military won't do a single thing to uphold their oaths and it will somehow lie on the struggling public for any sort of resistance or justice...

It is more "this manager thinks he is one of the core people" but the commenter has logs and proof that he does nothing all day except break company policy. If the manager ever decides to fuck around and fire people, he gets to find out pretty quick.

It really really depends on what you have for heating.

Floor heating + heat pump? You don't need to mess around with target temp much because the principle behind it is thermal mass buildup and maintaining that. You have to tune thermostatic valves on the room level. Then you can have one central thermostat simply slightly change the target temperature with many hours of delay. That doesn't seem too useful to me to automate.

Do you have radiators? Then you can get zwave or ZigBee valves and tie them together with whatever thermostat that you want in home assistant. Then you can set per room/zone heat depending on whatever sensors you have.

Do you have central forced air heating and air conditioning? Then you have pretty much target temp and on/off control unless you want to put in motorized automatic registers or redesign your entire duct system for per-room duct valves.

Individual heat pumps/airco units with radiator based heating is the most "per room" customizable and probably the most useful to put automations on in Home Assistant.

Ventilation can be useful by monitoring CO2 levels and humidity. Then you can use either the fan units themselves or socket switches to actuate those and put whatever sensors you want wherever it is useful.

I am probably missing some stuff here, but there are only a few HVAC setups that actually benefit from automation, in my opinion. Mainly ventilation, infrared, and non centralized forced air heat pumps. Plus heating and cooling is something you want to work 100% flawlessly even if your router dies, your home assistant falls off a cliff, and your ZigBee/zwave controller dies.

True, but that would more likely be affecting military grants involving veteran care like paying for veterens to go to university, job placement programs, etc... They have been itching to do that for a while in between saying "we support the troops"

I'm pretty sure nowadays it is 90% high performance cryptography tech. Protecting state secrets, Intel, and surveillance intelligence is like #1 priority for a few different governments since all of the big powers have been hacking each other (or trying to) since the dawn of the internet lol

No assistance would be no guns, no bows, no knives, no traps, right?

Literally using your bare hands or something you find on the ground.

I saw it just yesterday.

And a week ago.

And a month ago.

And I had it myself 2 months ago, fixed by going to the online element client that just happened to still be "verified" after a while of no use and then I could verify the rest of my clients. I would be SoL if I didn't have one of my original sessions upon making the account years ago still. Interesting system.

That was in the 1 encrypted chat I am a part of.

99% of rooms aren't encrypted so are completely and totally insecure anyway. Which I guess is fine for community discussion spaces.

I like fluffychat but it doesn't have threading. Element is also fine and what I have to use on desktop because neochat fucks up so much, but I can't use it on my phone because it causes an extra 1%/hour drain on my phone battery in the background which is insane. Uninstalled it a year or two ago.

Sorry but how the fuck are insurance companies OK with this? They hold extreme amounts of power over the US. They are going to have to do ridiculous amounts of payouts for hospital bills.

How the fuck are people's life saving surgeries getting denied at pre-approval, but they are not denying people's coverage for fucking drinking raw milk??

It's not even the businessman thing though. That is just a smokescreen for the fact that he is racist. Mark Cuban is objectively a 50x better capitalist businessman than trump ever was. He campaigned for Harris and all of the "strong businessmen best" people completely did a 180.

It is 100% only hatred and wanting certain people to die and every single other thing they say they care about is a smokescreen as proven by their own actions. Like how now the price of everything suddenly doesn't matter, because the "right" people are getting hurt.

Just like how DOGE doesn't actually go after inefficiencies like the extremely corrupt and inefficient military contractor sector but instead goes for things that hurt black people more like school lunches for 6 year olds.

Cults of personality don't transfer power well, generally. I think that is why Project 2025 was such a big deal for them since it gave structure even when trump dies.

Holy shit, I never found smoothness in the OSM editor. Does that actually effect routing priority?

That might be a game changer for making my local area much better on OSM.

https://community.signalusers.org/t/overview-of-third-party-security-audits/13243

Here is an entire list of years and years of independent audits

https://github.com/signalapp

Here, go look yourself to verify that the frontend isn't sending your encryption key back to the server.

https://www.adobe.com/trust/security.html

Please tell me where I can find the source code of Adobe's creative cloud DRM that has full access to the computer it is installed on and their audits to verify that they aren't sending my private keys back.

You are comparing an audited, open source program with closed down proprietary system that says "trust me bro, we work with 'security partners', no we won't release the audits".

Interesting comparison. It's like comparing a local farming co-op to the agro-industrial complex of Monsanto/beyer and saying "you could say the same about either! Monsanto is at least innovating in the seed space, no no no, ignore how they use it!!"