chiisana @ chiisana @lemmy.chiisana.net

Posts

4

Comments

500

Joined

2 yr. ago

It would appear the ionic framework they use might be able to support it out of the box: https://ionic.io/docs/identity-vault/

Hope to see they add it in a future version :)

I think the value here is to add an extra layer of disconnect between me, the person and me, the lemmy user.

Someone can easily profile me, the lemmy user’s profile; but no one in real life needs to know me, the person, have a separate private lemmy account used for less than above the belt content. Having an extra layer of authentication doesn’t guarantee it, but makes it harder for someone to swipe my phone and poke into that.

At the same time, despite what others have said, ho slow. Don’t fall for the all too easy trap of wanting to get the latest and biggest. I ended up with a 2U quad sock server with 256GB RAM… why? Uncalled for and totally not necessary! Start slow and when you find the services you’re hosting no longer performing the speed you’d like, then gradually scale up.

I see! Yeah I think Chrome asks one time on install and most users just blindly accept everything. Prompting on first actual use is a good idea.

Doesn’t chrome also need this? I know I get prompted to re-enable all urls permission every now and then when there’s a significant chrome and/or extension update.

Sounds like something ISP is doing… residential lines tends to have common ports blocked, it may be a good idea to check your terms of service to verify if they permit running servers on the subscribed service.

I hear it’s Tim Apple’s power play: Cut off potential users to the competitors by buying out gift card supplies, so they cannot acquire new users. It’s really smart if you think about it!!

Series 4 will get WatchOS 10 this fall (source), I’m not gonna worry about 11 until next summer.

Default weather app can show the hourly temperature and precipitation for the next 10 days as well; simply tap the day you want more info for from the 10-Day Forecast section and you can see all the forecast details. I believe this was added after Apple bought Dark Sky.

They don’t do anything.

They have lots and lots of redundancy, and when enough drive fails, they decommission the entire server and/or rack.

Them big players play at a very different scale than the rest of us.

On Apollo I think long press popped a preview. Something to allow knowing where it’s taking before committing the entire screen to it is ideal, but I think this should be some configurable option.

Depending on jurisdiction, I am not a lawyer, etc etc, but I’d imagine with fairly high degree of probability that re-distribution of CSAM is also a crime.

I started using Authentik lately and am really enjoying the passwordless life. You can set it up such that the authentication flow uses the WebAuthN standard and just prompt the user for passkey or biometric login. Super slick.

I just straight up don’t understand and am impressed with the tech in this space we as a society have.

"Molecular-genetic testing has been completed," it said in a statement.

"According to its results, the identities of all 10 deceased have been established, and they correspond to the list published in the flight manifest."

Not sure what’s more impressive; fact that they were able to turn the test results back so quickly, or fact that all 10 deceased, including the flight crew, have their DNA in some sort of database. Isn’t it supposed to take weeks to do the analysis?

Sorry I got slammed by work last couple of days and didn’t check back.

I wonder if it could be asymmetrical routing by your ISP? You mentioned your setup was okay before but it doesn’t work since you changed location.

I think your friend with the UniFi network has a static IP. Can you try traceroute to their IP and see if the route is similar to the one taken by their ISP? I’m not sure if this is how you’d test for asymmetrical routing but if nothing else the symptoms sound similar.

Thinking about this some more, could it be asymmetric routing?

If so, does this help?

See this page here that explains the Flags: https://opensource.com/article/18/10/introduction-tcpdump

Typically, in a TCP connection, you'd SYN, SYN+ACK, ACK, then transfer actual data over. In the successful sequence, you see this happening as expected.

In the unsuccessful sequence, it seems to be stuck in SYN, SYN+ACK, but there is no ACK that follows (Flags [.]).

Where is the second one captured? On the user's system, or on your system? Something in between is determining the packet isn't intended for the destination and dropping it. It may be a firewall, it may be something else.

We're making progress!

Looks like connection are being made, so it isn't routing after all!

Looking at the first recording, based on the different packet length, I'd guess it is doing SSL handshake properly; whereas the second one seems to be all 0 length and so something is not working out. At least on a cursory glance, your settings seems to be pretty permissive, so unless your friend's using a super old system, it shouldn't be an issue. Do you know what OS your friend is using, and if it has up-to-date root certificates? Are they on a system with openssl cli available? Judging by the unifi network, probably? Try openssl s_client -connect drkt.eu:443 -prexit (and ctrl + c to quit after it stops) and see if you can see any oddities with the SSL handshake process.

For anyone who doesn't know, egress is already free if you route it through CloudFlare's Bandwidth Alliance Program from a few years back. If you are already using this setup, there doesn't appear to be any up side to this up coming change (other than the bill).