ZeroTrust Your Home
Melmi @ melmi @lemmy.blahaj.zone Posts 1Comments 246Joined 2 yr. ago
Melmi @ melmi @lemmy.blahaj.zone
Posts
1
Comments
246
Joined
2 yr. ago
I can kind of see where he's coming from, but only if you're weighing it against an assumed future where we're going to die out tomorrow. That's a low bar for hopeful, and certainly not "100% positive".
I have a hard time seeing I Have No Mouth and I Must Scream or even worse, All Tomorrows, as "hopeful". I'd honestly rather just die.
Plus, not all sci-fi involves humans, and not all sci-fi is in the future. There's scifi with no humans in it, there's scifi set in the past or in an alternate present, and none of those qualify as "hopeful by default" in the way he defines it any more than any other fiction does.
But how will you get a "universal" view of the fediverse? No single authoritative view exists.
You yourself acknowledge that this is complicated, but I honestly don't understand what appeal a hacked together fake centralized system would have for people if they don't care about decentralization in the first place. Any such solution is almost inevitably gonna end up being janky and hacked together just to present a façade of worse Reddit.
Lemmy's strength is its decentralization and federation. It's not a problem to be solved, it's a feature that's attractive in its own right. It doesn't need mass appeal, it's a niche project and probably always will be. I don't think papering over the fundamental design of the software will make it meaningfully more attractive to the non-technically minded.
I don't think the relevance of the TLD matters. It's worth being aware of whether you're using a ccTLD, especially in the case of countries like Afghanistan, but you also used .io as an example which is overwhelmingly used by non-British Indian Ocean Territory sites and is proven reliable. It's even managed by an American company.
Then .app isn't a part of the original TLDs, but actually a part of the new wave of modern gTLDs. And if you're considering .app, there's no reason not to consider the thousands of other generic TLDs out there.
Like with the ccTLDs, the only thing you have to consider is the trustworthiness of the managing org.
Yes, but only if your firewall is set to reject instead of drop. The documentation you linked mentions this; that's why open ports are listed as open|filtered because any port that's "open" might actually be being filtered (dropped).
On a modern firewall, an nmap scan will show every port as open|filtered, regardless of whether it's open or not.
Edit: Here's the relevant bit from the documentation:
The most curious element of this table may be the open|filtered state. It is a symptom of the biggest challenges with UDP scanning: open ports rarely respond to empty probes. Those ports for which Nmap has a protocol-specific payload are more likely to get a response and be marked open, but for the rest, the target TCP/IP stack simply passes the empty packet up to a listening application, which usually discards it immediately as invalid. If ports in all other states would respond, then open ports could all be deduced by elimination. Unfortunately, firewalls and filtering devices are also known to drop packets without responding. So when Nmap receives no response after several attempts, it cannot determine whether the port is open or filtered. When Nmap was released, filtering devices were rare enough that Nmap could (and did) simply assume that the port was open. The Internet is better guarded now, so Nmap changed in 2004 (version 3.70) to report non-responsive UDP ports as open|filtered instead.
WG uses UDP, so as long as your firewall is configured correctly it should be impossible to scan the open port. Any packet hitting the open port that isn't valid or doesn't have a valid key is just dropped, same as any ports that are closed.
Most modern firewalls default to dropping packets, so you won't be showing up in scans even with an open WG port.
Tbf, I don't often talk to children about work, and I don't think most adults would want me to talk to them like a child.
Plus, talking to children doesn't come naturally to everyone. It's certainly not fair to describe it as "very easy".
The "make a fork" thing is part of the issue, I think. In general there's this culture in the open source community that if you want a feature, you should implement it yourself and not expect the maintainers to implement it for you. And that's good advice to some extent, it's great to encourage more people to volunteer and it's great to discourage entitlement.
But on the other hand, this is toxic because not everyone can contribute. Telling non-technical users to "make it yourself" is essentially telling them to fuck off. To use the house metaphor, people don't usually need to design and renovate their houses on their own, because that's not their skillset, and it's unreasonable to expect that anyone who wants a house should become an architect.
Even among technical users, there are reasons they can't contribute. Not everyone has time to contribute to FOSS, and that's especially notable for non-programmers who would have to get comfortable with writing code and contributing in the first place.
Google destroys their own search engine by encouraging terrible SEO nonsense and then offers the solution in the form of these AI overviews, cutting results out of the picture entirely.
You search something on the Web nowadays half the results are written by AI anyway.
I don't really care about the "human element" or whatever, but AI is such a hype train right now. It's still early days for the tech, it still hallucinates a lot, and I fundamentally can't trust it—even if I trusted the people making it, which I don't.
Just because you can work with one monitor doesn't mean multiple monitors isn't more comfortable though. You can have multiple windows open at once, at full size, and glance between them freely. No need for them to share the limited real estate of a single monitor.
I run Sway on my laptop because it lets me take full advantage of my single monitor, but on my multi monitor desktop setup I use a regular floating DE.
Systemd does a lot of things that could probably be separate projects, but run0 is an example of something that benefits from being a part of systemd. It ties directly into the existing service manager to spawn new processes.
It definitely encrypts the traffic, the problem is that it encrypts the traffic in a recognizable way that DPI can recognize. It's easy for someone snooping on your traffic to tell that you're using Wireguard, but because it's encrypted they can't tell the content of the message.
This works because block devices like /dev/sdX are just files. If you cp a file onto another file, it overwrites the data of the destination with the source. A block device represents the device itself, not the filesystem; if you wanted to put the ISO inside the filesystem, you'd have to mount it first.
A lot of Linux ISOs are hybrid images which can be booted if flashed directly to a USB stick.
I just don't understand why you want to copy-paste ChatGPT. Surely the parent commenter could access ChatGPT if they wanted, so you're not bringing a new perspective. If "content" is all that matters, you could generate a thousand different ChatGPT responses and reply to their comment with each one, but that's not acceptable. Why not?
People come here for a conversation with other people, and copy-paste ChatGPT responses don't actually contribute to that. If all they want is information/content, there are better places to find it. They could use ChatGPT, sure, but they could also use Wikipedia or even an economics textbook. It's up to them. Even if they use ChatGPT, they'd probably prompt it a few times in a few different ways to get the best info for them.
If you really want to use ChatGPT in your responses, why not add your own voice? When I suggested commentary I don't mean that you should just prompt ChatGPT into pretending to be a human, I mean that you should add your own perspective. Editorialize. Pull out the good bits.
Because if people want to see what ChatGPT says, they can ask it themselves. You're not contributing anything by copy-pasting from ChatGPT. If you have commentary on what ChatGPT had to say, that could be different, but you literally just used ChatGPT's output as your whole comment.
There are already AI-written books flooding the market, not to mention other forms of written misinformation.
Why would they be?
I may be missing something—I wasn't sure what they were so I looked them up and I found the Wikipedia entry, which makes some mention of medieval lore of them being similar to incubi, but nothing about them being able to change sex at will. Alps don't exist in D&D either.
A tiefling divine soul sorcerer with the Criminal background. He was born to two pious tiefling clerics of Lathander who saw their fiendish blood as a curse, and prayed to cleanse their unborn child of devilish influence. When he was born a Divine Soul, his parents tried to raise him as their perfect priestess. He had to be a model tiefling, a representative of his entire race as well as Lathander himself. He chafed under the obligation and ran away from home, living on the streets and stealing to get by, all while trying to hide his divine soul powers out of a combination of rejecting them and just trying not to draw attention.
Slinking around in the shadows eventually led to him wandering into the Mists of Ravenloft, and he found himself in Barovia. He found his way into a party and essentially just acted like the party rogue for a bit until combat came and he got backed into a corner and he suddenly started throwing around guiding bolts.
I was really looking forward to doing a whole arc with him reclaiming his powers and figuring out what it meant to be himself, but OOC stuff led to me leaving that group before he had a chance to leave his edgy rogue phase :c
Little known fact about D&D succubi: since 4e succubi can change sexes freely. Incubi and succubi are just different forms of the same monster.
When done correctly, the banner is actually a consent banner. It's a legal thing, not necessarily trying to discourage criminals. It's informing users that all use will be monitored and it implies their consent to the technology policies of the organization. It's more for regular users than criminals.
When it's just "unauthorized access is prohibited", though, especially on a single-user server? Not really any point. But since this article was based on compliance guidelines that aren't all relevant to the homelab, I can see how it got warped into the empty "you no hack" banner.