suicidaleggroll @ suicidaleggroll @lemm.ee

Посты

0

Комментарии

72

Joined

4 mo. ago

People always say to let the system manage memory and don't interfere with it as it'll always make the best decisions, but personally, on my systems, whenever it starts to move significant data into swap the system starts getting laggy, jittery, and slow to respond. Every time I try to use a system that's been sitting idle for a bit and it feels sluggish, I go check the stats and find that, sure enough, it's decided to move some of its memory into swap, and responsiveness doesn't pick up until I manually empty the swap so it's operating fully out of RAM again.

So, with that in mind, I always give systems plenty of RAM to work with and set vm.swappiness=0. Whenever I forget to do that, I will inevitably find the system is running sluggishly at some point, see that a bunch of data is sitting in swap for some reason, clear it out, set vm.swappiness=0, and then it never happens again. Other people will probably recommend differently, but that's been my experience after ~25 years of using Linux daily.

Civil Asset Forfeiture. It's legal in most states, but some are better than others. Oklahoma is dog shit:

https://ij.org/report/policing-for-profit-3/?state=OK

Seriously people, don't move to Oklahoma, or really most southern states.

Market self regulation assumes informed consumers that are smart enough to know what things mean

Not just smart enough, but informed enough. That means every person spending literally hundreds/thousands of hours per week researching every single aspect of every purchase they make. Investigating supply chains, performing chemical analysis on their foods and clothing, etc. It's not even remotely realistic.

So instead, we outsource and consolidate that research and testing, by paying taxes to a central authority who verifies all manufacturers keep things safe so we don't have to worry about accidentally buying Cheerios that are laced with lead. AKA: The government and regulations.

No names? On what? People just go around saying “no names”?

It says "no mames". I'm not sure what on earth that means, but I suspect it isn't a typo (writeo?)

I self-host Bitwarden, hidden behind my firewall and only accessible through a VPN. It's perfect for me. If you're going to expose your password manager to the internet, you might as well just use the official cloud version IMO since they'll likely be better at monitoring logs than you will. But if you hide it behind a VPN, self-hosting can add an additional layer of security that you don't get with the official cloud-hosted version.

Downtime isn't an issue as clients will just cache the database. Unless your server goes down for days at a time you'll never even notice, and even then it'll only be an issue if you try to create or modify an entry while the server is down. Just make sure you make and maintain good backups. Every night I stop and rsync all containers (including Bitwarden) to a daily incremental backup server, as well as making nightly snapshots of the VM it lives in. I also periodically make encrypted exports of my Bitwarden vault which are synced to all devices - those are useful because they can be natively imported into KeePassXC, allowing you to access your password vault from any machine even if your entire infrastructure goes down. Note that even if you go with the cloud-hosted version, you should still be making these encrypted exports to protect against vault corruption, deletion, etc.

That’s a complicated question. Bigger memory can split it between more banks, which can mean more precharge penalties if the memory you need to access is spread out between them.

But big memory systems generally use workstation or server processors, which means more memory channels, which means the system can access multiple regions of memory simultaneously. Mini-PCs and laptops generally only have one memory controller, higher end laptops and desktops usually have two, workstations often have 4, and big servers can have 8+. That’s huge for parallel workflows and virtualization.

I'd be in trouble, since between ZFS and my various VMs, my system idles at ~170 GB RAM used. With only 32 I'd have to shut basically everything down.

My previous system had 64 GB, and while it wasn't great, I got by. Then one of the motherboard slots died and dropped me to 48 GB, which seriously hurt. That's when I decided to rebuild and went to 256.

Something I haven't seen mentioned yet - if you're in the US, lock down your credit at all 3 agencies. It takes 10-15 minutes and is free, it's easy to do.

The issue is that many of these leaks include things like your full legal name, phone number, parents' full legal names, your social security number, and your entire address history. This makes it trivially easy for somebody to steal your identity and start opening up credit accounts in your name. You need to lock down your credit before that happens. If you need your credit run in the future (opening a bank account, getting a credit card or loan), just ask them which agency they pull the report from and temporarily unfreeze it so they can run the report, then re-freeze it when they're done. It adds 5 minutes of work once or twice a decade, but could be priceless later on when someone tries to steal your identity.

A lot of it comes down to the Just World Fallacy

They believe that, fundamentally, the world is just and good (mostly that stems from religion and a just "god", but not always). This means that when something bad happens, they assume the person must have deserved it, because bad things don't happen to good people. They also believe they are a good person, and therefore bad things won't happen to them. When something bad DOES happen to them, they start screaming from the rooftops that some radical injustice has occurred and somebody needs to do something to make it right! Completely unaware of the fact that nobody from their "tribe" will believe them, because the fact that something bad happened to them meant they must have been a bad person who deserved it.

Sure in a decade or so it might have matured enough to have shed all these issues

That's the point. They want to set themselves up so that when the issues are shed and it becomes a realistic product, they're already in a place where their product can be the one that takes over the market. If you wait until a product is viable before starting on development, you're too late.

I abandoned Google when they started throwing shopping links at the top of every search, even when searching for things that have no relevance to shopping, and they started artificially promoting scams and paid material above actual results.

Google Search was best around 10-15 years ago when their only focus was providing the best results they could (remember when you could actually click the top result and you would be taken to the most applicable page instead of some unrelated ad or scam?). Now their focus is on providing the best product possible for their actual customers (paid advertisers) even when it means trashing their own product in the process.

Profits dropped by 71% compared to the same quarter last year, but the stock price went up 68% in the same time frame. Because that makes sense. Who are the idiots still buying TSLA at these prices?

2-4G for swap (more if you want to hibernate), the rest for /. Only add a boot/EFI partition if needed.

Over-partitioning is a newbie mistake IMO, it usually causes way more problems than it solves.

They won't. Musk has a hard-on for doing everything with visible cameras for some stupid reason.

I don’t like the fact that I could delete every copy using only the mouse and keyboard from my main PC. I want something that can’t be ransomwared and that I can’t screw up once created.

Lots of ways to get around that without having to go the route of burning a hundred blu-rays with complicated (and risky) archive splitting and merging. Just a handful of external HDDs that you "zfs send" to and cycle on some regular schedule would handle that. So buy 3 drives, backup your data to all 3 of them, then unplug 2 and put them somewhere safe (desk at work, friend or family member's house, etc.). Continue backing up to the one you keep local for the next ~month and then rotate the drives. So at any given time you have a on-site copy that's up-to-date, and two off-site copies that are no more than 1 and 2 months old respectively. Immune to ransomware, accidental deletion, fire, flood, etc. and super easy to maintain and restore from.

And? Who’s going to do anything about it? The stupidest people in this country gave a con man unilateral power to do anything he wants, what did they expect?

Pretty sure the country of origin for Apple products isn’t the US anyway. They’d be coming from China, India, etc. Reciprocal tariffs on the US should have no effect on Apple products sold in other countries.

I mean, you're not wrong, but the same applies to all phone manufacturers. Samsung, Pixel, etc. are going to see similar price hikes due to tariffs in the US, and a similar drop in demand in China as the population there moves to Chinese manufacturers. I'm not sure why you're singling out Apple.

Main reason is that if you don't already have the right key, VPN doesn't even respond, it's just a black hole where all packets get dropped. SSH on the other hand will respond whether or not you have a password or a key, which lets the attacker know that there's something there listening.

That's not to say SSH is insecure, I think it's fine to expose once you take some basic steps to lock it down, just answering the question.

Some people move the port to a nonstandard one, but that only helps with automated scanners not determined attackers.

While true, cleaning up your logs such that you can actually see a determined attacker rather than it just getting buried in the noise is still worthwhile.