For me his skyrim video back in the day had me crying. But I'm sure if I watched it now it wouldn't be as magical.
I noticed while updating my system just how many packages I have installed that I don't recognize.
I tend to think that minimalism is better for security, so I'd like to remove any packages that I'm not using, but this is a bit of a scary task.
Does anybody have a safe method for reviewing and purging unused or bloat packages while obviously making sure not to accidentally remove important dependencies?
I'm on arch btw.
Yes, it will count towards your bandwidth.
I typically don't get anywhere close to this though.
The few times I did were due to initiating large backups between devices, upwards of 2TB. But I've since moved my backup system to a mesh network and haven't hit bandwidth overages since.
I recommend it every time this question pops up and I'm surprised more people aren't privy to it:
Rent a VPS as your public gateway. Connect the VPS to your server with a simple wireguard tunnel.
The only thing on the VPS should be a reverse proxy with SSL/TLS pass through.
Send the traffic at the VPS reverse proxy to a reverse proxy on the main server. Configure this proxy to use letsencrypt certs.
The benefit and importance of the SSL pass through reverse proxy, is that it allows all data in transit to remain encrypted until it reaches your physical server. Traditionally, most would suggest the one and only reverse proxy exist on the VPS but all traffic would then be decrypted on the VPS. This could obviously compromise your traffic if the VPS provider snoops or your VPS is compromised.
Cloudflare tunnels decrypt on their hardware as well, which is why I always recommend avoiding their services.
Backblaze deleted my project drive for a multimillion dollar project I was archiving through their desktop sync. It's largely my fault for not noticing the drive had failed when considering their upfront policy about them deleting your backups after a month of inactivity. Luckily it didn't have too big of an impact because the most important files were backed up elsewhere. I do wish their desktop app had better warnings about imminent deletions though.
That's what I was hoping to do but it's really difficult on Fedora for some reason.
Arch and Ubuntu you can specify the driver version, but the Fedora method is dnf install akmod-nvidia with no other available options (unless you want legacy drivers for really old hardware).
To my further frustration, any amount of searching just leads to a ton of AI generated slop articles.
I updated my nvidia driver to 570 and now some games that worked fine previously present the error: direct x 12 is unsupported on this computer.
I see lots of others having this same issue but no solutions.
Has anybody figured out a fix?
I'm on Fedora so there doesn't seem to be any straightforward way to rollback the driver.
I finally got around to installing this app but it requires an account. Is this a recent requirement?
I can't remember any time in the last 2 years before I deleted my reddit account where a post I made didn't get auto-moderated.
I'm making my own white oak door jambs. So far I did one set. I milled some rough cut oak, made two passes through the table saw to roughly remove a rabbet for the integrated door stop.
Then I ran it through the table saw again with a dado stack to get the rabbet to the final dimensions. The problem is, it's difficult to apply even pressure as the wood passes over the dado stack. I already have a featherboard pushing against the fence, but I'm thinking I could use another pushing against the saw top.
I know I can put one on my fence, but that would apply pressure to the part of the board closest to the fence only. Do they make any contraptions that can apply even pressure downwards, but over a larger surface area? Like multiple featherboards extended out over the work piece.
My bad. Its been a while, but Thunderbird at one point. If I remember right there was an update relatively recently that made it much more difficult to import offline emails, so if you find a better alternative let me know.
I should re-iterate I download the emails to use in an offline client. Their service doesn't support third party clients to receive and send email.
When I do taxes, I need to search thousands of emails for receipts and the tuta apps make this impossible. This is my workaround.
I've used Tuta for years, paid account with multiple custom domains.
I prefer them for their principles, but their clients are extremely frustrating. Emails load very slowly and their email search is basically unusable.
I've resorted to downloading old emails and using other clients to import and search through them. I really wish they would improve their email search.
I really like CMT Orange blades. I had a 2 year old blade that seemed to have a defect in the finish and when I contacted them, they immediately asked for my address to send a replacement blade.
Anybody got any suggestions for a good print-screen / screenshot app?
I'm using the default of Swappy right now and it doesn't really suit my needs.
The MacOS screenshot app is my ideal.
SDR is Standard Dynamic Range. This is how most media is viewed and has been viewed for decades, typically in the Rec709 color space. 99% of consumer devices display in SDR.
HDR is a newer technology that expands the dynamic range passed Rec709 color space. It requires an HDR capable screen to display HDR content and most content is not distributed in this format, although this has been changing in the last few years.
I personally find HDR kind of a gimmick, but my point is that HDR != HD. SDR/HDR describe contrast ratios and how many colors are rendered. SD/HD describe resolution.
The chart does show them downgrading the plans from 4K/UHD to HD though.
The wiki entry has a chart which shows all plans have access to HD content. Is the chart wrong or did the contributor confuse SD with SDR?
Either way fuck HBO.
Call me paranoid but why do the staff on a lot of private trackers seem so interested in what other trackers you have accounts with?
Most of the time when you apply with a new tracker or have to re-apply due to inactivity it feels like you're being interrogated by the feds.
From the perspective of a private tracker, why are they so pushy about that? And can they know if you're lying?
The implication seems like, "we all talk to each other and if you lie to me you lose all of your accounts".
This has been my experience as well. What tweaks are you making to default librewolf?
I've been on Lemmy for years and have yet to see a single nsfw post.
I didn't realize they even existed.
I realize this is a really silly request, but I absolutely refuse to watch YouTube videos without a proxy frontend let alone logging into a google account.
I've been wanting to watch dnsl's "Fallout RP is serious business" but it's age restricted.
Does anybody know either of a way to bypass the age restriction or can just send me the video? I've tried everything I know short of giving in and signing into YouTube.
I'm looking for a simple way to make my contact form functional. So far it seems like emailjs would do the trick.
I'm curious if there are any other recommendations? What would you use and why?
Realistically I can't see the form getting more than a dozen submissions per month.
I'm looking to automate/script my pfsense wireguard tunnels so that each wireguard tunnel only goes up if there are one or more clients connected to the subnet associated with that tunnel and goes down once all clients have disconnected. I was wondering if there is already a plugin that accomplishes this or can be adapted, otherwise what is best practice for running scripts on the pfsense box?
My initial thought was to have a cronjob monitor the various DHCP servers for each subnet, then initiate a script to connect the associated wireguard tunnel if it detects any active DHCP leases on that subnet.
I have multiple subnets on this box, each with it's own wireguard gateway. I like the idea of only making the VPN connection if there is a client calling for it.
I run a qemu/KVM setup in which I have different VMs for different use cases/profiles. Very similar in theory to something like Qubes OS. So far when I want to swap to another VM I have to first un-fullscreen, then click the other VM display window and fullscreen that. I was beginning to work on hotkeys and scripts to allow switching between VMs by assigning Ctrl+NumPad# to specific VMs and then having the triggered VM appear in full screen. But I'm imagining there's probably already a VM display manager that streamlines this.
Does anybody have any suggestions?
The biggest factor is that the display needs to be responsive as I'm using these VMs for daily tasks.
Bonus points if the display manager can output a variable for the currently focused VM so I can script the keyboard backlight to change to an assigned color as well as change the power profile of the base operating system to match the currently highlighted VM better.
I accidentally attempted to SSH into one of my servers from a device that did not contain my ssh key. I configure all of my servers to only allow authentication via cryptographic keys. Root ssh as well as password auth are disabled.
To my surprise, I was able to log in to my server with a password despite this. Baffled, I first tried some other servers. 2 of the 5 other servers I tried were accessabke via password.
After some swift investigation the culprit was found, a cloud-init ssh config in sshd_config.d/ with one line: password_authentication Yes.
So TLDR PSA....if you run a server in any type of virtualized environment, including a VPS, check your /etc/ssh/sshd_config.d/ folder. And more broadly, actually thoroughly test your ssh access to confirm everything is working as you intend it to.
I'm curious what the benefits are of paying for SSL certificates vs using a free provider such as letsencrypt.
What exactly are you trusting a cert provider with and what are the security implications? What attack vectors do you open yourself up to when trusting a certificate authority with your websites' certificates?
In what way could it benefit security and/or privacy to utilize a paid service?
And finally, which paid SSL providers are considered trustworthy?
I know Digicert is a big player, but their prices are insane. Comodo seems like a good affordable option, but is it a trustworthy company?
For those of you that know, I'm trying to find a niche community, forum, chat room, whatever of individuals that could give me some pointers on cracking an OFX plugin. My knowledge ends at simple standalone exes and the communities I know of seem largely focused on game cracking.
If you know of a community that you think would help me on my journey, feel free to share. You can also send me a private message if you need to be discrete.
What do you recommend for an at-a-glance access log dashboard? Kibana and Grafana seem cool but overkill.
All I want is a dashboard that can ingest and parse syslogs from various services and neatly display a list of currently connected IPs and usernames if applicable as well as a IP connection history.
With the EOL of PVEv7 and my need for more storage space, I've decided to migrate my VMs to a larger set of drives.
I have PVE installed baremetal on a dell r720 RAID1 SSDs. I'm a bit nervous about the migration.
I plan on swapping the SSDs, installing PVE8 from scratch, then restoring VMs from backup.
Should I encounter an issue, am I able to swap the old RAID1 SSDs back in, or once I configure the new ones are the old drives done for? I'm managing RAID on a dell RAID controller.
I also have my data hard drives passed directly into a TrueNAS VM which supplies other VMs via NFS. Is there anything I should be concerned about when I've migrated, such as errors re-passing the data drives to the TrueNAS VM. Or should everything just work again?
Is there a master PVE config file I can download before swapping drives that I can reference when configuring the new PVE install?
I was listening to a Bazzell podcast where he mentions his company self hosting and maintaining a database of personal data and credentials for use in OSINT investigations. Some acquired through public sources but others acquired through leaks. Then of course there are data aggregate companies that do the same but are going on to sell this data for a profit.
What is the legality of this? Obviously acquiring publicly available data is legal, but how are these companies able to hold on to leaked usernames, passwords, and other confidential personal information. Especially those that were initially acquired through illegal means?
Is there something like Spotify Downloader or yt-dlp for Lidarr?
I got spotify playlists imported into Lidarr, but the artists I listen to don't seem to have any torrents.
I don't mind the quality hit of something like spotifydownloader which pulls from youtube. Is there anything like that or yt-dlp integrated into Lidarr for automated downloads?
I'll start by stating my threat model is avoiding corporate tracking, profiling, and analytics. For anything beyond that scope I believe tor is ideal.
Correct me if I'm wrong but my understanding is that Newpipe is a frontend to provide an alternative to the awful YouTube app and/or youtube account. However, your IP along with other device information may still be exposed to google servers. Any ideas as to what info beyond IP is sent to google?
Whereas invidious instances act as a proxy in addition to what is offered by Newpipe, but you are trusting your privacy to the instance owner.
My idea for utilizing these services is the following: Newpipe for managing subscription based YouTube viewing. Google would have my IP, but this IP would be a VPN IP address that periodically changes. Much more reliable than invidious and better quality. App is great.
Invidious for random video searches as well as content I may want to be slightly more cautious about associating with.
I'm looking for feedback on this conceptual setup. I've also been considering making a public invidious instance that I can use but hopefully obfuscates my viewing through its usage by others.
spotify-downloader is great. I already have an arr stack running for movie and shows. It would be cool to add music to the mix.
I have a shared spotify playlist with friends that I pretty much listen to exclusively as of late. What I'd like is to have an arr app that constantly pulls from that playlist and downloads via spotify-downloader, so that I can listen to those songs from my private server and then I don't need to have spotify open so much.
The ideal setup would be a system where songs are pulled from a spotify playlist, downloaded via spotify-downloader, but later once a higher quality version is discovered, downloads that and replaces the youtube quality initial version.
I can't be the first to think of this, so I'm hopeful something like this is already ready to deploy. Thoughts?
I recently acquired a pixel phone and set up gos. Prior to trying gos I was using an iPhone hardened as much as possible based off of recommendations and guides from respected OSINT experts.
It’s only been a week but I’ve found gos extremely frustrating and mostly useless except for web browsing.
I can’t seem to get my Yubikey to work so my 2FA is borked. Works fine on my iPhone.
I’ve previously managed to degoogle my life but now certain apps require me to use sandboxed google apps just to run.
I’m facing the nearly insurmountable task of convincing my friends, family, and colleagues to download and use signal when they are all using encrypted iMessage.
Most of my banking apps just simply do not work. Mobile banking is unfortunately something important that I need in my occupation. A part of the appeal of gos was being able to have an isolated dedicated profile for banking.
There’s also a few features that I’m assuming are iPhone exclusive that it really sucks to have without. Double tapping the bottom of the screen to shift everything down so you can reach the top of the screen with your finger when using one hand. Holding down on the space bar to move the text cursor between characters. Maybe these exist on gos though?
I understand most of the issues lay on the shoulders of the app developers. I’m grateful for the devs for creating and working on this project. I’m not bashing anyone here. I’m simply asking for some guidance on how I can break through the hurdles and make this work for me, from the mouth of those who were once in my position.
I’ve been using invidious for a few years. I recently changed up my morning routine and have been eating breakfast watching YouTube via the TV app versus on my PC.
It made me realize I kind of miss the recommended videos in some circumstances like when I just wanna veg out.
Are there any current viable yt front ends that either maintain the algorithm or utilize their own to find you new content?