theit8514 @ theit8514 @lemmy.world

Posts

0

Comments

134

Joined

2 yr. ago

One thing not mentioned is that modern password hashing algorithms will iterate your password hundred of thousand of times. This makes cracking the hash much more time intensive. For example if 1 hash takes 1ms (most hash algorithms are way quicker), then 1000 iterations of that means it will take 1 second to compute your hash from the input. The server has to spend that time to validate your password when you login, but that's a small tradeoff to make brute force attempts which will now have to calculate 1000x hashes for each input.

We updated to the NIST recommendation of 600000 iterations a few years ago when it was released, with regular increases every year. Logins take upwards of 5 seconds but it's added security in the event the data is leaked.

I think NetworkChuck has a good set of tutorial videos about self hosting. For the most part you can search for what you want to find info on and he probably had a video on it. E.g. Nginx: https://m.youtube.com/@NetworkChuck/search?query=Nginx

Totally agree with that. What I have a problem with is withholding security updates on the latest LTS releases and only releasing them on ESM. That's some scummy BS.

Based on where the engine was afterward (about 70% down the runway), it was likely they were well above V1: the decision point speed. Above this it is unlikely that the plane can stop on the runway and it's better to get into the air and try to fix the problem. Based on some new video it looks like the middle engine was in a compressor stall and not producing full thrust. I don't know if the MD-11 (a trijet) can get into the air with only one engine.

Most distros use a generic kernel that contains drivers neeeded for basic operation. These kernels are larger than ones specially made for your hardware. Some specialized drivers like graphics may not be included but will run in a more simplified graphics mode that works for all cards.

Some consumer grade devices had unmanaged switches or hubs for their internal ports, with a single port presented to the device itself. In that case, the system can't split the ports out to have vlans on individual ports. You could still accept multiple vlans, but it would only be on the one port.

I think if you didn't assign a tag on the Release Profile it applies to all series.

Flying away, or dive bombing?

Grab a deconstruction planner and add it to the filter of your merge splitter so you don't get any output on the one side. (edit: whoops, I see the ones at the top are filtered, I was talking about the one on the left)

Try transform: none !important;

Fun fact! Timezones don't just break at 1 hour increments. https://www.timeanddate.com/time/time-zones-interesting.html

I do a lot of Architecting for my company and it's often easier to have direct access to DNS to make quick changes rather than wait one or more days for an engineer to go change records. If this is just going to be a test environment perhaps you could delegate a subdomain of your current domain. E.g. Add NS records for test.example.com that point to the NS of the contractors hosted zone. This gives you control to tear it down (delete the NS records) but allows the contractor the ability to build the environment out.

I have never done RAID over USB, but have done various JBOD setups using SCSI. I think the general idea is that USB having such an easily disconnected connector plus the latency overhead on translating SATA to USB to SATA again means you have a higher chance of corruption. SCSI setups typically have connectors with locking mechanisms to prevent easy disconnection.

If eSATA is an option it might be better for the performance and it has a latching mechanism to prevent easy disconnection. You can get a 2-port eSATA PCI card for about 50 bucks.

Oh, and if you have a free PCI port, you could add internal SATA ports to mount the drives internally.

Sometimes distros will alias rm with the -i flag so it prompts for each file. An annoyance but makes you stop and think before continuing.

I know tailscale prefers being installed on every machine but not all of my machines are even capable of running custom code. I use a single tailscale router that published my internal network to tailscale and if the internet is down everything still works fine internally.

Very interesting, considering one.one.one has DNS CAA configured. I wonder if that works for their DNS over TLS certs. Those have to be signed by IP, right?

With TrueNas you can do it two ways: ISCSI disks that are mounted to the VMs or via NFS. With ISCSI you won't have access to the data from the TrueNas side as the data will be stored as a volume file. With NFS you get the best of both worlds as you'll be able to access the files via other TrueNas services like SMB/SFTP. I have my Jellyfin/Plex running via NFS and have few issues, though I've not tested it with large 4k/8k videos yet. I mostly run 1080p.

My problem with tlou2 is that all the marketing leading up to the game heavily featured Joel, and then 90% of the game you play as Ellie. Felt kinda bait and switch. I watched the first season of the show but didn't really care for it so I tuned out.

That side view is pure xcom/fallout shelter. I'm here for it.

No wildcard support sigh