It’s called xenophobia, the fear and dislike of anything foreign. Some people believe that if your group isn’t dominant it will be dominated, and peaceful coexistence isn’t possible between different groups.
These people are afraid that, if the English language isn’t forced onto other people, one day other people will force a foreign language onto them.
C) came to the logical conclusion, that X is bad/wrong/shouldn’t be/whatever
D) genereally mistrusting against X due to a careful nature
E) have had traumatic experience with X (e.g. Being raped/attacked by a member of a specific ethnicity) and hence totally overreacting to an otherwise harmless stimulus, even forgetting the rules of civil behaviour
Those all don’t mean there’s the medical condition of a phobia for X.
A real xenophobic has an irrational fear of anything unknown/alien. Doesn’t mean the person just hates e.g. Mexicans for no real reason. It might even like them once they get to know the better, which often just won’t happen as phobics tend to avoid the cause their phobia instead of treating it.
I just dislike the lax use of medical terms until they’re bereft of any real meaning.
So, a person who yanks “speak English!” to someone, could have many reasons to do. None are neither polite nor politically correct. While the asshole is probably just the uneducated asswipe, the phobic could be helped and probably even feels bad afterwards for being so compulsive and insulting.
I felt dirty! and broke so much shit when i had to implement NAT on networks in the mid 90’s. Nowdays with ipv6 and getting rid of NAT is much more liberating. The difference is staggering!
you do not need NAT any longer, firewall is the security, just like on ipv4, just less obscurity.
you do not need dns views, to workaround NAT any more
you do not need hairpin NAT to workaround NAT any more
you do not need to renumber to resize a network. they are always /64, and the answer to how many hosts can it fit is: ALL of them!
many ALG’s will be unnecessary since there is not NAT.
vpn’s are easier, since it can be the same address both inside and outside the vpn, the firewall (or host even) enforces the encryption.
vpn’s are MUCH easier since you will have less rfc1918 collisions due to some other network using the rfc1918 of the vpn’s network
vpn’s are MUCH MUCH easier since you will have less rfc1918 collisions due to you using the rfc1918 of the vpn partner network, to 1:1 nat a previous vpn network you collided with some months ago… ARGH!!!
vpn are generally less required, heck i swear 95% of the time the VPN are just to workaround the NAT problem and the data is pointlessly double or triple encrypted.
you can make more granular firewall rules (eg the spesific host, or network of the source address, instead of the whole enterprise’s public ip) this is real tangible improved security, where any random machine in a network you do not control. do not automatically have openings into your own network.
firewall objects can if it is suited easily use and depend on FQDN DNS objects when allowing traffic. reducing the need of coordinating firewall object ip address changes between 15 companies.
firewall rules are easier, more readable, and much more predictable how they will work. All the hairpin nat, public to private nat, private to public nat for a thing that need a different public ip, 1:1 nat for a separate zone, NAT to a vpn or 50 (where 10 of them are 1:1 nat due to collisions, making you require 4 dns views of the same ip space!! ) very quickly gets messy and unreadable. this is probably the largest security benefit. just to reduce the complexity.
much easier to get people to use dns, since nobody wants to remember ipv6 addresses :D
nibbles in the ipv6 address can have meanings you assign to them, making the networks and structure both easy to remember and logically structured.
aggregating routes becomes very easy if you design your network that way.
firewall policies can become easier if you design your network that way.
your routing tables is leaner and easier, and of a better consistency. We have 1 large public ipv6 prefix, but 25ish ipv4 prefixes of all kinds of various sizes.
no need to spend $$ to buy even more ipv4 prefixes.
no need to have spent hundreds of $$ on a new ipv4 prefix only to be unable to use them for over a year because you need to sanitize the addresses from all the reputation filters. and constantly hound geo ip database providers to update the new country of the prefix. (i am bitter, can you tell…)
did i mention no need to renumber since you need to grow the /24 to /23 due to to many hosts in a network ?
did i mention no need to renumber 2 /24’s to /25’s to make space for that larger /23.
you do not even need any ipv4 addresses any more, use a public NAT64 service, for outgoing. and for incoming just use one of the many free public ipv4 to ipv6 proxies for your services online. for a homelab i really like v4-frontend.netiter.com (go support them) But most large business l networks use cloudflare, or akamai
since you do not need your ipv4 address space any more, you can ~~sell them for a profit $$$ ~~ return them to the RIR and give some address space to one of the thousands of companies struggling because they do not have any IPv4 : www.ripe.net/…/ipv4-waiting-list/
much lower latency on ipv6, since you do not go across a cloud based ipv4 to ipv6 proxy in order to reach the service ;)
Now the greatest and best effect of ipv6 is none of the above. It is that with ipv6 we have a slim hope of reclaiming some of what made the Internet GREAT in the first place. When we all stood on equal footing. Anyone could host their own service. Now we are all vassals of the large companies that have made the common person into a CGNAT4444 using consumer mindlessly lapping up what the large company providers sees fit to provide us. with no way to even try to be a real and true part of the Internet. Fight the companies that want to make you a eyeball in their statistic, Set up your own IPv6 service on the Internet today !
i got like a third through it before scrolling to the bottom to see how long it was. omg! should be the canonical example of the opposite of a shitpost ha
But DNS rarely break. The meme about it beeing DNS’s fault is more often then not just a symptom of the complexity of IPv4 NAT problem.
If i should guesstimate i think atleast 95% of the dns issues i have ever seen, are just confusion of what dns views they are in. confusion of inside and outside nat records. And forgetting to configure the inside when doing the outside or vice verca. DNS is very robust and stable when you can get rid of that complexity.
That beeing said, there are people that insist on obscurity beeing security (sigh) and want to keep doing dns views when using IPv6. But even then things are much easier when the result would be the same in either view.
That beeing said, there are people that insist on obscurity beeing security (sigh) and want to keep doing dns views when using IPv6. But even then things are much easier when the result would be the same in either view.
I broke DNS plenty of times in my homelab independent from NAT. In the last few months:
didn’t turn off DNS server in a wifi router set up as bridged access point
dnsmasq failing to start because I removed an interface
dnsmasq failing to start because the kernel/udev didn’t rename an interface on time
dnsmasq failing to start because hostapd error didn’t set proper interface settings
forgot to remove static DNS entries in /etc/hosts used for testing
forgot to remove DNS entries from /etc/resolve.conf after visiting a friend and working on his setup
Yes, most of them is my dumb ass making mistakes, but in the end it’s something that constantly breaks and it helps knowing the IP addresses of my servers and routers.
Aditionally, obscurity is a security helper. The problem is relying only on obscurity. But if I have proper firewall rules in place and strong usernames and passwords I still prefer if you don’t even know the IP addresses of my servers on top of that (in case I break some of the other security layers).
There’s one practical thing. Routers have had years to optimize IPv4 routing, which has to be redone for IPv6. Same with networking stacks in general.
In theory, IPv6 should be faster by not having to do bullshit like CGNAT. There’s every reason to think it’ll match that advantage if we just make it happen.
In the USA, around 50% of Google traffic and 60% of Facebook traffic goes over IPv6. The largest mobile carriers in the US are nearly entirely IPv6-only too (customers don’t get an IPv4 address, just an IPv6 one), using 464XLAT to connect to legacy IPv4-only servers. I’m sure we’d know if routing with IPv6 was slower. Google’s data actually shows 10ms lower latency over IPv6: www.google.com/intl/en/ipv6/statistics.html#tab=p…
That is not how it works. You can have a home network on ipv6. And it can reach all of ipv4 via nat ( just like ipv4 do today). A net with only ipv4 can not reach any ipv6 without a proxy that terminst the v4 connection and make a new v6 connection. since ipv6 is backwards compatible. But ipv4 is naturally not forwards compatible.
Also it is the default deny of the stateful firewall that always coexist with NAT, since NAT depends on that state, that is the security in a NAT router.
That default deny is not in any way dependant on the NAT part.
If there is a ipv6 service online. That you want to reach from a v4 only client. You can set up a fixed 1:1 nat on your firewall where you define a fake internal ipv4 address -> destination NAT onto the public ipv6 address of the service. And SRC NAT64 embed your clients internal v4 into the source ipv6 for the return traffic. And provide a internal dns view A record pointing to the fake internal ip record. It would work, but does not scale very well. Since you would have to set this up for every ipv6 ip.
A better solution would be to use a dualstack SOCKS5 proxy with dns forwarding where the client would use the IPv6 of the proxy for the connection. But that does not use NAT tho.
Yeah, here in Russia the ISPs and IT infrastructure guys seem to be treating IPv6 like it has cooties. I can’t find an article (and it’d be in russian anyway) but as far back as 2022, if you get IPv6 you can expect a variety of issues with it, ranging from “you need to reboot your router every once in a while” to “you technically have v6 but good luck actually browsing v6 internet”.
And of course, why would they give you a stable IP when they can charge for it :T. At least it’s only a third the price of a stable IPv4.
My current ISP technically provides v6 according to their site - but my connection doesn’t have it, and since there’s nothing about it in the years-old contract, I’d need to redo that if I want to complain.
There are usually plenty of choices for ISPs here, actually. But switching between them isn’t likely to give me IPv6 since either they share a magistral or the hardware is just plain old. That, and IPv6 is just not a thing anyone markets.
…and with the current fuckery going on, I doubt many of them have budget for big upgrades. Or maybe even access to hardware to buy.
We currently can’t block enough radiation to make space travel safe for humans in long term situations unless we are blessed with the calmest of space weather based on some recent news about the long term effects on the kidneys in the conditions of space travel (source, I believe the research still needs to be corroborated phys.org/…/2024-06-astronauts-kidneys-survive-rou… )
We’re still not at the Star Trek radiation screen level, unfortunately. So I’m not confident we can isolate this well enough. Earths magnetic field and atmosphere do a lot of work for us, and we still cannot replicate their function well enough to make it safe for humans long term. And this is a project that was put underground because it was more sensitive than humans.
Honest question could this be feasible with a few dozen satellites positioned above the Van Allen Belts to accelerate particles, and just letting the particles raw dog the solar wind and ride around Earth’s gravity well between each acceleration satellite? Cause that would be badass
No, to orbit the earth at an height of let’s say 1000 km you would need a speed of around 7km/s. If you go faster, you don’t follow an circular orbit. Wirh around 11km/s you would be so fast to leave the gravity well of earth. The particles in those colliders are almost moving at the speed of light. To be exact, they move only 3.1m/s slower than the speed of light, so almost 300000km/s. They would fly almost straight and would be barely influenced by the gravity well.
I know Firefox has a bit of a reputation for being rather precise in how it handles web standards compliance. So, it’ll show comparatively many warnings and errors, if you don’t keep to the web standards.
This is actually quite useful for web devs, because it means, if Firefox is happy with your implementation, then it’s relatively likely to run correctly on all browsers.
Yeah, if that’s what OP means (though that’s unclear), I’m not sure why OP thinks it’s a bad thing. It’s a good thing.
Or maybe OP means Firefox crashes more or something. In which case I can only say that hasn’t been my experience.
My experience has been, however, that Firefox is quite usable on a Raspberry Pi 4 while Chromium is far too resource hungry to be usable on that platform.
IT - if you have an issue with an application, give us step by step instructions on how we can repeat your issue like we are five years old. We’ll get it fixed more quickly that way.
I have great service with IT people because I do this by default. I’ll have already tried some steps myself, so I’ll give them info about what exactly works, doesn’t work, and things that I can or can’t do that might be related to the main issue.
I feel bad that my old job’s IT department would never trust me when I listed this amount of detail, so I stopped putting in the extra effort.
My ticket: I am not able to login using the standard portal. The error I recieve is X. I have already tried rebooting. I have confirmed that everything was fully plugged in and that I am on the correct network. I also already went through the normal recovery process which did not work. Here is the result, [X].
The first response from IT: Why don’t you try rebooting and then let me know if it’s working. If not, go through the normal recovery process.
Like, I get it, you’re being thorough and don’t want to just blindly trust the user, but I’m only talking to you because I already tried your quick fixes. Please understand.
Reasoning: For everyone one You, we have a 1000 not-You. But the other 1000 say almost the same as you.
Once you experience that you become jaded and assume they are either lying or tell or miss some details. But we know our usuals and if we notice the name we might assume you know x and y more than the usual.
Yeah, I get that. I think it’s partially to do with how rarely I’ll have an actual issue. Also with their turnover rate, I rarely interact with the same tech twice.
I still do all the legwork to figure out if it’s something I can fix myself and always put specifics (Repro steps, Error Codes, etc.), but pulled back on listing every other step I’ve already tried.
As an IT director, I encourage my techs first action to be to connect to the clients machine and ask them to “show me what’s happening.” Then they aren’t to interrupt the user until they complete their explanation except to ask for clarification.
You can see all the steps leading up to the error, the users workflow, typically the desired end result, and the error message.
You also are building rapport with the user making them feel listened to. Far too often I see techs assume something else is the issue, “fix” that, call it done and the user gets frustrated.
Even if you can’t fix it, like so many user issues, at the very least the support experience is a positive one for the end users. Sometimes it’s just that a specific preference isn’t in an applications options or they need to change a step in their workflow. But at least the end users was listened to and their experience and frustration was validated.
If you have metrics or surveys, it’s always interesting to hear a user write in that the issue was not resolved, but they were extremely satisfied.
I’m doing that and generally the next step after that is : “OK, can you do it again and this time DO NOT CLOSE THE ERROR POPUP so we can get information on what is happening”
Also a restart really does fix a big chunk of problems. An app not working right? Force quit & reopen the app. Problem solved. Phone or computer bugging out? Reboot. Problem solved.
In my city/county, you get a free card if you can prove you live here (show something with your address) Our system will also do fundraisers to supplement the budget from taxes. We almost lost some libraries a gew years ago, but voters remade the local government and they are safer now.
I’m not suggesting to pay one euro each month, I’m suggesting that you treat your lemmy instance as a 12 euro per year subscription. Compared to literally every other service it is basically free.
Pretty much been housebound since 2018. I can walk short distances, but large stores like a grocery store or a Home Depot were out of reach unless they had their own scooters available, which were often broken, or un-charged.
Malls were out entirely. City centers? Not a chance.
I would bet on it being a little bit (well, a lot) of ablism mixed with people wanting only answers that they personally can use. Which circles back on the ableism… people don’t want to believe that they could suddenly join this minority group at any time.
I had to be in a wheelchair for a year. The internalized shame from pervasive background ableism is horrible.
People here are far more likely to be anti-capitalist, anti-corporate, pro-privacy, etc. those groups all circle the same kind of Cory Doctorow/Matt Stoller/Luddite world where the word enshittification became popular.
I had no idea the term Luddite had any meaning beyond the colloquial definition of shunning technology in general. Thanks for giving me something to read about today.
I had no idea myself until just recently. The 99% Invisible podcast had a decent episode about it which I listened to that helped put it all into context.
The short story is that it was a labor movement trying to prevent mill owners from abusing workers by using automation to bleed the maximum productivity out of the fewest people. The Luddites would break into mills and smash the “infringing” machines. Tensions rose, the Luddites were eventually crushed, and the term Luddite was intentionally rebranded by capitalists to be synonymous with ignorant/anti-intellectual so that no one would ever want to associate with them again.
It’s genuinely criminal how badly their reputations got tarred; when I heard what they were actually about I was genuinely struck like “my god there WERE people who felt the way I do”. Like-- I’m literally a communist, I don’t believe there will ever be a point of human existence where meaningful, dignifying labor has been ‘abolished’; nor do I think we should aspire to that.
Automate away the drudgery, the sinecurial, and the tedious, sure, that’s all well and good and should be done; but that which lets a person create, to make something useful, that they could be proud of? Tech shouldn’t be eliminating that, and that very much feels like the future we’re going toward.
I agree. and I happen to enjoy baking. arch was my first distro and after a whirlwind tour of other options at some point, has remained my daily driver os for the better part of a decade.
i don’t suggest arch to just any newbies. I suggest it to the ones who are overtly interested in baking. I don’t suggest it to people asking the best way to get tasty cookies, who are perhaps the majority, but not by as much as people seem to naturally suspect. sometimes I think some people giving answers don’t remember or realize that there are many kinds of people interested in learning about Linux and therefore many right answers for a starting distro.
mint has the same problem that butyric acid has in american herseys chocolate. if you associate the ingredient with toothpaste/vomit first, then you come in with a much more negative view of it.
Anecdotally, the communities I’m interested in are getting more active in a way that seems sustainable (as opposed to last year, when it was a always a single person posting some, getting no responses, and leaving). I’m pretty positive about the state of Lemmy and the wider threadiverse.
Same here. It might be that the overall number of Lemmy users may be shrinking, but some of the communities I’m in are getting to a more sustainable level of activeness compared to automn.
The monkey paw here is that you are loading the world state and that includes you and your memories. You would never remember using this ability. Maybe you already have it!
I would assume it's because it leads the reader to what tone to use in a given sentence. The question mark or exclamation point would be useful in tone throughout the whole sentence, but if neither is present in front of the sentence a regular reading tone could be assumed.
so why add a floating period when nothing being there allows for the same assumption and is much, much simpler and easier?
Still learning Spanish but I believe this is correct, because you can insert a question mark into the middle of a sentence as well if the entire sentence isn’t a question.
Language is more than just written script and spoken words - grammar is very language specific too. In Spanish, the example above is indeed grammatically correct.
Yup! I really like it a lot more than how we do it in English honestly, it’s like quotation marks for a question. It’s very pleasing to me to have something in the sentence clearly highlighting what the question is. If it has any annoyances or drawbacks I’m not at a comprehension level where I’ve run into them.
Yeah, there are some glaring issues with account and content deletion. Lemmy too, for that matter. If I delete something, I don’t want it to be just slightly obscured and easily recovered, I want it to be erased, unseeable forever. But that aspect of privacy doesn’t count in the FOSS circle jerk hive mind. “Keeping illegal revenge porn online forever is worth it so long as they don’t tell advertisers what colour I like”.
For Discord like communities, I’d also suggest using Element as the Matrix client. It’s pretty similar to Discord. Also, you’ll need support for “spaces”, which are like Discord servers. Rooms = channels
No screen sharing or even video calls iirc. Soo many people use Discord to watch stuff with their friends or to play games with their friends. Matrix is more of a irc replacement imo it doesnt have any gaming focused features and the Forums on discord are nice too
kbin.life
Top