Atemu

Atemu , 1 year ago

It works but partitions can and will happen and a merge afterwards is non-trivial AFAIK.

Atemu , 1 year ago

Well, no program can accurately predict how you are going to use your laptop in the next hours. The best you can do is sample a given reference period and assume it’ll be the same but you have already noted the problem with that.

I’d recommend you monitor total power draw while using your laptop. It’s inversely proportiaonal to battery life: If you could reach 10h at 5W, you’d only reach 5h at 10W, 2.5h at 20W and so on; you can think of it as a metric for battery drain.

Atemu , 1 year ago

“Didn’t understand the sampling theorem” for $2 please.

As long as the frequency of the measured signal is <1/2 the sample rate, you can reconstruct the original signal perfectly.

If you plugged this jaggy-looking graph into a digital to analog converter with perfect analog circuitry, you’d get exactly the sine shown.

Atemu , 1 year ago

Quantisation is a potential factor but the graph does not show its effects and their comment describes the supposed effects sampling, not quantisation.

Also, when we come to discussing SNR, you’ll have to consider the SNR of analog systems too.

Atemu , 1 year ago

Lobby for making taxes more complicated /s

Atemu , 1 year ago

Who the hell thought we’d want to get harassed on every site we visit?

The sites’ operators.

The GDPR does not mandate cookie banners. The GDPR mandates informed consent to processing of your data beyond what is technically necessary to facilitate the service. If all you’re doing is store session ids, user preferences or whatever, you need no cookie banner whatsoever.
Lemmy also uses cookies. Do you see a banner? Me neither.

Menial banners to “convince”/trick users into accepting severe privacy intrusions (cookies are the least of your concerns here) are an invention of the websites. Most of them aren’t even legal as they often do opt-out (straight up against what is written in the law) or use dark patterns to trick users into giving consent (obviously not actual consent).

It’s taking a while but the law is slowly being enforced now. Expect slightly less terrible cookie banners in the future. Whenever you do see one though, blame the site operators and law enforcement, not the GDPR.

Atemu , 1 year ago

That’s not how this works. Save the post if you want to return to it later. You will not be notified of new answers in this thread if you comment.

Atemu , 1 year ago

That’d be an insane blow and would take years if not decades to recover from.

Atemu , 1 year ago

DRM should work on the RPI GPU. What happens when you run i.e. sway from the CLI?

Atemu , 1 year ago

from which interesting derivatives will show up.

I don’t think that will happen and hope it won’t because NixOS can handle the usual preferences people might have internally.

Don’t like glibc? pkgsMusl is the entire package set but with musl instead of glibc.
Want static compilation? pkgsStatic.
Afraid of systemd? Well okay, we don’t have that right now but I don’t think anyone would be opposed to optional support for worse service managers. It’d just be an opt-in toggle that we could support with enough people interested in it.

Atemu , 1 year ago

Garuda only exists because the only way to distribute a set of default configuration in regular distros is to create a whole new distro/installer. We don’t have that problem in NixOS because all configuration is declarative and composable.

In the NixOS world, Garuda would be a NixOS base config which users would import in their own config and extend with their own configuration. You’d still be using NixOS though.

Atemu , 1 year ago

How much is “fairly long”?

What do you know about the password?

Atemu , 1 year ago

If that’s all random characters, you’re not going to crack that by brute force in your lifetime.

Atemu , 1 year ago

what if a package’s dependencies are out of date?

This is rarely the case as we usually don’t keep older patch versions or whatever. Most packages will just be updated “in-place”. We might keep a few major versions of some major packages though if some other packages have a hard dependency on some older API/ABI. When that happens and an old major version goes EOL/has security issues, it’s marked as insecure and you’d have to explicitly opt into using it by allowing its version in your config.

it’s (nearly) impossible to actually do your own manual imperative editing of packages to solve a quick problem since everything is declarative.

You can do your own declarative “editing” of packages: Overrides allow you to override any dependency of a package and receive a package where that dependency is the other thing you put in.

Overlays allow you to “edit” packages in the context of a package set where the package’s dependants in the set also receive the “edited” package as their dependency.

It’s fairly normal to have an overlay in your config to customise a few packages to your liking. Anything that needs youtube-dl gets yt-dlp with the youtube-dl executable alias in mine for example: github.com/Atemu/nixos-config/…/overlays.nix#L29-…. Stuff like that.

Also note that, if a package is broken, it’s usually best to fix it upstream rather than patching around upstream in your own config. The package being unbroken for every NixOS user instead of just yourself is one PR away; it’s super easy to contribute to Nixpkgs.

Nix uses mostly its own configuration methodology, so isn’t this a maintenance nightmare as config files change and options are added/removed?

In NixOS, this doesn’t happen very often. Most options have been there for years and go unchanged for years aswell. At least in terms of API; they might do different things internally to achieve the options’ goal but you don’t need to care about that; you just state your intent. There are many ways to install i.e. systemd-boot to your ESP but you only care that it’s installed, not how.

When a breaking change happens in the options’ API, you’ll know about it at eval time. It’ll show you an error stating that e.g. the option has been renamed to so and so and perhaps the semantics changed. Many times it’ll just be an eval warning even, stating that the option has been renamed and has been set to your old option’s value but you should move over because this fall-back will be removed in the next release.

Note that if you don’t like breaking changes coming in willy-nilly, the stable channel (23.05 currently) would be for you: It restricts such option changes and you only have to change your config to accommodate option changes twice a year when a new release comes out. As I said though, breaking changes don’t happen very often for your average NixOS config even on the unstable channel. This isn’t really as much of an issue as you might think.

Can’t really speak for home-manager as my use of it is quite limited and it’s a nix-community project, not a NixOS one (different quality standards).

I have come to the realiziation that, unlike a traditional distro like Arch/Alpine which I used previously, if maintenance dies I cannot feasibly maintain it myself, since it’s mostly “magic”.

That’s just because you don’t have experience packaging or maintaining Nix packages yet. If you didn’t know how to package Arch/Alpine packages, you would be just as screwed if maintenance was dropped.

Once you’ve done a few patches to packages or even packaged something yourself, this “magic” will become more and more disenchanted.

The upkeep of all the configurations plus all the dependency packages, and making sure each package compiles and matches the build configuration is a nightmare.

Not quite sure what you mean here. Could you point out some concrete examples of that?

Atemu , 1 year ago

Any package can be “edited” using its overrideDerivation function. You can pass new configureFlags, buildInputs, a new src, etc. It’s all additive too, so when something else about the package changes in Nixpkgs, that’ll propagate to your “edited” package too.

Config files for some service at runtime and the packages themselves are two separate domains. The former is handled by NixOS. In order to “modify” the runtime configuration, you set options inside a NixOS module such as your configuration.nix. If you wanted to place a config file somewhere in /etc/ or configure a systemd service, you’d use the https://search.nixos.org/options?channel=23.05&show=environment.etc&from=0&size=50&sort=relevance&type=packages&query=environment.etc or https://search.nixos.org/options?channel=23.05&show=systemd.services&from=0&size=50&sort=relevance&type=packages&query=systemd.service options. They’re a bit like “primitives” as they’re rather low-level in NixOS terms but so is editing a config file in an imperative distro. NixOS modules usually use these “primitives” internally to offer more abstract options. services.paperless.enable internally sets up a systemd service via systemd.services which runs paperless with the declared configuration for example.

Atemu , 1 year ago

They’re still unstable and fully optional. When you’re at the point where you could benefit from flakes, you’ll know it. Ignore them for now.
The most tangible difference to a NixOS user would be that they replace channels. If you’re contempt with channels, no need to rush to flakes.

Atemu , 1 year ago

I’m gaming in moonlight so it needs a good decoder

Almost any modern SoC can decode 1080p60 HEVC in real-time. That part is handled in dedicated hardware; the speed of the CPU or GPU next to it does not matter.

Atemu , 1 year ago

terrible camera

Phone cameras quality does not really depend on hardware these days. It’s all software.

Get yourself a hacked Google Camera. Night and Day change.

Atemu , 1 year ago

You did not specify that you need a 10-bit capable decoder. Given that the screen is 8-bit, that would be kind of unusual to have outside of niche applications such as this one.

8 vs. 10 bit shouldn’t make the image look better outside of toning down banding artefacts. There might be an indirect colour transformation taking place here.

Atemu , 1 year ago

That’s dangerous thinking.

Atemu , 1 year ago

I use Tailscale for secure access to my apps. Trivial to set up and no holes is the firewalls whatsoever.

Atemu , 1 year ago

I don’t think there is a way to remove that. “Karma” is just the sum of upvotes on all of a users’ posts/comments and that info is always accessible.

We could make the decision to not show that value in the front-ends of course but you’ll likely have very different opinions on that and some front-ends will inevitably show karma.

Atemu , 1 year ago

Voat

Kept people in check

I don’t think so dude.

Atemu , 1 year ago

Gotta love them tree NFTs.

Atemu , 1 year ago

lemmygrad and exploding-heads I can understand but why lemmy.ml? It’s a general purpose instance with no known bot/Nazi/Tanky/other fascist/etc. infestion.

Atemu , 1 year ago

This seems to have been taken out of context. Their response seems to be about a supposed “white genocide” some white supremacists have thought up and I fully agree with him that that’s bunk.

Atemu OP , 1 year ago

Possibilities at the block layer are generally quite limited since it only has limited means to work with. It’s very low-level. For example, it is not possible to do authentication in LUKS. An attacker can’t read the data but they can modify it; undetected.
You need to stack another layer on top and I’m not sure that’s even a thing.

The patch mentions that authenticated hashes aren’t supported yet either but with effectively limitless metadata to work with, it’s at least possible to do.

Per-directory/subvolume encryption is also a useful feature. You could encrypt the root fs which generally does not contain sensitive information using a key in TPM but then require a password to unlock the user’s home. That’s basically how it works in Android and it builds on top of fscrypt.

Atemu OP , 1 year ago

Note that this is of course a very theoretical attack vector.

Wouldn’t it then decrypt to gibberish data unless they already had the encryption keys?

Depends. I don’t know the situation of LUKS and its commonly used ciphers in particulare but even some commonly used ciphers are vulnerable to things like bitflip attacks.

This is usually “fixed” by authenticating them but that’s not easily possible at the block layer.

If it decrypts incorrectly, shouldn’t BTRFS checksumming then return an I/O error to user space as well?

Note that btrfs usually uses CRCs, not cryptographic checksums. They’re designed to catch “naturally” occuring corruption, not crafted corruption. Naturally, it’d still be extremely hard to break them when working with encrypted data but it’s a “uh, sounds pretty hard” situtation, not a “we can prove you’d need billions of years to do it” one.

You can use cryptographic checksums but note again here that the attacker could be able to modify the checksum aswell.

I don’t know how feasible this really is a but a possible attack could be to tell btrfs that the extent you modified is a nochecksum extent (you can turn off checksums in btrfs) which would make btrfs simply not check the checksum.

Actual authentication fixes all of that.

Atemu , 1 year ago

YouTube’s entire business is propaganda: Ads.

Atemu OP , 1 year ago

Using an OK scanner makes a big difference.

WDYM? The lossless scans SANE produces themselves subjectively look very good. My only issue is the transcoding to lossy formats I want to do in order to save >3/4 of the space.

Atemu OP , 1 year ago

Interesting idea but I think I’d like to retain similar to original quality in case I wanted to redo OCR if/when Paperless’ OCR improves in the future.

Atemu OP , 1 year ago

Hm, DJVU seems like an ancient format and it also only supports JPEG and J2K as far as lossy formats go.

I’d love to use more modern formats such as AVIF, HEIF or even WEBP but paperless doesn’t support some of them and images in general can only represent one page while many of my scans have multiple pages.

Atemu OP , 1 year ago

I use SANE, then do lossy compression too.

Well, what kind of lossy compression? JPEG?

IME, JPEG looks quite terrible for text documents -even at q=95.

Atemu OP , 1 year ago

Hmm, I’m using grayscale PNGs as my baseline here. A 150dpi scan is about 1.3MiB.

A (for the purpose of text documents) similar quality WEBP is about 1/4 of that.

Atemu OP , 1 year ago

Yes, as I said.

As also mentioned in the post, I need a solution for multiple pages and an image (no matter what format) only represents a single page and WEBPs don’t go into PDFs.

Atemu OP , 1 year ago

And how do you encode the images of the scan contained in the PDF/A? That’s the crux here.

Atemu OP , 1 year ago

That’s nice and all but does not answer how you’d create the PDF. Whether that happens outside paperless inside paperless does not make a difference. In the end, I need to create a PDF/A out of some images and the question on how to encode these images still remains.

Atemu OP , 1 year ago

PDF/A is not an image format. As a document, it may contain images.

Atemu OP , 1 year ago

I care that the text remains readable (both to me and also software) and that I don’t balloon my storage out of control.

JPEG (even at higher levels) subjectively degrades text in particular to a degree that I worry about the former and PNG makes me worry about the latter.

My current plan is to go with the latter since storage is a relatively cheap issue to fix while data loss is pretty much permanent.

Atemu , 1 year ago

Give Organic Maps a try; it’s from some of the original creators of MapsWithMe/Maps.me: organicmaps.app

Atemu , 1 year ago

Synchronise what exactly? Emails should already sync via IMAP.

Atemu , 1 year ago

Yes, AWS gracefully sponsored 12 months of our S3 bill which gives us even more time to enact change.

That’s just the short term resolution though, the Nix community is still looking into more sustainable long-term solutions.

Atemu , 1 year ago

the Nix community is still looking into more sustainable long-term solutions.

Atemu , 1 year ago

You aren’t a reputable public hoster with AWS-class uptime. That has a price too. AWS is likely overpriced though, hence the nix community still looking for better alternatives.