zeluko

zeluko , 1 month ago

yeah, just use kubectl and pipe stuff around with bash to make it work, pretty easy

zeluko , 1 month ago

Thats why we have HSTS and HSTS preloading, so the browser refuses to allow this (and disabling it is usually alot deeper to find than a simple button to "continue anyways")

zeluko , 1 month ago

Thats why we now have certificate transparency reports and CA-records.
Sure not perfect, but at least with a compliant CA it wont just happen in the dark.
At some point you have to trust someone.

zeluko , 1 month ago

Your own servers probably also dont have HSTS enabled, or clicking continue will be disabled (if not overwritten in your browser-config)

zeluko , 1 month ago

Indeed, not classically, but there are HSTS preload lists you can put your domain into which will be downloaded by supported browsers.
And via HSTS you can include all your subdomains, which would then force proper TLS connections for those you havent visited before too.

With the new TLS1.3 version we are getting the HTTPS / "SVCB" Record which not only allows ECH but also indicates to the client similar protection policies like HSTS. (RFC 9460)
ECH will then make such attacks impossible on TLS-level, assuming DNSSEC is used and client can make an integrity-checked lookup e.g. via DoH/DoT or validating DnsSec themselves.
The strength of this depends on the security-chain you want to follow of course. You dont need DNSSEC, but then the only integrity-check is between DNS-Service and Client if they use DoH/DoT (which is usually enough to defeat local attackers)

zeluko , 1 month ago

afaik sustainable, but expensive.. Italy and Greece arent really known to have fat stacks of cash for such projects

zeluko , 2 months ago

But the horse still has a broken leg (End-Storage) and noone really knows how to fix that at the moment. Maybe give the horse some drugs to make the leg stronger (Transmutate the materials from long to moderately-long half-lifes), but we still need to support it in the end.

The move to coal was absolutely stupid, the CDU (which is currently gaining some traction.. again), dialed back on renewables which should have replaced some of the capacities lost to nucelar.. and then decided a new coal plant was a great idea too.
Probably some corruption.. sorry "Lobbying"-work behind that.. its not like the Experts (which were paid pretty well) told them that was a bad idea..

Maybe some more modern nucelar plants might work.. but its unprofitable (probably always was, considering the hidden costs on the tax payers already), so needs to be heavily state-funded, same with storage (plus getting all the stuff out of the butchered storage Asse, putting it somewhere else)
I am open to it, but dont see it happening. And storage.. no hopeful thoughts about that either, i dont think the current politic structures are well suited to oversee something like that from what we have seen from other storage-locations that are or were in use.

I'd also love some more plans for big energy storage aswell as new subsidies for the energy grid and renewables. The famous german bureaucracy is obviously also not helping any of this.

zeluko , 1 month ago

And that hole would of course not deform at all or release the products into the environment over some amount of time?
We already have that problem.. They tried more or less simply burying it in Asse, which spectacularly failed and now has to be brought back up.. paid by the government (so us) of course

zeluko , 2 months ago

But they are leaving it open..

zeluko , 2 months ago

Discord bots were able to get a users IP via the verification system afaik.
And there are of course other ways to force users to do so. Its more interesting Discord themselves didnt care about these methods to ban such bots.. well its Discord, not that surprising when i think about it.

https://www.youtube.com/watch?v=d0h4QPqAwss

zeluko , 2 months ago

afaik thats rather about the parallel service someone had selling the data for a subscription and getting that data from restorecord's database.
In the video it is already suspected restorecord is in on it, and the update comment proves it.

The problem with restorecord getting that data in the first place persists. I am not aware if Discord is tackling that issue at all e.g. making it against EULA and banning those bots.

zeluko , 2 months ago

Yeah and discord is allowing it. Thats all i am saying.
Of course Restorecord is doing it on purpose. There are some valid reasons, but maybe Discord shouldt allow untrusted bot-developers like them to do so.

zeluko , 2 months ago

Media is better indexed on Rarbg (which doesnt exist anymore, but the biggest copy is TheRarbg which works similarly)

zeluko , 2 months ago

afaik its using the backup of Rarbg and adding new content too
its the one with .to

zeluko , 2 months ago (edited 2 months ago)

I would be careful with some of these providers depending on your usage.
You are potentially sending a ton of info to them..

I have access to Bing Chat Enterprise through my company, and only because its the Enterprise version i am half confident in using it with more restrictive data.
Though the frontend of copilot is so heavy and sucks, so i have a proxy for GPT-API to Bing Chat.
Had hoped GPT4All Bing provider would support login, but sadly not, so essentially had to reimplement it all myself.

zeluko , 2 months ago

big reason why i switched to kopia, borg just doesnt cut it anymore..

zeluko , 3 months ago

Yeah the DnD mevhanics are weird for me coming from DOS2..
I really miss elements mixing and having to focus on elements in general. And those weird 'Long Rest' things.. kinda annoying for me.

zeluko , 3 months ago

umm.. isnt the government or rather the judikative already deciding what extremist is?
How would specifically this be different?

I can understand the problems thos causes for the platforms, but the government injecting decisions is something you focus on?
Not to forget the many other places they inject themselves.. one could say your daily lifes because.. careful now.. you live in the country with a government, whaaat?

zeluko , 3 months ago

The GPT services out there use something called 'tools'.
They get presented to the model and the model can 'call' a tool with arguments, which can then extract some data and input it into the context for the model to continue.

I found out, the models which can run on a normal PC (or even a Laptop) are okay, but not super great. (around or a bit worse than ChatGpt3)
The good stuff (e.g. Nous-Capybara 31B or the Mistral/Mixtral ones) needs some more memory and compute.

zeluko , 3 months ago (edited 3 months ago)

I mean EndeavorOS can install the same gui package manager as Manjaro has, pamac.
Game support usually comes from using packages you need and those packages being up to date to support latest changes like fixes.

Am a long time EndeavourOs user, quite happy, it allows everything i need and pacman never broke on me.. cant say the same about apt, when using non-standard repositories (for some up to date packages)
And the AUR is awesome. Has many packages not found in the normal repositories, just some have to be compiled which can take a bit of time, but i dont have to fiddle with it.

zeluko , 3 months ago

Yeah, it needs those rules for e.g. port-forwarding into the containers.
But it doesnt really 'nuke' existing ones.

I have simply placed my rules at higher priority than normal. Very simple in nftables and good to not have rules mixed between nftables and iptables in unexpected ways.
You should filter as early as possible anyways to reduce ressource usage on e.g. connection tracking.

zeluko , 3 months ago

Have a friend with a Gen1, super easy to hack and not used in some time..
The others need a modchip, can be a bit pricy and is more fliddly.

zeluko , 3 months ago

With this many, is he becoming the Terminator?

zeluko , 3 months ago

Was just a matter of time

zeluko , 3 months ago

Which can include programs which do this.

zeluko , 3 months ago

The code itself is not illegal, so hosting it is fine.
Just dont encourage piracy, like at all. No linking, no support, and certainly not patching for games which didnt come out yet and offering these fixes early for payment.

zeluko , 3 months ago

I can change my screens too on desktop, pretty neat.
Unfortunately its a super simple implementation which doesnt take into account the brightness between different screens.

Ideally there should be a master slider and one per screen. The master slider should then use theother sliders current value as scaling factor to change them.
A more complex option could then also allow setting the brightness of each screen which would allow for better setting via the master slider. (not sure if this information is already available)

zeluko , 3 months ago

Its nice to meet the team, start nornal conversations not necessarily bound by work.
Getting to know the people in a way video calls rarely can fscilitate.
BUT how often depends on the team, the distances, the company, and most importantly how often this happens.

I really like my WFH, but its not a full WFH job, so we meet for important events like sprint planning every few weeks.
But thats only 1-2 hours away and most of the commute is long distance train, so i can work that time and still get paid.
Its nice seeing the team and other people in the company i would have never seen, it could be a bit less for me, maybe once a month would be better..

I also think many people only have their work colleagues as contact and little real friends to meet with outside of work.. after all one is paid and theother time you have to maintain your life constantly.

zeluko , 3 months ago

Selfhosting an assistant will probably work better and be much for privacy friendly

zeluko , 3 months ago (edited 3 months ago)

Better quality releases and more active users with much less leeches as they get thrown out.
Though there are many site admins with some complex here too.. your experience can vary.

And of course you need to contribute to the community, most trackers will grant you buffer for both uploading and keeping the torrent running. You want something, then you have to give back.
If the tracker doesnt give possebilities to build your buffer in multiple ways, other than just uploading, its usually a shit tracker.
And some are just super hard to impossible to get into. Start small, wait for open signups or just go to new trackers, they might get bigger over time.
Dont publicly beg for invites, you can humiliate yourself in private chats if you are into that.

zeluko , 4 months ago

law enforcement is exactly that.. enforcement.
If there are no laws in place to force providers to do that, it cant be done via these means.
And if you cannot enforce because the provider is outside the jurisdiction, then you cant either.

And if you start forcing blocks, the users will adapt by either changing provider or simply evading the block.

zeluko , 4 months ago

US great consumer protection at work again?

zeluko , 4 months ago

Or you use TPM, which you can get the key out of

zeluko , 4 months ago

You can downsample from BluRay, which would give you least loss.
But if you only have some good h264 version and want space savings, you can also reencode that, while probably loosing some small amount of quality, depending on your settings.

zeluko , 4 months ago

Just keep it seeding?
Of course if you want both, best space saving would be to use the same file.
I have multiple servers, so it doesnt really matter anyways, one machine downloads and seeds via its SSD and theother is just for storage on HDDs. Though i could setup tiered storage in this scenario to be able to seed more with same SSD strorage amount.

zeluko , 4 months ago

They will tell you you have to delete it yourself.
Comments are technically not necessarily covered under GDPR after they are decoupled from your account and they have no knowledge that it contains other personal data. (which they do not have to check by themselves, that would be ridiculous anyways)

So yes, you do need to run PowerDeleteSuite and then delete your account via account settings (which then triggers deletion in accordance of Article 17)

zeluko , 4 months ago

I found TheRarbg to have better results compared to 1337.
And often 1337 is not accessible.. probably because of cloudflare

zeluko , 4 months ago (edited 4 months ago)

So i understood you just want some local storage system with some fault tolerance.
ZFS will do that. Nothing fancy, just volumes as either blockdevice or ZFS filesystem.

If you want something more fancy, maybe even distributed, check out storage cluster systems with erasure coding, less storage wasted than with pure replication, though comes at reconstruction cost if something goes wrong.

MinIO comes to mind, tough i never used it.. my requirements seem to be so rare, these tools only get close :/
afaik you can add more disks and nodes more or less dynamically with it.

zeluko , 4 months ago

I dont understand why this wasnt already a rule?
Why is the US so retroactive? Something goes bad and only then you start thinking about it and how to stop it in the future, when it becomes a big problem.

zeluko , 4 months ago

idk about wordpress, but can imagine you can just get a domain transfer, pay another year with the new provider and then freely use it.

zeluko , 4 months ago

To be fair, they are talking about the OpenAI end user version, not the models themselves.
Its still sketchy to send your data willingly to them and hope because you pay per request, its not getting tracked and saved.
My company is deep into microsoft, so we all get Bing Chat Enterprise.
Microsoft says it doesnt store anything and runs on separate systems.. i guess with a company-offer they are more likely to put more protections in place because a breach would mean real consequences.
(opposed to a breach with end-users, most of which dont care or would ever go through the legal trouble)

zeluko , 5 months ago

Magic lock icon is easy, hard is it to block attacks and being able to do very little about it.
Spoofed packets, server providers not caring what their customers do, many abuse email adresses dont even work.
Keyless SSL would be nice and i'd use it. I have my own keys, but its for Enterprise customers only.

I am not using Cloudflare as i dont like them handling like 80% of all traffic. But as website owner i can understand why someone would still choose them..

zeluko , 5 months ago

9.9.9.9

zeluko , 5 months ago

Its nice when you are deep in Microsoft already from your company and get BingChat Enterprise included anyways.
Its slower than OpenAI GPT4 at times and its alot more restricted, but it gets the job done mostly.
You need to hack the UI to make it nice, unlock longer inputs, disable search tool at-will, disable synthetic streaming responses (consistent token speed, but takes longer overall)

Simple query via DDG, complex stuff and ChatBot stuff via BingChat Enterprise.

zeluko , 5 months ago (edited 5 months ago)

It is free, but the Enterprise version doesnt store anything (not even usage statitistics) and runs on separate systems (allegedly) aswell as having no limits.

zeluko , 5 months ago

Went from debian to arch and oh boy i like it.
Bleeding edge for the latest features (most of them stable), Arch Wiki is awesome and the AUR is really nice to have for managing and installing software from external sources.

zeluko , 5 months ago

Thats why you need Licenses to stop that.. well jf you can afford to fight them at all, haha.
Money always wins..

zeluko , 5 months ago

Couldnt you just put a custom script onto the print button to take the screenshot and send it to a light editing program?
I have my normal screenshot button and another one which afterwards send the selected region to img2txt and puts the detected text into the clipboard.