DefederateLemmyMl

Never mind developers who, in 2025, still think their project is special enough for a $HOME dotfile/dotdir

Well, Firefox is pretty special 🤡

I haven’t had to compile a kernel in 20 years.

You’ll be lucky if there are actual VMs.

Mods should ban any account that has external links meant to sell something

There is r/nofans

I think cars peaked ca. 2010. Anything added after that are annoyances or things being taken away.

If I could get a brand new facelift E90, that would probably be my next car.

Do not allow username/password login for ssh

This is disabled by default for the root user.

$ man sshd_config

...
       PermitRootLogin
               Specifies whether root  can  log  in  using  ssh(1).   The  argument  must  be  yes,  prohibit-password,
               forced-commands-only, or no.  The default is prohibit-password.
...

If it is your single purpose to create a blocklist of suspect IP addresses, I guess this could be a honeypot strategy.

If it’s to secure your own servers, you’re only playing whack-a-mole using this method. For every IP you block, ten more will pop up.

Instead of blacklisting, it’s better to whitelist the IP addresses or ranges that have a legitimate reason to connect to your server, or alternatively use someting like geoip firewall rules to limit the scope of your exposure.

Yeah I don’t do security via obscurity

Another one who misunderstands that phrase… Yes, obscurity shouldn’t be your only line of defense, but limiting discoverability of your systems should be an integral part of your security strategy.

A VPN like Wireguard can run over UDP on a random port which is nearly impossible to discover for an attacker. Unlike sshd, it won’t even show up in a portscan.

This was a specific design goal of Wireguard by the way (see “5.1 Silence is a virtue” here https://www.wireguard.com/papers/wireguard.pdf)

It also acts as a catch-all for all your services, so instead of worrying about the security of all the different sshds or other services you may have exposed, you just have to keep your vpn up to date.

Born in the 70s here. I do remember LGB without the T in the 1990s and early 2000s, you probably were too young to pick up on the term. In any case, trans rights came into the spotlight much later than LGB rights.

Barracudas are SMR garbage nowadays, they’re coasting on their reputation of many years ago when they were actually decent hard drives for the price.

Those look like real life windows media player skins from the early 2000s.

I like user respecting operating systems, that is the deal breaker.

If you insert snap into apt package management, so that you can go behind the user’s back, re-enable snap and install a snap anyway if a user tries to apt install firefox, you don’t respect the user’s choice. It’s the kind of thing we give Microsoft shit for.

And yes I know it can be worked around and disabled and whatnot by jumping through various hoops, but that’s beside the point. As a matter of principle, I will just use something that doesn’t do this. KDE on Debian works just as well as Kubuntu anyway.

How can it suck the least if it has snap?

I’ve seen ‘Active / Passive’ used, that seems alright

That’s not always an accurate description though.

Consider a redundant two node database system where the second node holds a mirrored copy of the first node. Typically, one node, let’s call it node1, will accept reads and writes from clients and the other node, let’s say node2, will only accept reads from clients but will also implement all writes it receives from node2. That’s how they stay in sync.

In this scenario node2 is not “passive”. It does perform work: it serves reads to clients, and it performs writes, but only the writes received from node1. You could say that node2 slavishly follows what node1 dictates and that node1 is authorative. Master/slave more accurately describes this than active/passive.

There’s plenty of alternative terms to use without borrowing terminology from sexual roleplay.

Do I have news for you …

$100 though … a Chromecast used to be like $35.