realbadat

@[email protected]

This profile is from a federated server and may be incomplete. View on remote instance

realbadat ,

Mythbusters streamlined is like that. A bit rough on some cuts imo, but overall just cuts the fluff.

realbadat ,

It's on reddit going back quite a few years, with a recent tracker update:

https://www.reddit.com/r/smyths/comments/8gix4w/streamlined_mythbusters_complete_may_2018_update/

realbadat ,

Shit, I should check my bins

Help with deployment

Hello nerds! I'm hosting a lot of things on my home lab using docker compose. I have a private repo in GitHub for the config files. This is working fine for me, but every time I want to make a change I have to push the changes, then ssh to the lab, pull the changes, and run docker compose up. This is of course working fine, but...

realbadat ,

Dockge would be more appropriate for that.

Watchtower has different functionality, mainly keeping them up to date with images.

You want Jenkins, GH Actions, or even ansible.

realbadat ,

Like anything else, it's good to know how to do it in many different ways, it may help you down the line.

In production in an oddball environment, I have a python script to ftp transfer to a black box with only ftp exposed as an option.

Another system rebuilds nightly only if code changes, publishing to a QC location. QC gives it a quick review (we are talking website here, QC is "text looks good and nothing looks weird"), clicks a button to approve, and it gets published the following night.

I've had hardware (again, black box system) where I was able to leverage git because it was the only command exposed. Aka, the command they forgot to lock down and are using to update their device. Their intent was to sneakernet a thumb drive over to it for updates, I believe in sneaker longevity and wanted to work around that.

So you should know how to navigate your way around in FTP, it's a good thing! But I'd also recommend learning about all the other ways as well, it can help in the future.

(This comment brought to you by "I now feel older for having written it", and "I swear I'm only in my fourties,")

realbadat ,

And I appreciate your choice (considering a good number of communities I enjoy are on your instance).

Personally I think anything prod level should be manual updates only anyway.

realbadat ,

This is reddit blocking all VPNs it can, and only on new reddit.

It has nothing to do with bad actors and everything to do with maximizing user data gathering.

realbadat ,

Forgejo is my rec.

realbadat ,

For one thing, more FOSS focused. It's lighter/faster for me than a self hosted gitlab, there is nothing hidden behind a paywall, they are working on some nice activitypub integration, actions are really handy (yes it's a bit of yaml soup), codeberg is using and supporting it, a better focus on security and stability than gitea (where it forked from), the ux is clean, and that's about what I can think of off the top of my head.

realbadat ,

Imo, an add.

Creating a bug report or feature request can be done without having to create an account, and the backend tools (including blocking instances) are being completed first.

It's not like it's forced either. You can just run it local and have no federation (once the feature is out of course, right now you wouldn't have it regardless).

realbadat ,

Well this is going in my "basics of networking" presentation.

realbadat ,

If you do find it let me know, I'd love to see it! I really do have about 20 hours of training in networking I give to folks, and since it's literally 20 hours of information, I like to put in fun stuff.

Like a picture of a facemask I added during COVID with "stay at 127.0.0.1, don't 255.255.255.255". Super cheesy but at least it's a mental distraction from information overload haha

realbadat ,

I'm on a plan that predates the plans being effected by the price increase.

My price has been the same for years. That said, the plan I'm on was also because of an issue way, way, way back (like a decade ago), and actually being responded to by someone in the c suite after making a comment on the ordeal, who then handed me off to exec customer service to get my issue addressed.

I doubt anyone is getting that sort of response and result today, but I personally have no reason to change providers - Verizon and AT&T would be just as bad, if not worse. Verizon even tried to charge me for devices I had paid in full (and I was out of contract timing) when I switched to T-Mobile.

realbadat ,

My only thought there is "LOL"

  • Export violations (sanctioned countries)
  • Illegally collected personal information from children
  • Price fixing
  • Wage theft
  • Discrimination
  • Privacy violations
  • Mismanaging peoples 401ks

There are long, long, loooooong lists of violations MS has been caught for. The penalty has always been a fine small enough that it's a cost of doing business.

realbadat ,

I'm aware of them.

Let's look at some of the most historic:

  • NY Presbyterian Hospital - with no real efforts on their end to prevent the violation of thousands of records, they got a whopping fine of.... Under $5 million.
  • AHC - lack of risk analysis, failures in procedures and policies, etc - Just over $5 million.
  • Data breaches - usually around $4-5mil, the worst case being Anthem, about 80 million people effected - $16 million in fines. A record.

Criminal offenses? Yeah, plenty of those - with individuals, usually related to that information then being used for other purposes (scams, theft, etc).

But a company like Microsoft, you're going to have a hard time convincing me it's going to ruin the company. The history of HIPAA violations and their fines tell a very different story.

realbadat ,

Their scheme hatchery department is top notch, I'm sure they are already working on more

realbadat ,

Bigger number sounds better for the ISP.

realbadat ,

For nginx - https://github.com/NginxProxyManager/nginx-proxy-manager/blob/develop/docker/rootfs/etc/nginx/conf.d/include/block-exploits.conf

That's what is enabled when you check that box.

realbadat ,

After you get the basics (others covered that), what I like to do when learning a new language is make a series of simple games.

Things like:

  • Guess the number (user input)
  • Hangman (more complex user input)
  • Pong (even more complex user input, graphics, hit detection, etc)
  • Space invaders (arrays, ways to increase difficulty including qty and speed)

Etc. Good luck and enjoy learning!

realbadat ,

Big L little l.

Big L is the party - and yeah, it's just Republicans in a different T-shirt.

Little l is the ideology, which in many ways matches up with what I think, but to get there you need so many social programs to put people on even ground that we should have but don't. Universal healthcare being only one of so, so, so many.

Edit: And just to add, I think Rand was just a precursor to the Big L Libertarians, and little to nothing to do with the little l. You can have true individual liberty without the protections and support to enable those liberties.

realbadat ,

I think you're missing my point, yes.

Equality in the law, freedom of association, civil liberties, etc., etc. while technically in the US we "have" these freedoms, in reality we do not - we are subject to capitalism with regulatory capture, fines that unfairly punish the poor, so on. I'm on a phone, so I'm not typing out a dissertation.

Probably the best reference would be libertarian socialism or libertarian communism. The right wing Libertarian movement (which is dominant in the US) is really anarchi-capitalism, which is the complete opposite direction of left libertarianism (which is anti-capitalist).

Anyway, yes, there are a variety of ways freedoms are limited by simply being unable to afford things, or even being put into a position where you don't have the time to dedicate to those things. To me, that's fundamentally wrong.

realbadat ,

Solar powered battery banks which keep a few things up and running in my office (glass sliding doors, so I get plenty of light. Also use them to charge my phone and such.

My bike, which I used to ride to the bus to get into work until I went full remote. Has a small solar kit for my lights to stay charged on long rides. It's been a bit due to some joint issues, getting back into it now, but used to do centuries every weekend. Didn't need to it charge to full, whatever trickle worked just to extend it past the 4 or so hours it would do from full, then charge on the battery banks.

Gardening and associated sensors. Working on moving those over to lorawan, right now the updates are a bit spotty even at once every 4 hours updating due to distance.

I've got a bunch of stuff that's running on lightweight chips, like esp8266's and ESP32s, to do things like Bluetooth beaconing, lights (wled), etc.

It'll be a bit, but we are going to need to move to something with a bit more space, so other plans (solar + battery for the whole home, indirect solar water heating, etc) will be on hold for a bit.

realbadat ,

So a few comments...

  • I'm not a fan of Ubuntu server, in part because their distribution of docker through snap can conflict with snap from the docker repo. My preference here is either Debian or Proxmox (debian + great virtualization setup). Mint is good, though I like LMDE (Debian edition) more, in part because I prefer Debian in general.
  • You may want to check out dockge. You do need to have docker running for it, but it's a simple setup, and it has a clean interface for docker compose. Good for getting used to it imo.
  • grub has no part in docker, so it's something else hanging.
  • What are the exact errors when you enter "docker-compose up"?
  • what is in your docker-compose for each of these?
realbadat , (edited )

Iirc, there is a bill up that would change that. Which, surprisingly, has bipartisan support.

Edit: yup, even maga support. Mike Lee thanks AOC for bringing up the issue, and here's the bill.

It looks like the best regulations currently for UVA and UVB would be the EU.

One thing to look out for with the imported stuff is that it's not a counterfeit product. There are a lot of reports about that, including a lot of dermatologists testing them live on video and showing some counterfeits being less than 1% of the claimed effectiveness.

Keep safe in the sun folks!

realbadat ,

The top ingredients which outperform US approved sunscreen ingredients (zinc oxide and
titanium dioxide) are: Tinosorb S, Tinosorb M, Mexoryl SX and Mexoryl XL. No idea which brands, doing some digging around myself.

realbadat ,

Awesome, thanks!

realbadat ,

Pfft, that's only because you write garbage code in rust.

I write garbage code in lots of languages!

realbadat ,

Just run windows in a VM for when you absolutely need it. It's how I can do my job but not be constantly barraged with ads in a start menu.

realbadat ,

I'd second this, if only because it's super easy to run things on and OP explicitly said they don't want to tinker with it. There is a limited list, imo, of buy and forget.

That's said, I personally think a cheap little 4th gen or higher Intel based tiny/mini/micro would do a way better job on the services side, and just store on the NAS.

realbadat ,

First off - loved hunt the wumpus when I was little.

Second, I'd consider what's possible as well - as in mesh network solutions that would apply to a community.

You can get over a gig with a 24ghz point to point for around 50W max draw. For point to multi, you can do something like the prism station for only 10W or a simple AP for less noisy environments. You can then extend with mesh for another 10W max or so.

Its perfectly viable imo to get 100mbit or more on pretty low power. You could get more than 24hrs of backup off a wheelchair battery for even the point to point stuff which will require more power for the long distance transmission.

With a bit more money into equipment, speeds can go even higher, but even at the lower price point you can get quite a bit more than 10mbit with large scale mesh. More than enough for most use cases!

realbadat ,

Ground up, sure, wired becomes an easy solution. Ad-hoc growth though (which is what I would expect to be more likely) wireless becomes advantageous. Running new lines is going to be way more than the couples hundred for an antenna stand and couple hundred to low thousands for gear (distance dependant) if there isn't a pathway already there and usable.

And yeah, the pipe out is the kicker always. That would either need to be a bunch of locations with a solid, but lower speed connection, or a high speed line (with fail over ideally). Which mostly means a shared cost and management.

I'd love to see something like this for a community, though you'd have to have enough folks to get it started.

I remember years ago there was a town/small city, I think in NZ, that started doing fiber distribution to everyone in town. It was optional to light it up, but with distribution like that it was real easy for them to have a singular community wifi solution as folks went around town, and they used (again, iirc) copper on utility poles for distribution to homes where they could, antennas on poles for those further out. That was super exciting to me, especially as a locally run initiative.

I'm hoping to find a community when we next move that has that sort of local drive to get projects done (and also has decent schools for my kids), though still searching on that.

What's a good NAS and server system under CAD$900 (USD$658)?

I am currently using an old laptop (circa 2015) with a 250GB SSD in it, and 4GB of RAM. It runs Fedora 39 Server, and only hosts a Jellyfin instance through Docker right now (though I want to use Nextcloud later too). There is only 15GB of storage left on it, and the CPU is constantly overloaded (due to forced transcoding). I...

realbadat ,

For lots of services that require little CPU and ram, I use tiny/mini/micro PCs, bought used. I get them for anywhere from $100-$400, and usually all I do is drop in an SSD. That includes Linux VMs when I'm testing distros or deployment on a distro, since 32gb ram on the host is more than enough to leave 4-8gb ram to the VM.

For some heavier applications, I also have a 4RU case stacked with drives, which I use as a third NAS (VM with drives passed through), large DBs, etc. Its just a 1700x with 64GB ram, and that's plenty.

For most things (DNS, a few web servers, git, grafana, Prometheus, rev proxies, Jenkins, personal fdroid repo, homepage, etc) I just use the tiny/mini/micro's. Imo, you can't go wrong with those for your services, and a big case with spare parts and lots of drives for your NAS. Especially at the price you mentioned. Just remember you can separate your services easily, so don't focus on getting everything in one spot, you can make your requirements (and cost) go up quickly.

realbadat ,

Agreed, I prefer trunk with native to the vlan for services, each container that the reverse proxy will hit in its own vlan (or multiples for differing sets of services, but I can be excessive).

I'd block any traffic initiated from that vlan to all others, and I'd also only allow the specific ports needed for the services. Then fully open initiated from the general internal vlan.

A bike light that promises to get you seen "5.5 times sooner", plus a hologram-powered smart bike, propeller-powered Seabike + loads more tech news from 3T, Oakley, Continental + more ( road.cc )

We've also got an updated aero bike from 3T, another 3D-printed saddle that weighs just 100g and new lids from Rudy Project to tell you about this week

realbadat ,

I used to bike daily for my commute (to the bus), so I wanted something decent for both clipless and regular shoes. That lead me to Shimano Click'R, which seems to still be available (but only one model left, T421) which does still have reflectors on it. May be worth a look.

SPD, still on my bike today. Whether I keep my bike or go to something new I will personally be keeping those pedals as long as I can.

realbadat ,

Only reason I still have prime is simple - diapers. I save enough on them alone to justify it. But once that's done (another year-ish), I don't think it will be worth it anymore.

And yet, I still don't use prime video. It's just not a good experience, and obviously getting worse. And as I have kids, the management of what I'm ok with them seeing is way easier on JF than prime video.

realbadat ,

Because that would be a 40 minute drive. And there is a BJs... About 1/4 mi away from the Costco.

No, there aren't bulk stores near me.

realbadat ,

I say "no", but for your case and for your mom, I'd agree with what others have said, a standalone library.

BUT! Only the Christian movies. Put them in a library called "The Christerion Collection".

realbadat ,

Tool libraries are libraries, not rentals.

So no, they aren't saying renting is the same thing as a library. They are saying libraries offering more services are a great way for you to save money by not buying a tool you only need once or for a day here and there over the years.

realbadat ,

That's fair, I'd agree the article does a terrible job of differentiating, and a company calling itself a library in it's name doesn't make it a library, just a rental service playing pretend for profit.

realbadat ,

USB Ethernet dongles

That's how I do it, though I put it on my NAS first for safe keeping.

realbadat ,

What are you transferring to/from?

realbadat ,

Got it - yeah the big hit is USB functionality for the external definitely.

Do you have sufficient laptop storage to make it temporary? Maybe even in batches?

realbadat ,

Yeah, if you had the storage I'd say use an Ethernet dongle on the phone, wire up Ethernet on the laptop (as long as it's not a USB 2 dongle that you'd need :) ), transfer over network that way and give yourself some easier transport than wifi....

But in your case, yeah wifi is the right call.

My workflow for reference, I've got a dock that supports 3.2gen2, so I connect my phone up there. I've got 1 gig on the dock, and I copy over to my NAS (4x1gbit in LAG), and with the dock having USB for mice/keyboard use it's easy peasy. Once backed up, new phone to the dock, and go the other way.

Most files are already backed up though, with the NAS and my self hosted services, so it's mostly a single instances backup and not much to copy back.

realbadat , (edited )

Not really the question I was answering, but that's not actually a health connect problem.

Withings had an issue, and the way they were connecting to it, which caused a battery drain.
To be specific, withings health mate was constantly reading health connect data, which caused a massive power drain.

I'm not aware of any other battery issues with health connect other than Withings and their Health Mate app (specifically reading, not writing).

(Edit: why, why would autocorrect change writing to riding? For shame. To me, for not noticing sooner.)

realbadat ,

I've got a polar h10 myself, I know their app still connects to Fit not health connect, but I'm sure they will update.

I actually made an app to make use of health connect with my polar h10 for entirely different purposes, it's really a pretty minor backend change for them to make, so I'm sure Beat will get an update.

realbadat ,

Health connect doesn't set your step count goals, because what it does in the back end (because that's what it is, the back end API) is set a way to read and write that data.

The front end, Google Fit, also connects to health connect on the back end. And the Fit app is not given a shutdown here, just the API it also uses in the back end.

I suspect Google will stop developing Fit, as they kind of already have. However, all these varieties of other apps out there (Fitbit, Withings Health Mate, Samsung Health, MyFitnessPal, etc) can use health connect data, and do allow you to set goals. They use the same data, and now are more interoperable with Health Connect than they were with the Fit API.

realbadat ,

Got it, checking their list of compatible apps...

Worst case you could connect to Strava as a go-between should polar be far behind on health connect (again, doubt they would be).

But checking the coospo compatibility, it seems there are a ton of them that all support health connect with coospo, so you wouldn't be shut out even if health connect wasn't ready for Polar, you'll have a ton of options. Including using polar to sync to something that syncs via health connect.

Which is kind of what I do btw, aside from the app for the completely irregular use case I mentioned, I sync polar to Strava, Strava to Fit via health connect. I do that because fairly often I am using polar while cycling, so that's how I want my data to go. But I then found strength training shares nicely too, and running polar beat and my workout app, I can track all my workout routine items (jefit), which syncs via health connect, and then polar goes to Strava goes to health connect, and it all shows as a single session with great HR data.

So yeah, you'll be fine.

realbadat ,

Lots of people interact with trans folks on a daily basis and have no idea. I'd bet she encountered someone trans at some point in her life and had no idea.

But your point 100% stands and I agree with it

  • All
  • Subscribed
  • Moderated
  • Favorites
  • kbinchat
  • All magazines
    •