I follow your blog from time to time and I appreciate it. Just with your recent posts I realized you have an active Lemmy account.
I was going to continue this comment with “But I don’t get…”, then I stopped and read your blog post again and remembered rule #2.
I think I get what you are trying to say, it’s good that there are some mod tools to help with modding, but they’re not enough, and even if racism isn’t as visible on Lemmy, people targeted by racism still exist and get hurt. So I guess your point is be more proactive than reactive. People don’t get that, and even if they are well intentioned, they think of all the defederating and banning examples as “good enough”.
Early adopters are also overprotective with Lemmy and its small community, especially when a newcomer directly questions “how is racism in this community?”. They found their peaceful corner of the internet (relative to major social media platforms), they know it has its flaws, but since the beginning they had to defend to questions like “who owns the data?”, “what happens with deleted posts / comments”, “is defederatation effective”, “what about that Lemmygrad which is hosted by Lemmy developers”, can mods and admins become too powerful", “how long till this gets the same fate as Reddit”, etc.
I’m not defending the behaviour, just thinking of an explanation. Because frankly, I’m also surprised by the downvotes and backlash you received.
So I guess what I was trying to say is, “Hi Jon! Keep up the good work!”
Please don’t go the RaspberryPi route for serious self-hosting, you’ll regret it later when you’ll realize it’s not powerful enough for ie NextCloud. It can handle PiHole for example (minus digging through the historical logs / stats via its interface), but when adding more and more services (Nextcloud, Jellyfin, a VPN, home automation, etc), it will be easier to expand via VMs (Proxmox) / Docker on a single machine that you need to maintain, you’d have easier snapshot backups, single point for firewall rules, etc, than adding RPIs. Buy a mini server, you’ll have flexibility, room for upgrade, and the costs and power consumption will be justified when scaling to multiple services.
‘no immediate timeline’ toward monetization
Soo, starting tomorrow
I second the idea of a VPN instead of directly exposing devices or software to the internet. Requires more work and learning but it’s more secure. I would argue that well-known VPNs are more scrutinized and pentested than any camera software ever.
A hash has a fixed length, including MD5. There’s no reason to cap password (input) Iength. You can hash the whole bible and still get the same length hash. So either they don’t even hash it, they’re idiots, or they try to be unnecessarily cautious to avoid some other limit / overflow, like POST max size (which would still be counted in at least KB, not several characters). The limit on what special characters you can use is also highly suspicious - that’s not how you deal with injections / escaping your inputs.
Where is Captain Planet?
I’m rebooting my router every week via a crontab because some dynamic dns update process fails from time to time and I find it hanging. No time to debug the actual problem.
Yes I do, and a price increase of only $10 (so $30 vs $20) can make a big difference in sound quality for a pair of headphones for work (meetings and some music off Youtube). So it’s not even about hifi (at that price range, of course not), it’s about giving a shit and do a little research / testing before settling on a slightly better low end consumer product. Or, given a certain budget, maximise the quality for it, again, by doing some research beforehand, no matter what you plan to buy. But, most people are lazy.
When it comes to music, it also depends on a person’s tastes. Ariana Grande sounds the same to me weather played on Sennheiser headphones or a microwave oven.
No, logins should be harder in order to be secure. Hence the addition of 2FA (which is also incompatible with your proposal).
As developers, we strive to make things more secure, not less, and unfortunately, good security always comes with the trade-off of less convenience for the user (larger entropy passwords, session expiration, captchas, etc).
Now, of course, it depends on how sensible the data in that account is. I wouldn’t want this for my email account, for example, or online password manager, which are the entry gates to all my other accounts. The Kagi search engine offers the possibility to login on another device via a session URL which you can copy-paste. And this is fine, if the site / app clearly states the dangers, implemented it securely, tracks and lists the sessions and allows you to invalidate a session for all devices, and you are fine with potentially disclosing the data for that account (forgetting to log out, or disclose the session URL somewhere) - which is not much, as they don’t log the searches, only the daily counts. And their use-case makes sense, people aren’t used to authenticating in order to search something on the internet.
So, this should be an optional feature offering from the website / app, not built-in in the browser which would make it trivial to be abused by anyone.
Well, that’s what you get for hosting on a Windows server. XAMPP / WAMPP should only be used for local development environments. And I’m sure they still have horrible non-production config defaults.
The design is so geeky that I would want one, even though I don’t think I have a use for it.
UntrackMe, doesn’t open an app, but redirects to a chosen Invidious instance. I use farside.link/invidious which chooses a random instance closer to you.
Maybe she thought her airbags would suffice. Sorry, low bar joke, but couldn’t help it. Also, the whole story might be bullshit.
My best friend, the Uber driver, which I prefer to shut up all the way home. But hey, what are friends for, he keeps me hydrated!
I’m not sure what you’re comparing it to. Keepass is free too, in fact it’s open source. In my opinion, local software and database that is under your control is always superior to cloud.
Keepass over Bitwarden offers a lot of plugins and integrations, again, if you want more customization or automation.
But, I would say you can use any online password manager as long as it’s end to end encrypted, so Bitwarden is a good choice.
Jesus, what a bunch of needless “security”. They’re tickets to a concert, ffs. This is all for personal data mining.
Hmm. Interesting extension. But for me, not being a heavy Youtube consumer, think I prefer to see the original title and clickbait thumbnail so I can avoid the over-the-top clickbaity stuff easier and not waste my time or give them bastards a view.
Yeah, missed opportunity that would have actually been useful at the time.