matcha_addict

joined 1 year ago
[–] matcha_addict@lemy.lol 1 points 3 hours ago (2 children)

Which communities? I personally find most of my favorite communities to be better in lemmy than on Reddit, with a few exceptions.

[–] matcha_addict@lemy.lol 3 points 10 hours ago

Unfortunately the US doesn't "lose money" on military conquests. Military spending is a central pillar of US economy. The more of it there is, the better for them. It is why they push for eternal war, and no it's not because of oil, that is secondary.

[–] matcha_addict@lemy.lol 1 points 10 hours ago (1 children)

Does Podman work well when you have multiple rootless containers that you want to communicate securely in a least-privilege configuration (each container only has access to what it needs)? That is the one thing I couldn't figure out how to do well with Podman.

[–] matcha_addict@lemy.lol 1 points 11 hours ago (2 children)

That has never happened to me. May I ask which instance you signed up on? I'm curious to try signing up there myself

[–] matcha_addict@lemy.lol 2 points 11 hours ago

Your complaint is about an unknown instance admin committing a maintenance mistake. Will bluesky's promised federation protect against that? You could join an instance managed by a well funded public entity if you want something that gets close to VC-funding. (which aren't that reliable either. Look how many of these start-up platforms go away)

[–] matcha_addict@lemy.lol 0 points 12 hours ago* (last edited 12 hours ago) (4 children)

What exactly breaks?

[–] matcha_addict@lemy.lol 4 points 14 hours ago (2 children)

Because most people don't exactly want a community-led social platform that respects you and empowers user freedom, even if some say they do.

Bluesky is promising a Twitter-like experience. They promote their ties to the former Twitter, and promise algorithms, dopamine-inducing "reach" and "engagement", paid subscriptions, some degree of centralized control (primarily of the network's infrastructure), and a for-profit VC-funded company, all under the guise of federation. They claim a mastodon-like brand that they are yet to deliver.

[–] matcha_addict@lemy.lol 1 points 3 days ago (1 children)

And you can choose a different instance on ActivityPub.

[–] matcha_addict@lemy.lol 12 points 4 days ago (1 children)

I think what you mean is abandoning self hosting right? Because self hosting Bitwarden would have similar issues if you don't take the initiative to update.

[–] matcha_addict@lemy.lol 1 points 4 days ago (3 children)

You are misrepresenting it. You would still run into this issue. Moderation being separate doesn't mean it doesn't exist. You will still not be able to follow someone your friends follow because your moderation service banned then.

[–] matcha_addict@lemy.lol 1 points 4 days ago (5 children)

Better than no one having the ability to follow that person because a centrally controlled social media banned them.

 

What are your predictions for his Trump's presidency will go?

Overall, I believe we will see a continuation of the trends from 2017-2020, but an increase or intensification of said trends due to Trump's experience in presidency and increased confident position.

  • increased deregulation and cutting funding to regulatory bodies across the board
  • federal workforce reduction
  • immigration workforce reduction, reviving the spike in the backlog of pending immigration cases
  • dramatic increase in tariffs. This has many implications, most importantly negative impact on domestic consumers, increase in consumer prices, but also economic war with certain players like China, and causing economic suffering to certain partners such as Mexico.
  • Ukraine: this one is hard to predict, as trump is unpredictable on those. There's a good chance trump will push zelensky towards accepting a peace deal with Russia, but equally likely that he will up US' involvement in Ukraine (contrary to what Trump claims)
  • Israel / Palestine: Biden admin was the first to show the kind of hesitant rhetoric we see today towards supporting Israel. Trump will reverse this trend, and we will go back to standard neocon Israel supporting. He will likely push for Israel to take over the west bank as a convoluted effort for "peace".
  • interest rates: I am less certain of this, but there's a decent chance that trump pushes interest rates lower to catalyze short term economic growth
  • job market: if interest rates drop, we will see a short term rally for the job market, especially in big tech. Long term ramifications are tough to predict
  • border security: my unpopular / controversial opinion is that trump and biden admins are very similar on this. Although public sentiment about the border issues will likely shift, I do not expect a significant material change or major departure from biden policy.
  • Healthcare: Trump didn't make any big moves in 2017-2020. I cannot forecast anything here.
  • Abortion issues: with Republicans likely securing Congress, a federal abortion regulation is possible but not certain. Support for some type of regulation is near unanimous among Republicans, but some oppose the degree. Trump himself has flip flopped on whether a federal ban is necessary. I expect that there will be some regulation, albeit limited.

What are your predictions and thoughts?

 

Hi programmers,

I work from two computers: a desktop and laptop. I often interrupt my work on one computer and continue on the other, where I don't have access to uncommitted progress on the first computer. Frustrating!

Potential solution: using git to auto save progress.

I'm posting this to get feedback. Maybe I'm missing something and this is over complicated?

Here is how it could work:

Creating and managing the separate branch

Alias git commands (such as git checkout), such that I am always on a branch called "[branch]-autosave" where [branch] is the branch I intend to be on, and the autosave branch always branches from it. If the branch doesn't exist, it is always created.

handling commits

Whenever I commit, the auto save branch would be squashed and merged with the underlying branch.

autosave functionality

I use neovim as my editor, but this could work for other editors.

I will write an editor hook that will always pull the latest from the autosave branch before opening a file.

Another hook will always commit and push to origin upon the file being saved from the editor.

This way, when I get on any of my devices, it will sync the changes pushed from the other device automatically.

Please share your thoughts.

 

I am sure it was discussed here before, but I can't find a good way to search this community.

Are there any arguments against having a user's identity federate, and be compatible across platforms?

For example, let us say I sign up with my instance, matcha_addict@lemy.lol

But what if I go on mastodon, and I want to have my own micro blog. Or maybe go to write freely and post some blog posts. I'd have to make a different account on each one.

What if mastodon or write freely could just let me log in with my lemmy account (or lets call it federated account). This has several benefits:

  • users don't have to scratch their head on if I am the same person or not across these platforms
  • theoretically, someone following my feed can get updates on what I do on multiple platforms

Now I understand this would be difficult to implement and iron out all the edge cases, but am I missing anything on why it wouldn't be a desirable feature, given it is implemented?

 

From a practical sense, ActivityPub may be the obvious choice as it gives easier interop with the largest federated platforms.

But what else? There are existing platforms built on these protocols, such as movim for xmpp, and another for matrix I forget.

From a technical standpoint, are there any major pros and cons?

 

I heard often about activityPub being challenging to implement.

Now I know part of this is because, if you are building on activityPub, you want interop with existing platforms such as mastodon, and they do their own thing.

But ignoring that aspect, what is so hard about activityPub? What could have been done better?

I am a software developer, so feel free to use software dev concepts and terms when explaining. Thanks!

 

Lemmy developers have said there are no near plans for allowing users to follow mastodon or other activityPub networks, so I'm considering another platform that can do this.

It looks like mbin, Piefed and FediLab have the ability to do this. Has anyone tried them and have a comparison?

I also heard it may be possible to do from just mastodon-like platforms. Anyone tried this?

 

I know they're quite different technically. But practically, what does ActivityPub unlock that was not previously possible with RSS and basic web tech stack?

I think I have an idea of the answer. RSS may provide a way for users to "subscribe" to content from a feed, equivalent of following and putting it in a unified feed.

But it does not have a way for users to interact with the poster, like comments or likes. This may be possible with a basic web stack though, but either users will have to make accounts on every person's site, or the site has to accept no user auth. (but this could be resolved with a identity provider standard, like disqus does)

I suppose another thing activityPub does is distribute content to multiple servers. Not sure if this is really desirable though?

Anyways, did I miss anything?

 

I recently learned about nsjail, a utility to sandbox applications or provide workload isolation.

It seems to be lighter weight than firejail and possibly better suited for server applications.

Has anyone used this? What's your experience with it? I'm curious about using it for my web server applications as an additional layer of Dr hotty.

 

Is there any fediverse client out there (mobile or pc or web) that has support for multiple types of content, rather than just for one?

Most apps I find are only mastodon-like (including pleroma etc.), or only lemmy-like, or only peertube-like. One of the main benefits of the fediverse is that I could theoretically access all of those from one platform. But the clients I saw don't seem to support it too well.

 

Is there any fediverse client out there (mobile or pc or web) that has support for multiple types of content, rather than just for one?

Most apps I find are only mastodon-like (including pleroma etc.), or only lemmy-like, or only peertube-like. One of the main benefits of the fediverse is that I could theoretically access all of those from one platform. But the clients I saw don't seem to support it too well.

 

Hi all,

I found a hobby in trying to secure my Linux server, maybe even beyond reasonable means.

Currently, my system is heavily locked down with user permissions. Every file has a group owner, and every server application has its own user. Each user will only have access to files it is explicitly added to.

My server is only accessible from LAN or VPN (though I've been interested in hosting publicly accessible stuff). I have TLS certs for most everything they can use it (albeit they're self signed certs, which some people don't like), and ssh is only via ssh keys that are passphrase protected.

What are some suggestions for things I can do to further improve my security? It doesn't have to be super useful, as this is also fun for me.

Some things in mind:

  • 2 factor auth for SSH (and maybe all shell sessions if I can)
  • look into firejail, nsjail, etc.
  • look into access control lists
  • network namespace and vlan to prevent server applications from accessing the internal network when they don't need to
  • considering containerization, but so far, I find it not worth foregoing the benefits I get of a single package manager for the entire server

Other questions:

  • Is there a way for me to be "notified" if shell access of any form is gained by someone? Or somehow block all shell access that is not 2FA'd?
  • my system currently secures files on the device. But all applications can see all process PIDs. Do I need to protect against this?

threat model

  • attacker gains shell access
  • attacker influences server application to perform unauthorized actions
  • not in my threat model: physical access
 

The telegram app has a very nice interface, but I want to use a self hosted xmpp chat server.

Is there maybe a fork of telegram that makes it work with a self hosted xmpp server? I would imagine that this is possible.

If not, is there anything that at least gets close to how nice telegram UI is?

view more: next ›