18
submitted 5 months ago* (last edited 5 months ago) by shrugal@lemm.ee to c/boostforlemmy@lemmy.world

I have "Show read posts" disabled in the settings, but it just stopped working all of a sudden. Since yesterday I'm seeing read posts again.

I tried toggling the setting, clearing cache and switching instances, but no luck so far.

Anybody else who has this problem? Any idea how to fix it?

Edit: Looks like it's a problem with the new Lemmy version!

11
submitted 5 months ago* (last edited 5 months ago) by shrugal@lemm.ee to c/europe@feddit.de

In this election there won't be any % barrier in some countries, but I still haven't seen any poll numbers for small parties here in Germany for example. Everything below 2-3% gets lumped in with "Others" as usual, even though about 0.5% would already get them a seat in parliament this time. This makes voting strategically very difficult, because we have no idea whether any small party could even get in.

I get that there are limits to what you can show in a graphic, but even the source links I checked didn't provide more details. Why is that, and has anyone seen poll numbers for small parties, particularly for Germany?

24
submitted 6 months ago* (last edited 6 months ago) by shrugal@lemm.ee to c/selfhosted@lemmy.world

Hey everyone,

My personal server of choice is a DiskStation right now, and I'm using the default reverse proxy for all my subdomains. I went through a few stages to secure them, and now that I'm finally finished (famous last words heh?!) I thought I'd document my approach and provide some configs and code. I've seen a few unanswered questions here and there about how to do this on Synology, so hopefully this helps a few people.

The guide covers limiting access to local IPs, as well as adding Basic or SSO authentication. The main goal is to integrate well with the GUI and access control profiles, and to leave all existing and autogenerated files untouched, so updates and changes via the GUI still work as expected.

Here is the basic idea:

The nginx server config is located in /etc/nginx/, and the reverse proxies are defined in the sites-available/server.ReverseProxy.conf file inside that folder. There's one server directive for every proxied site, and the DSM config adds a include .acl.<random string>.conf* directive if you set up an access control profile for a site. That * at the end there is crucial, because it means we can manually add more configuration files with the same prefix, and they will automatically be included and applied to all sites using this access control profile.

There are also include directives for the main and http scopes, as well as for the default DSM server directives. This means we can inject configurations in these places, just by adding correctly named files to the conf.d folder.

For Single Sign-On (SSO) authentication we run a Vouch-Proxy instance to handle the communication between nginx and the OIDC server. We also need to spin up another nginx reverse proxy and forward requests to it, because the built-in one doesn't support the required auth_request directive. Its container script just copies the default reverse proxy configuration with some modifications, and it is set up to reload whenenver the original file changes.

Link

[-] shrugal@lemm.ee 115 points 6 months ago

Here is a more detailed explanation of the exploit.

The Pepaire-Bueno brothers exploited a bug in MEV-boost's code that allowed them to preview the content of blocks before they were officially delivered to validators, according to the indictment.

The brothers created 16 Ethereum validators and targeted three specific traders who operated MEV bots, the indictment said. They used bait transactions to figure out how those bots traded, lured the bots to one of their validators which was validating a new block and basically tricked these bots into proposing certain transactions. [...]

So hardly an attack on any core system of cryptocurrencies.

[-] shrugal@lemm.ee 181 points 6 months ago* (last edited 6 months ago)

It's hard to overstate what a nothing-burger this article really is! Let me break it down:

  • Signal got $3 million from the Open Technology Fund at some point in its development
  • Some anonymous source alleges that the OTF's ultimate goal is to promote US foreign interests
  • The current chairman of the board Katherine Maher worked at the National Democratic Institute and Wikipedia before
  • The same anonymous source says she was recruited because of connections to the OTF
  • She has at some point voiced the opinion that a completely free internet without regulation just reproduces existing power structures, and that balancing regulation and 1st amendment rights is a tough problem
  • Signal doesn't have reproducible builds on iOS (it absolutely does on Android btw)
  • Some people feel like Signal chats come up more often than they should in court cases and media reports

That's it, that's the whole story. That's the reason why the Telegram guy of all people thinks you should be careful, and better use his chat service instead, and the Twitter guy agrees.

I mean, reproducible builds on iOS would be nice, but that platform has much bigger problems from a privacy/security/sovereignty/freedom standpoint anyway. And the rest is just nothing turned up to 11.

[-] shrugal@lemm.ee 297 points 6 months ago* (last edited 6 months ago)

Cause it's one big part of why the Fediverse and Lemmy exist in the first place.

We wouldn't need all this decentralization overhead if centralized sites were trustworthy and focussed on serving their users. The fact that they are not is what leads to privacy violations and enshittification, hence why people created the Fediverse and why we are here (at least most of us I presume).

[-] shrugal@lemm.ee 202 points 8 months ago* (last edited 8 months ago)

Clickbait headline. The underlying article lists much more reasonable restrictions:

  • Anonymous cash payments over €3,000 will be banned in commercial transactions
  • Cash payments over €10,000 will even be completely banned in business transactions
  • Anonymous payments in cryptocurrencies to wallets operated by providers will be prohibited

So non-commercial transations are fine, as are crypto transactions to non-custodial wallets.

[-] shrugal@lemm.ee 169 points 9 months ago* (last edited 9 months ago)

The company said cutting off PWAs was part of an effort to comply with the Digital Markets Act, arguing browsers other than its own Safari software would expose users to security and privacy risks that were not permitted under the law.

They are so full of shit, it's unbelievable! Are they really claiming that their own browser is THE ONLY legal browser there is?!

[-] shrugal@lemm.ee 87 points 9 months ago* (last edited 9 months ago)

Personally I think it's more important to break big-tech's hold on online communication. Every single user who leaves a centralized platform to join the Fediverse is a win in my books! Another thing is that we never had a mainstream decentralized, nonprofit and non-algorithmic social network before afaik, I'm actually not sure if the climate will evolve like it did with the other networks.

[-] shrugal@lemm.ee 109 points 9 months ago* (last edited 9 months ago)

Adding proper metadata to releases. Why are we still trying to decipher release titles, why not add a little metadata JSON file to every release and make the info available to the search API?

Also keeping multiple different versions of a release in Arr apps, like ebook and audiobook in different languages. Right now I'd need 4 Readarr instances to get the English and German audiobook and ebook versions of a book, and don't even think about letting them manage the same root folder!

[-] shrugal@lemm.ee 164 points 9 months ago* (last edited 9 months ago)

Piracy isn't even free! People pay thousands of dollars for hardware, and hundreds per year for electricity and various service providers.

But they actually get what they want for that money: Being able to watch whatever you want, anytime, on any device, in high quality and without ads. It must be really hard for streaming services to compete with features as futuristic as that!

[-] shrugal@lemm.ee 95 points 10 months ago* (last edited 10 months ago)

I've been removing Google services from my life bit by bit over the past year, and I have to say it is crazy how hard it actually is! They have inserted themselves into so many digital workflows, securing monopoly positions and preventing the rise of competitors and open ecosystems. In many areas the only alternatives are other tech giants, or accepting feature downgrades and having to set things up manually.

I'm really glad that the browser is one area where the transition is actually very simple and straightforward!

[-] shrugal@lemm.ee 140 points 11 months ago* (last edited 11 months ago)

Oh come on, we could have lived in a world where the translation layers are called WINE and DINE!

[-] shrugal@lemm.ee 115 points 1 year ago

His firstborn son will take over as Linus II, as is tradition.

22
submitted 1 year ago by shrugal@lemm.ee to c/piracy@lemmy.dbzer0.com

So I know what AC3 means of course, but what does AC3D mean in some releases?

[-] shrugal@lemm.ee 112 points 1 year ago* (last edited 1 year ago)

We have blown the concept of ownership way out of proportion. No one should be able to own things they have absolutely no connection to, like investment firms owning companies they don't work for, houses they don't live in or land they've never been to.

view more: next ›

shrugal

joined 1 year ago