1122

French immigrants are eating our pets!

30

tl;dr - If a project has been forked or is a fork, you can bruteforce short commit id to see commits from other projects. It doesn't matter if those projects were deleted or made private.

32
submitted 4 months ago by vsis@feddit.cl to c/selfhosted@lemmy.world

I want a centralized way to manage keys and secrets. And some service users with little privileges over a subset of the secrets. Ideally, a service user only should be able to read its own subset of secrets. So, let's say, if a container gets pwned it will only read its secrets and no more. It should be FOSS and self-hostable.

And a beautiful nice-to-have feature would be access log, to know who read what and when.

My only experience with something similar is Hashicorp Vault, but I don't want to be near any Hashicorp stuff ever again.

Do you know a FOSS alternative to Vault?

[-] vsis@feddit.cl 71 points 6 months ago

“Have taken up farming.”

[-] vsis@feddit.cl 72 points 7 months ago

You are not gonna block the most popular man in the Fediverse, are you?

424
submitted 7 months ago by vsis@feddit.cl to c/lemmyshitpost@lemmy.world
[-] vsis@feddit.cl 94 points 7 months ago

Hey, ChatGPT, my uncle says new Macbooks are just glorified Raspberry Pis.

How many MB/s are in a Raspberry Pi?

35
submitted 8 months ago by vsis@feddit.cl to c/linux@lemmy.ml

My laptop is working just fine. It's from 2018 and it has an NVME drive.

It has an EFI boot partition and other partition with LUKS and LVM on top of that.

Since this week I see these logs from time to time:

Mar 07 17:31:14 almendra kernel: pcieport 0000:00:1d.6: PCIe Bus Error: severity=Corrected, type=Physical Layer, (Receiver ID)
Mar 07 17:31:14 almendra kernel: pcieport 0000:00:1d.6:   device [8086:34b6] error status/mask=00000001/00002000
Mar 07 17:31:14 almendra kernel: pcieport 0000:00:1d.6:    [ 0] RxErr                  (First)
Mar 07 17:31:14 almendra kernel: pcieport 0000:00:1d.6: AER:   Error of this Agent is reported first
Mar 07 17:31:14 almendra kernel: nvme 0000:02:00.0: PCIe Bus Error: severity=Corrected, type=Physical Layer, (Receiver ID)
Mar 07 17:31:14 almendra kernel: nvme 0000:02:00.0:   device [8086:0975] error status/mask=00000001/00002000
Mar 07 17:31:14 almendra kernel: nvme 0000:02:00.0:    [ 0] RxErr                  (First)

The devices are:

$ lspci -vv | grep 1d.6
00:1d.6 PCI bridge: Intel Corporation Device 34b6 (rev 30) (prog-if 00 [Normal decode])

$ lspci -vv | grep 02:00.0
02:00.0 Non-Volatile memory controller: Intel Corporation Optane NVME SSD H10 with Solid State Storage [Teton Glacier] (prog-if 02 [NVM Express])

The laptop works like always, but I have the impression that the NVME drive is telling me something bad.

It happens from time to time:

$ journalctl --since yesterday | grep -c "nvme 0000:02:00.0: PCIe Bus Error: severity=Corrected, type=Physical"
9

Do you know what does it mean?

[-] vsis@feddit.cl 70 points 8 months ago

Rich stupid guy doing things is not technology. Why is this community flooded with this guy doing or saying things?

35
submitted 9 months ago* (last edited 9 months ago) by vsis@feddit.cl to c/selfhosted@lemmy.world

Hello. Let's say I want to selfhost an email server (smtp + imap) that only will be used to receive email.

I only will send email internally (from my domain to my domain) and receive from 3rd parties.

Should I setup DKIM, DMARC, SPF and reverse IP lookup?

To be honest, I'm having a bit of hard time understanding the madness of email authentication. So I can't figure it out by myself if those mechanisms are needed in my case.

I haven't deployed anything, but probably will use Stalwart. It looks like it's easy to deploy. Is there any other beginner-friendly email service I should read about?

Thanks!

[-] vsis@feddit.cl 66 points 10 months ago

I also assume it's an expired certificate.

See, this is what happens when certificates are not renewed automatically.

The article says the projectos are discontinued. That's probably the reason no one is monitoring these certs.

Another glorious benefit of DRM.

[-] vsis@feddit.cl 135 points 11 months ago

Arcaeologisis: They were close friends. Roomates.

[-] vsis@feddit.cl 130 points 11 months ago

For the sake of the Fuck!

** rides into battle

1098
submitted 11 months ago by vsis@feddit.cl to c/lemmyshitpost@lemmy.world
[-] vsis@feddit.cl 83 points 1 year ago

There are two kind of programming languages:

  1. The ones everyone complaints about
  2. The ones nobody uses.
[-] vsis@feddit.cl 68 points 1 year ago

...until the central committee decides that more coal miners are required.

[-] vsis@feddit.cl 86 points 1 year ago

So it can be extracted again. True carbon neutrality.

813
submitted 1 year ago* (last edited 1 year ago) by vsis@feddit.cl to c/memes@lemmy.ml

edit: Don't do this. Embrace modernity and don't pollute the soil.

[-] vsis@feddit.cl 113 points 1 year ago

Kubernetes is useful if you have gone full cattle over pets. And that is very uncommon in home setups. If you only own one or two small machines you cannot destroy infra easily in a "cattle" way, and the bloatware that comes with Kubernetes doesn't help you neither.

In homelabs and home servers the pros of Kubernetes are not very useful: high availability, auto-scaling, gitops integrations, etc: Why would you need autoscaling and HA for a SFTP used only by you? Instead you write a docker-compose.yml and call it a day.

19
submitted 1 year ago by vsis@feddit.cl to c/privacy@lemmy.ml

cross-posted from: https://feddit.cl/post/366747

I was reading this issue from LibreWolf project when I read that some of new GitLab users were asking to give credit card information.

I had no idea this was a thing. According to the forum it's a measure to avoid bots to use free CI workers time to mine shitcoins.

53
submitted 1 year ago by vsis@feddit.cl to c/technology@lemmy.world

I was reading this issue from LibreWolf project when I read that some of new GitLab users were asking to give credit card information.

I had no idea this was a thing. According to the forum it's a measure to avoid bots to use free CI workers time to mine shitcoins.

[-] vsis@feddit.cl 67 points 1 year ago

middle aged would be around 36.

I didn't come here to be insulted.

1

Is it insecure to upload Keepass database to Google Drive, Dropbox or any other file service in the cloud?

I've read this answer in Security Stackexchange: https://security.stackexchange.com/a/45337

So, I feel kinda confident if a put a big number of PBKDF2 iterations, like 10.000.000, it should be OK.

My master password is based on diceware, but is not very very long because I need to remember it.

What do you people think about this?

3

YMDK Air40 with DSA keycaps.

I'm trying to not use mouse, but the keyboard instead. So mouse movement, scroll and clicks are mapped in keys in a convenient layer.

It took me like a week to get used to ortholinear arrangement. But I've never type really fast in my life anyways.

I'm definitely not faster, but my writs stay more relaxed and are almost always still.

view more: next ›

vsis

joined 1 year ago