Skip Navigation
switching to Linux because Windows ui are so boring (KDE is love KDE is life, I want to marry KDE)
  • The amount of times I've tabbed in and out of WoW in front of my friends just to flex that not only it doesn't crash, but it's fancy too. Or just give the game a little shake and wobble to mess around while it's loading.

  • [email protected]: Is it possible to duplicate a tab without reloading it, like actually make a copy of it?
  • Not safely. For simple sites, probably, but anything remotely complex and the JavaScript would be impossible to deal with.

    Lets say the tab has a websocket open, and you clone the tab. What happens to that websocket connection? OpenGL contexts when you're running a game? Both at the same time because it's a browser MMO? CSRF tokens? Any sort of ID that got generated as a message you were typing?

    There's no way this can be done without causing things to break in some way. The next best thing is to load it anew, and hopefully 100% cache hit on that.

    Good websites duplicate in the blink of an eye because it's 100% cache hit. Crappy websites take seconds to load with a warm cache.

  • switching to Linux because Windows ui are so boring (KDE is love KDE is life, I want to marry KDE)
  • Part of why I switched to Linux was this:

    Not that it's particularly pretty or usable, but like, the fact you can was just amazing. You can really do whatever you want with Linux.

  • Yeah um...what future...
  • Kbin is not currently maintained due to the guy that makes it having personal issues and not having time to keep up with it. Some instances are even defederating kbin due to spam not being cleaned up and also some bugs sending the same activities over and over again.

    No spam on my end on Lemmy.

  • How you all prevent Password/OTP/TOTP deadlocks?
  • Yeah similar setup except I use NextCloud.

    KeepassDX is great, can use it with just about anything too. I used it over sftp for a bit. It'll happily do Google Drive, OneDrive, DropBox and just about anything that implements the right content providers.

    Going through the provider is nice, it gives NextCloud an opportunity to sync it before it hands it over to KeepassXC, and knows when it gets saved too so it can sync it immediately. I don't think I've had merge conflicts since, and I still have my offline copy just in case.

    The annoying part is when you've added a password on one side and cleaned up a bunch of passwords on the other side. When they get merged, it doesn't merge what changed it merges the databases together so your cleanup is gone. It's safe at least, and exceedingly rare.

  • Repairing bad sectors in an external drive
  • That's not looking good, usually on a bad sector the drive will write it to a spare sector transparently and mark it as bad internally. That means they've probably all already been used up.

    smartctl should work just fine over USB, unless your USB adapter for the drive is really bad. Make sure you're using sudo as well. Worst comes to worst, try using it in a different computer.

    Your next goal would be to get it to do a full self test with smartctl. A low level format might help clear some bad state and it might be okay afterwards with a fresh format accounting for whatever defect it built up over time.

    I wouldn't recommend it. It might work for a bit and then just die completely.

  • Repairing bad sectors in an external drive
  • ddrescue, it's made for that. It'll retry many times, and try to extract as much of the data as it can.

  • How you all prevent Password/OTP/TOTP deadlocks?
  • Backup codes. You're supposed to print them out and put it in a fire safe or something. They're longer and not time based and valid until you rotate them. With those you can lose everything and still access your accounts.

    My KeePass database is also synchronized locally on most of my devices, so even if my server is dead I'm not really locked out, I just have annoying merge conflicts to resolve.

    Also, Yubikeys. They're nice. If whatever blackout destroys your Yubikey, you have much worse problems to worry about than checking your email.

  • People that lived in walk up apartments *with no elevator*, did you like it?
  • When you live in a city generally the pattern changes. You don't take the car and go do your biweekly costco trip and come back with 20 bags of groceries. You get like 1-4 at a time, and go more often.

    A lot of the time just going out anywhere, you can fit a quick grocery stop on your way home so you come back with maybe 5 items. It's perfectly reasonable to leave work, grab a quick steak at the butcher, some veggies at the store, and you get home with fresh food to cook. Or even go back out because you forgot an item.

    City life is just a whole lifestyle. It gets you in shape, and you just don't think that much about having an elevator to go to the second floor.

  • People that lived in walk up apartments *with no elevator*, did you like it?
  • Third floor ain't that bad as long as you don't exceed your carrying capacity. Going up 3 floors by stairs isn't much compared to the ~10 minutes of walking back from the store. Really not that bad with a bag each hand.

    It starts getting much with places with > 4 floors but that's pretty rare without an elevator. You waste more time waiting for the elevator than actually going up anyway when you're on floor < 3.

  • Can you live without YouTube ?
  • I've been on it for way too long to know, but when I added my wife to my family plan she commented on the immediate increase in suggestion quality. Although it could also just be less junk/ads in the front page, I don't think it's advertised as a feature.

  • Can you live without YouTube ?
  • Especially with the Premium algorithm, it's just so good at finding super niche stuff that's pretty interesting. Been watching some Netflix shaming levels of documentaries made by super passionate people.

    I kind of hate the privacy nightmare but it actually delivers really well for me.

  • Randar: A Minecraft exploit that uses LLL lattice reduction to crack server RNG and reveal player coordinates
  • The exploits that comes out of 2b2t are always super impressive. Nocom was also a wild one.

  • I have selected Fish to be my login shell, I'm afraid to log out :(
  • It's been my login shell for close to a decade probably. Works just fine. It's really not that important.

    Unless you log in to a text tty specifically, you don't really need a shell to launch a graphical session. The display manager can directly launch the compositor and everything. Modern systems typically open a logind session through pam_systemd which also sets up your user systemd. It does all the session tracking. It would be a nightmare to use the user's shell and then try to get it to run a command to start the GUI, and lots of weird things could happen like interactive prompts and whatnot. We do way fancier things than a shell typically does, like cgroups and stuff.

  • [Question] If I selfhost a privacy frontend on cloud, wouldn't the original service get my server IP and track back to me?
  • Seems like a decent start! My recommendation is pick something you'll actually use, so you actually want to keep that VPS going, if for you that's silver bullet then have fun!

    NextCloud is relatively easy to get going and useful for sharing files. I find it convenient combined with KeePass/KeePassDX so my passwords are synchronized are nice and safe although I'm considering an upgrade to BitWarden.

    Matrix is also reasonably easy to set up and you can set up bridges to just about anything.

    I also have my own emails but that's a special kind of hell for beginning with loads of things entirely out of your control.

  • The might be a dumb question but... if I enable IP forwarding/routing on my Linux machine without any firewall enabled...
  • Yeah, it'll forward anything that makes its way. Although it doesn't mean you can just proxy anyway through it. If it's on the public Internet for example, sure it would theoretically forward to range, but you need a packet addressed to to somehow make it to your box in the first place, which you can't do as each hop makes an independent routing decision.

    Neighbours on a cloud VPS are definitely the most likely to be able to exploit this, assuming you have a private IP on a shared network somehow and they let you talk to other VMs directly via their private IP. Making a virtual network just for the customer's VMs is incredibly cheap, and most cloud providers either have you make a virtual network or they just come with a default one that's still all yours, so this is less and less common unless you're on some super old VPS host that did it the lazy way. But even if you're literally on a friend's Proxmox, it's trivial to set up a dedicated virtual network. Even VirtualBox lets you easily make virtual networks.

    I'd still set up the firewall though, even if it's just a -A FORWARD -i eth2 -j DROP to explicitly disallow forwarding from the publicly exposed interface, if you really want to blindly trust and forward to internal VPNs and VMs and containers and whatnot you have going that you want to enable forwarding for. But it's really not that hard to set up basic sanity rules like, don't forward traffic coming from the public interface to anywhere.

    Things like firewalld or ufw can help you with firewall stuff.

  • [Question] If I selfhost a privacy frontend on cloud, wouldn't the original service get my server IP and track back to me?
  • Depends what it does.

    Lets say you run a Reddit/Twitter/YouTube proxy. Yeah, the services ultimately still get your server's IP, but you will just appear as coming from some datacenter somewhere, so while they can know it's your traffic, they can't track you on the client side frontend and see that you were at home (and where your home is), then you went on mobile data and then ended on a guest WiFi, then at some corporate place. The server is obfuscating all of that. And you control the server, so your server isn't tracking anything.

    The key to those services being more private is actually to have more people using them. Lets say now you have 10 people using your Invidious instance. It'll fudge your watch pattern a fair bit, but also any watched video could be from any of the 10 users. If they don't detect that, they've made a completely bogus profile that's the combination of you and your 10 users.

    You can always add an extra layer and make it go through a VPN or Tor, but if you care that much you should already always be on a VPN anyway. But it does have the convenience that you can use it privately even without a VPN.

    A concrete example. I run my own Lemmy server. It's extremely public but yet, I find it more private that Reddit would. By having my own server, all of my client-side actions are between me and my server. Reddit on the other hand can absolutely log and see every interaction I have with their site, especially now that they've killed third-party apps. It knows every thread I open, it can track a lot of my attention. It knows if I'm skimming through comments or actually reading, everything. In contract, the fediverse doesn't know what I actually read: my server collects everything regardless. On the other hand, all my data including votes is totally public, so I gain privacy in a way but lose some the other way.

    Privacy is a tradeoff. Sometimes you're willing to give away some information to protect other.

    For selfhosting as a whole, sure some things are just frontends and don't give you much like an Invidious instance, but others can be really good. NextCloud for example, I know my files are entirely in my control and get a similar experience to using Google Drive: I can browse my stuff from anywhere and access my files. I have my own email, so nobody can look at my emails and give me ads based on what newsletter I get.

    It doesn't have to be perfect, if it's an improvement and gets you into selfhosting more stuff down the line, it's worth it.

  • KDE Neon using tmpfs for /tmp seems like an horrible idea?
  • It's default since systemd afaik. I think systemd-tmpfiles manages this. It's never been a problem for me, it pretty much remains fairly empty most of the time. Most things like sockets are in /run which is also tmpfs.

  • Broadcom throws VMware customers on perpetual licenses a lifeline
  • The ad I got there is hilarious in context:

    Caught in a VM vendor storm?

  • [Bug] Viewing a comment (eg. from Inbox) doesn't have a "view parent" option

    It only shows "view all comments", so you can't see the full context of the comment tree.

    [Feature Request] Sharing and copying links should let you copy a local instance link as well

    The current behaviour is correct, as the remote instance is the canonical source, but being able to copy/share a link to your home instance would be nice as well.

    Use case: maybe the comment is coming from an instance that is down, or one that you don't necessarily want to link to.

    If the user has more than one account, being able to select which would be nice as well, so maybe a submenu or per account or a global setting.

    Max_P Max-P

    Just some Internet guy

    He/him/them πŸ³οΈβ€πŸŒˆ

    Posts 2
    Comments 979