BearOfaTime

BearOfaTime, 8 hours ago

Static IP address and Dynamic DNS can expose your network to attackers on the internet. With Holesail, you expose only the port you choose.

Er, wut? If you’re exposing a port, then your public IP is being used, as a port is a subset of an IP interface. So even Holesail uses the public IP in some way…thats how the internet works. Unless they’re only making outbound connections, which isn’t a new idea at all - Hamachi was doing it 20 years ago.

This sounds like FUD to me - of course your public IP is used, whether static or dynamic. How do they supposedly mitigate this risk?

There’s nothing on the home page saying how it works, or how it’s different than current solutions.

I’m intrigued to see a new tool in this space, but this one is starting off leaving a bad taste. Even Tailscale admits they use Wireguard, and even have a comparison between Wireguard and Tailscale that’s pretty honest (though they focus on what Tailscale adds).

Being open and transparent is a minimum today - anything less and it’s not worth the time for a second look.

BearOfaTime, 2 days ago

Apparently, old-fashioned spark radios can disrupt comms for consumer drones. There are kits for people who are interested in learning about early radio tech.

I’ve not verified this myself.

BearOfaTime, 2 days ago

Wtf are you talking about?

BearOfaTime, 2 days ago

Someone manufactures anti-drone shells for shotguns. No idea how they’re supposed to work (of if they do), just thought it was interesting.

BearOfaTime, 3 days ago

Hit the selfhosted community, this is an on-going conversation there with pretty much every note taking app being discussed.

As an aside, while OneNote is proprietary, if you use the full app it doesn’t require OneDrive. If you only use it on a PC, it can sync locally with other PCs - I’ve used it this way for 15 years.

BearOfaTime, 4 days ago

Started?

BearOfaTime, 7 days ago

Sadly it happens in publicly-funded institutions too. Chasing grants requires “novel” research. And everyone needs to be noticed (I have friends working in both spaces).

Then there’s the whole problem of most published research not being reproduceable, and the massive amount of garbage getting published. Peer review is a joke. Seems like actual reproduction by multiple independent researchers should be a requirement for publication these days.

Like you said, an accelerated (or openly condoned) version of what’s happening in the US.

BearOfaTime, 10 days ago

I watch at most 1 video a week. It’s not hard.

BearOfaTime, 11 days ago

I do.

All data is replicated 3x locally, with one cloud. backup.

Having all data in one physical location makes for a single failure point.

BearOfaTime, 11 days ago

I mean, he’s an XO on the lead ship, I wouldn’t expect his musical abilities to be fantastic.

In that kind of environment, you plays with whos you can get. What matters more is willingness to commit, despite being middling and not having lots of time free. I’d expect that band to have rotating members on any given week based on who’s free.

Its not like they have the Starfleet Orchestra on board, just like professional military bands don’t generally go cruising on a warship - that’s mot their MOS.

Keep in mind the writers could’ve written him as a virtuoso (they could’ve dubbed a pro playing), but that would change the character and environment. It seems we’re supposed to see him as a “middling” player, who just enjoys it to the best of his ability, and was never going to be a pro.

And to quote others - practice time would interfere with his bangin’ time. A man’s gotta choose.

BearOfaTime, 9 days ago

Hahahahaha fine, dammit, take my upvote.

BearOfaTime, 11 days ago

I’ve found some thumb drives don’t like to boot.

Ventoy has worked for almost everything. Proxmox doesn’t like it.

BearOfaTime, 11 days ago

Ventoy kicks ass for a multi-boot drive. Just drop the ISO on the drive and Ventoy sees it. Slick

BearOfaTime, 9 days ago

Hahahaha, sorry to hear (but I empathize). I can be a cheap bastard, so I have some shitty thumb drives around. I figure they eventually die anyway, so this stuff isn’t permanent.

I keep a folder on my server with the tools and noted to rebuild each one. Sometimes I even make an image with the tools, and only leave the ISOs out.

BearOfaTime, 11 days ago

This doesn’t address the app itself, have you tried using a browser like Native Alpha which can make a web page function like an app?

I know it’s not the same as an app, but I find it often works well enough for me. Plus you get the benefit of not having any of the app’s nonsense, like all the broadcast receivers they’ll register for (screen on, so the damn thing runs all the time), or how such apps like to track things.

BearOfaTime, 9 days ago

Hahahaha, so we’re gonna Inception this then? Use two browser windows? 😆

Ffs, sms as 2FA is some dumb shit. For a bank no less. 🤦🏼‍♂️

BearOfaTime, 15 days ago

In the 90’s telcos were exposed as providing a connection for feds to duplicate any and all comms.

BearOfaTime, 16 days ago (edited 16 days ago)

They do?

I dunno, maybe ask the person that says they hate it?

Your title is a sophist argument tactic called “begging the question”.

BearOfaTime, 16 days ago

They tell you why right on their website. They dev for Pixels because it’s a stable platform with a predictable future.

If you’re not going to listen to the devs, I don’t know what to say.

BearOfaTime, 16 days ago

Are those cookies related to websites within that container or to websites in another container?

BearOfaTime, 23 days ago

NT (and therefore all Windows versions today) always had multi-user security. It’s essentially a ported version of DEC Alpha.

On install, the first user is admin, just like the first Linux account is root, or else you wouldn’t be able configure the machine.

Windows architecture built on DOS (3.x, 95,etc) lacked any such security, and was developed as a single-user OS (goes back to DOS86).

BearOfaTime, 23 days ago

Get Win10 LTSC. It gets updates 2x/year, has very minimal bloat.

Then get O&O Shutup to reduce bloat even more.

And you can permanently license it using Microsoft’s own scripts.

Scripts on Gituub.

BearOfaTime, 22 days ago

Nice, thanks for the alternative!

I like the option for scripting it.

BearOfaTime, 22 days ago

No idea.

I’ve never cared about such things for home systems - I never use MS support, and I think updates are over emphasized for stability and security, as that ignores the other layers that are required.

If a system runs, does what I need it to do, I’m uninterested in making changes that run the risk of causing issues (for example, I have containers for things like Syncthing that don’t get auto updates - I need to know that it works the same all the time, as it keeps mobile devices syncing their data to home, which gets backed up). I check updates 2x/year, and manually update if I feel it’s useful (sometimes updates aren’t available for all systems, which can break things).

All my systems are properly secured, behind multiple layers of security (physical firewall, isolated vlans, VPN, with encryption enabled wherever it’s available, etc), I run in limited user accounts, my admin accounts aren’t obvious, with proper complex passwords, everything is encrypted, properly replicated and backed up.

My next phase is adding 2FA even for my home servers.

BearOfaTime, 25 days ago (edited 24 days ago)

I would generally agree, though I’ve found extra virgin can work if you keep the temp just high enough to sear.

I pretty much only use olive oil, but I keep a couple others around in case I do need to crank the heat.

The challenge is most oils that tolerate heat also have a very poor Omega 3:Omega 6 ratio, so are not great from an insulin standpoint (nor health in general).

Grape seed oil handles temp well, and is at least better than corn oil or canola if I remember right.

Lol the down voter… Hey buddy, come cook in my house, where there’s 60+ years of combined experience, with over 300 recipes, and we make 2 new recipes every month.

BearOfaTime, 25 days ago

Two shows to watch:

Good Eats

America’s Test Kitchen (especially the old shows, they delve into the how’s and why’s of everything).

For anyone just learning to cook, the ATK show and especially their cookbook are fantastic. You can find the cookbook all over for about $20, and every recipe explains how and why it works.

BearOfaTime, 24 days ago

Did he? I’ll have to go look.

I pretty much never do reverse sear, or even sear-then-oven as it’s only needed for thick steaks (1" or more), and well, that’s an expensive cut so I rarely have it.

I find for thinner cuts it’ll cook through to medium-rare in the time it takes to sear.

BearOfaTime, 25 days ago

Sounds like he doesn’t want to spend his time tinkering, but playing.

Can’t blame him.

If he wants Windows, why are you questioning what he wants to do with his computer? He’s had enough of playing fuck-fuck with Linux. (Mind, I work with Linux all day, every day, it’s the cat’s meow for dedicated services like Proxmox, TrueNAS, containers, etc).

Go get Win10 LTSC. It gets updates 2x/year, has very minimal bloat.

Then get O&O Shutup to reduce bloat even more.

And you can permanently license it using Microsoft’s own scripts.

Scripts on Gituub.

BearOfaTime, 25 days ago

Lol, nice. And accurate.

People keep pushing Linux everything.

I run Linux as Proxmox, VM’s, containers, etc. Great stuff.

I have Mint on a laptop… What an awful experience. It’s tremendously better than it was in 2000, but holy cow the issues and incompatibilities.

Right up front two major issues with Linux:

1. No standard UI - it’s different on every system
2. No standard tools - you can’t rely on the same tools being on every machine

BearOfaTime, 25 days ago

Except OP’s friend doesn’t want to run Linux

BearOfaTime, 25 days ago

Logitech wireless mice don’t work on Linux until you find out someone wrote an app you can install to make them work.

My brand new Logitech mouse works on Windows 95 on first plugin.

Don’t tell me mice work fine on Linux. It doesn’t even natively support the most common mouse there is.

BearOfaTime, 25 days ago

Ghost Fucker?

BearOfaTime, 27 days ago

Lol.

ThinkPads have drainage channels and protective layers inside

BearOfaTime, 29 days ago

“Devil’s Elevator” hahahaha, have an upvote

BearOfaTime, 1 month ago

Imagine using a custom, bloated mess that most vendors put on devices, with garbage that runs in the background that can’t be disabled or removed without breaking something.

BearOfaTime, 1 month ago

Pixel is hard to beat. You can get a 5 for about $170. Run Lineage, DivestOS, or Graphene.

BearOfaTime, 1 month ago (edited 1 month ago)

Best buy dates are meaningless hype to get you to use more.

I keep eggs for months. Average time in my fridge, 1-3 months. Eggs can always be scrambled, then frozen. Texture changes, but can be used in less sensitive dishes - I wouldn’t make a cake with them.

That said - Dutch Baby. Chef John’s version on Food Wishes works perfectly. It’s like breakfast dessert, though nutritionally much better because of the eggs.

Re: Best buy dates. For decades I’ve done “informal testing” (forgot about stuff) and have learned most things last far beyond their sell by/best buy date. (I put dates on everything I buy - restaurant inventory management lesson).

I currently have numerous intentional tests going - dozens of cans of different dates, chips, crackers, cookies, boxed meals (cake mixes, hamburger helper, pasta, Mac n cheese, etc.). Pasta lasts forever. As does pasta sauce in a jar or can.

Chips: will last upward of 2 years past sell by date. Oils go rancid eventually from oxygen exposure (I suspect a bag develops a leak).

Cookies:similar

Crackers: these seem to oxidize faster than chips (the oils go rancid, safe to eat just taste bad). I suspect it’s because crackers aren’t sealed as well as chips.

Peanut Butter: 4 years, no problem.

Canned drinks: 3 years average. Cans are very thin, develop pinhole leaks (especially acidic drinks - cola).

Bottled drinks: indefinitely. Anything in jars will generally last as long as canned goods (technically they’re canned too).

Canned goods are indefinite, except acidic things like tomatoes. Over time the acid will degrade the lining, then the can. Though I’ve gone past two years with tomatoes, and no problems yet.

Of course, all this is stored in a cool, dry, dark location (no sunlight, lights are OK, just keep them off). Anything under 75f is OK, the cooler the better.

BearOfaTime, 1 month ago

There are canned goods over 100 years old (salvaged from shipwrecks) that get tested occasionally. Still safe to eat (even if maybe you wouldn’t want to).

BearOfaTime, 1 month ago

Have you heard of capital letters and punctuation?

That’s too hard to read.

BearOfaTime, 1 month ago

Not enough safety pins or silver buttons to be hot topic. Or black

BearOfaTime, 1 month ago

Just observe any politician, pundit, etc.

Their objective isn’t the discovery of truth or common ground, but to achieve particular goals through argumentation… aka Sophistry.

BearOfaTime, 1 month ago

Threat modeling is hard.

Just like anything, that beginning step to assess where you are, and where you want to go, is critical.

Frankly my threat model is way too ambiguous…and I’m trying. I can’t imagine trying to convince non-tech folks they need a threat model assessment and then walk them through it, design a plan to improve their security/privacy.

Hmm, well, sounds like I just described a consultancy.

BearOfaTime, 1 month ago

Yes, please link your guide.

This is a major barrier to helping others.

I’ve run rooted since 2010 because it’s my device, there’s things I want to do, and now run Lineage/DivestOS or Graphene. But I can’t recommend that to friends/family, of course.

I’ve tried to improve a non-rooted phone, but damn if it isn’t a real PITA.

BearOfaTime, 1 month ago

Excellent - thanks!

BearOfaTime, 1 month ago

1. What’s your network performance look like? 100mbit? Gigabit?
2. External drives are terribly slow, USB doesn’t have great throughout. Also they’re unreliable, do you have backups? I’d look into making those drives internal (SATA) which has much better throughput. I use one external drive on USB3 for duplication, and it’s noticeably slower on file transfers, like 40%.
3. For remote access to your files, look into Tailscale. You run it on your laptop and server (or any compatible device in your network), and it provides a virtual mesh network that functions like a LAN between devices.
4. Syncthing is great, but it just keeps files in, entire folders of them. So if space is tight on the laptop, it won’t really help, not easily anyway.
5. Resilio Sync has Selective Sync, where it can index a folder and store that index on any device participating in that sync job. Then you can select which files to sync at any time.

BearOfaTime, 1 month ago

The VPN is to give you access to your files from anywhere, since you don’t have the storage capacity on your laptop for all of them.

If you have an encrypted connection to home, laptop storage isn’t a concern.

As a benefit, this also solves the risk of losing files that are only on the laptop, by keeping the at home.

Yea, Syncthing has it’s moments (and uses - I keep hundreds of gigs between 5 phones and 5 laptops/desktops in sync with it).

Resilio does use the bittorrent protocol, but uses keys and authorization for shares. Give it a try, it may address your need to access files remotely. I use it to access my media (about 2TB) which clearly can’t be sync’d to my laptop (or phone). I can grab any file, at any time.

BearOfaTime, 1 month ago

Oh shit, I didn’t realize they have a Windows app!

I’ve used it for years on Android, this is fantastic. Wish I could upvote you 10 times. I’d prefer open source, but this at least solves my problem.

Thunderbird is just, bad. It works, and is probably the least bad out there.

Edit: Shit, it’s an MS Store app. Uggh. Hate that garbage.

BearOfaTime, 1 month ago

Group Policy.

Enterprises can’t allow such external accesses/data for security and compliance issues (depending on the industry).

Via GP, all that can be disabled.