maynarkh

maynarkh, 1 year ago

Haven’t used apt in a while, is it not atomic? What happens if you mess with it?

maynarkh, 1 year ago

Doing a PPL and I’m already considering getting at least a scooter. Easy and fast transport to the bumfuck nowhere area of the airport we fly from, I need to go regularly but never take any pax.

It just works.

maynarkh, 1 year ago

Most people don’t live in the US and don’t know or care about US military abbreviations.

maynarkh, 1 year ago

We could go an have a piss-fight between the warcrimes of Russia and the warcrimes of Israel.

The US can be the bad guy in one conflict while be on the good side on another. Imperialism is bad, whether it’s Russia or the US doing it.

Also, Hamas are war criminals as well. No good guys fighting there ATM.

maynarkh, 1 year ago

Commerce deals with the distribution of value, production with the creation of it. So let’s say there is a widget factory. If one person “owns” it and thousands work to make widgets, their production is stolen through ownership, which causes deeper issues beyond the obvious as well.

Commerce doesn’t cause problems as it’s just resolving a situation of swapping the widgets you made for carrots. Barring some market-twisting forces like the stock market for example, a simple free market where you’re happy with the amount of carrots you get for the amount of widgets you get is fine.

The evil of capitalism is not that you can trade. The evil of capitalism is that you go to work, and receive a fraction of the product of your work while someone else who does not work at all receives a lot of it.

Technically the current capitalist western system would be socialist, if employment without ownership would be outlawed, and coops were the enforced norm.

maynarkh, 1 year ago

The USSR totally knew about climate change being a thing. Climate change is not a “new thing”. Oil companies have known about it for almost a century now, they built their oil rigs to withstand rising sea levels for example.

The USSR did know about it as well, at least since the sixties: www.gla.ac.uk/media/Media_329370_smxx.pdf

Fedorov’s article appears to be one of the earliest direct engagements with the problems associated with climate change and, more specifically, anthropogenic climate change in the Soviet Union. However, this theme received more concerted discussion and debate from the early 1960s. Two meetings of particular note took place in Leningrad in April 1961 and June 1962, both of which were organised by the Main Geophysical Observatory in tandem with the Institute of Applied Geophysics and the Institute of Geography and brought together a range of Soviet scientists, including geographers, in order to discuss the ‘problem of the transformation of the climate’ (see Gal’tsov, 1961; Gal’tsov and Cheplygina, 1962).

maynarkh, 1 year ago

Not all socialists are tankies.

maynarkh, 1 year ago

I have no idea about how that industry works, but I guess piracy is not really driving stuff out of business elsewhere either.

Most people don’t pirate. If piracy could drive companies out of business, gaming would be dead, especially indie gaming.

maynarkh, 1 year ago

To be frank, I think the victims of the epidemic of loneliness that plagues our society is nothing to look down upon.

maynarkh, 1 year ago

You could send that in a HTTP header, with the stipulation that the server responding would accept the terms.

maynarkh, 1 year ago

Well, I’m one of today’s lucky 10000 I guess. Thanks!

maynarkh, 1 year ago

I’m just leaving a comment here because if there is a positive answer to this, I also want to know. I think we’re just hosed as far as cars go.

maynarkh, 1 year ago

There was a dev from there saying they wanted, but then realized cities would look like shit like that.

Go figure.

maynarkh, 1 year ago

it’s on those applications to support wayland, not the other way around.

Again, I’m not too knowledgeable about this, but isn’t XWayland a reasonable stopgap for this issue?

maynarkh, 1 year ago

Red Hat kills X11

I mean Red Hat does bad things, but is switching to Wayland a bad thing?

maynarkh, 1 year ago

The thing is that Israel is currently engaging in genocide, and claims to be doing it in the name of Jews everywhere. The same way anti-Muslim sentiment increased in response to Muslim terrorism, antisemitism rises when people use that religion as a justification for killing people.

Just to be clear, the current wave of antisemitism is not justified, it’s a bad eye-for-an-eye thought process, but people are stupid and people are outraged with the genocide Israel is doing. It’s the same line of thought as ACAB; if local Jewish communities also condemn genocide, why are they not publicly and harshly denouncing Israel for it?

In order for this not to happen, Israel would either have to stop claiming to be the representative of Jewish people worldwide, or stop engaging in genocide.

maynarkh, 1 year ago

Isn’t that a massive fire hazard apart from being bad for the environment?

maynarkh, 1 year ago

The ones who invent these are in the war business, sorry.

maynarkh, 1 year ago

One of the bigger communist instances, like Lemmygrad.

They are infamous half because they are a big instance with a shared fringe worldview that is anathems to liberal democracy, so when something pops up in their feed, cultures clash.

The other half is that at least some of their users do like to use alts to “agitate” which is mostly trolling.

maynarkh, 1 year ago

Look, this is a large puzzle you’re trying to solve all at once. I’ll try to answer at least some of it. I’d advise you take these things step by step. DM me if you need some more help, I may have time to help you figure things out.

I paid for and installed mullvad (app) but it crashes a lot (for over a minute every 20 seconds), so it looks like I need to configure something like gluetun to do it instead.

Check the error logs and see what’s wrong with it instead. How is it crashing? Did you check stdout and stderr (use docker attach or check the compose logs)?

If I want to watch them on my TV I need to connect something to my TV that talks to the raspberry pi, so I have an NVIDIA shield with Jellyfin installed on it - but in order for the NVIDIA-Jellyfin to connect to the RaspberryPi-Jellyfin it needs to go through the internet (if this is not the case, how does one point the NVIDIA-Jellyfin at the Raspberry Pi jellyfin?)

Technically not. You can use the Jellyfin web UI to stream directly from the RPi. You may need the shield if the RPi does not have enough resources for streaming, but I’d try it out first. Try to get the IP the Raspberry is listening on on your local network and put that in a web browser on a computer first. IF you get the web UI and can watch stuff, then try a web browser on your TV, or cast your computer to the TV or something. As long as you have a web browser you should be fine.

First of all, is that all correct or have I misunderstood something?

You should look a bit into how the internet, DNS and IP addresses work on the public internet and private networks. You can absolutely set it up so that traffic from your local network hitting your domain never leaves your home, while if you try the same from somewhere else, you get an encrypted connection to your home. You’re a bit all over the place with these terms so it’s hard to give you a straight answer.

How does mysubdomain.mydomain.com know it’s me and not some random or bot?

If the question is whether how the domain routes to your IP, look up how DNS works. If you are asking how to make sure you can access your domain while others can’t look up the topic of authentication (basically anything from a username/password to a VPN and network rules).

How do I tell Cloudflare to switch from web:443 to local:443 (assuming I’ve understood this correctly)

If I remember correctly, Cloudflare forwards HTTP/S traffic only, so don’t worry about the ports, that’s all it will do. About the domains, you need to have a fixed public IP address for that, and you have to give Cloudflare by setting a DNS A record for an IPv4 address and/or an AAAA record for an IPv6 address.

So something like this: A myhost.mydomain.com 123.234.312.45

Is this step “port forwarding” or “opening ports” or “exposing ports” or either or both?

Nope. Port forwarding is making sure that your router knows what machine should answer when something on the Internet comes knocking. So if the RPi port 8096 is “forwarded” to the router, then if something from the internet connects to the router’s 8096 port, it will get to your RPi instead of something else. Opening ports has to deal with firewalls. Firewalls drop all connections on all ports that are not open, for security reasons. By opening a port you are telling the firewall what entities outside your device can connect to a service like Jellyfin listening on that port. Exposing ports is Docker terminology, it is the same as port forwarding except instead of “moving” a port from your machine to your router you “move” a port from a container to your machine.

If my browser when accessing mysubdomain.mydomain.com is always going to port 80/443, does it need to be told it’s going to talk to cloudflare - if so how? - and does cloudflare need to be told it’s going to talk to NGINX on my local machine - if so how?

The DNS server you are hosting the domain from will propagate that info through the DNS network. Look up how DNS works for more info. If your domain is managed by Cloudflare, it should “just work”. Cloudflare knows it talks to your router by you setting up a DNS record in their UI that points to your router, where your RPi’s port should be forwarded, which directs traffic to your RPi, on which your NGINX should be listening and directing traffic to your services.

How do I tell NGINX to switch from local:443 to local:8096 (assuming I’ve understood this correctly)

Look up NGINX virtual servers and config file syntax. You need to configure a virtual server listening on 443 with a proxy_pass block to 8096.

Is there a difference between an SSL cert and a public and private key - are they three things, two things or one thing?

Yes, SSL certs are the “public keys” of an X509 pair, while what you know as “public and private keys” are RSA or ED25519 key pairs. The former is usually used to make sure that the server you are accessing is indeed who it claims to be and not a fake copy, it’s what drives HTTPS and the little lock icon in your browser. RSA or ED25519 keys are used for authentication as in instead of a username and password, you give a public key to a service, then you can use a private key to encrypt a message to auth yourself. One service you might know that it uses it is SSH.

Doesn’t a VPN add an extra step of fuckery to this and how do I tell the VPN to allow all this traffic switching without blocking it and without showing the world what I’m doing?

A VPN like Mullvad is used for your outgoing traffic. All traffic is encrypted, the reason you want a VPN is not so that others can’t see your messages, it’s so that your ISP and the other people forwarding your messages don’t know who you’re talking to (they’ll only know you’re talking to your VPN), and so that the people you’re talking to don’t know who you are (they are talking to your VPN). You need this so your ISP doesn’t see you going to pirate sites, and so that other pirates, and copyright trolls acting as pirates don’t know who you are when you talk to them and exchange files using torrents.

Gluetun just looks like a text document to me (compose.yml) - how do I know it’s actually protecting me?

I don’t know shit about Gluetun, sorry.

From nginxproxymanager.com : "Add port forwarding for port 80 and 443 to the server hosting this project. I assume this means to tell NGINX that traffic is coming in on port 80 and 443 and it should take that traffic and send it to 8096 (Jellyfin) and 5000 (ombi) - but how?

Again, look up virtual servers in NGINX configuration. You need a virtual server listening on 80 and 443 proxying traffic to 8096 and 5000, separating on hostnames I guess.

Also from that site: “Configure your domain name details to point to your home, either with a static ip or a service like DuckDNS or Amazon Route53” - I assume this is what Cloudflare is for instead of Duck or Amazon? I also assume it means "tell Cloudflare to take traffic on port 80 and 443 and send it to NGINX’s 80 and 443 as per the previous bullet) - but how?

Add a DNS A record.

maynarkh, 1 year ago

Would this let me do something like SSH to a bastion host, elevate privs with sudo, and SSH forward from there, then elevate privs again on the final target I’m trying to get to? Maybe do that on 100 servers at the same time?

Back a half decade, I and my team of DBAs would have killed for something like that.

Sorry if I’m the “can it do this weird and unnecessary thing” guy, but it really looks like a dream come true if it’s what I think it is

maynarkh, 1 year ago

You’re right it should work like that, but I remember trying it, and it didn’t because of some weird security policy.

It is a very good tip though.

maynarkh, 1 year ago

3 day special military operation.

maynarkh, 1 year ago

An extreme (and hilarious) example of the power of hypertargeting was featured in AdWeek last year, when a marketing pro targeted his roommate with ads so specific the poor guy thought he was being cyberstalked.

Yeah, it’s hilarious, not at all depressing. I’m laughing all the way to a fascist dictatorship.

maynarkh, 1 year ago

It’s a shitty Newsweek headline, is it 1700 planes or 1700 flights? The PLAAF does not even have 1700 planes I think.

In either case, this is worrying. One more reason Ukraine must be successful in its defence, to show that military expansionism is not a viable ideology today.