JustEnoughDucks

joined 2 years ago
[–] JustEnoughDucks@feddit.nl 5 points 2 days ago

+1 for forgejo and codeberg

Codeberg also has gadgetbridge, eternity for Lemmy, tenacity (new audacity without tracking), librewolf, kbin, fitotrack, fedilab, flomarkt (Facebook marketplace alternative), and a ton of other activity-pub specific projects on it.

[–] JustEnoughDucks@feddit.nl 8 points 2 days ago

Dropping instead of blocking might technically be better because it wastes a bit more bot time and they see it as "it doesn't exist" rather than an obsticle to try exploits on. Not sure if that is true though.

For me:

  • ssh server only with keys

  • absolutely no ssh forwarding, only available to local network via firewall rules

  • docker socket proxy for everything that needs socket access

  • drop non-used ports, limit IPs for local-only services (e.g. paperless)

  • crowdsec on traefik for the rest (sadly it blocks my VPN IPs also)

  • Authelia over everything that doesn't break the native apps (jellyfin and home assistant are the two that it breaks so far, and HA was very intermittent so I made a separate authelia rule and mobile DNS entry for slightly reduced rules)

  • proper umask rules on all docker directories (or as much as possible)

  • main drive FDE with a separate boot drive with FDE keyfile on a dongle that is removed except for updates and booting to make snatch-and-grabs useless and compromising bootloader impractical

  • full disk encryption with passworded data drives, so even if a smash and grab happens when I leave the dongle in, the sensitive data is still encrypted and the keys aren't in memory (makes a startup script with a password needed, so no automated startups for me)

For more info, I followed a lot of stuff on: https://github.com/imthenachoman/How-To-Secure-A-Linux-Server

[–] JustEnoughDucks@feddit.nl 1 points 6 days ago

I can't get it to work with my Polar H10 so I haven't switched to it from polar beat :(

[–] JustEnoughDucks@feddit.nl 1 points 6 days ago* (last edited 6 days ago) (1 children)

Nothing phone is pretty much not european. It is a technically British company with a swedish/chinese citizen CEO with a history of lying about his company (he started OnePlus in china as a BBK subsidy and tried to lie for years and say they were just a tiny startup) that does almost all of their electronics, mechanical, and software design in China (not just the manufacturing like all other phone companies, but the design and software also, and they don't even do the design, they contract it out to an ODM), with american investors.

The only thing European about it is their sales and marketing teams in London.

That may change in the future as they have some software dev job postings in London (most of their engineering postings are still in China) but we buy products for what they are now, not what they are not even promised to become sometime in the future.

[–] JustEnoughDucks@feddit.nl 2 points 6 days ago* (last edited 6 days ago) (1 children)

Don't worry, a lot of waterfox was developed by an american advertising company

[–] JustEnoughDucks@feddit.nl 4 points 6 days ago

Just learned about Nubo literally 5 minutes ago. I am thinking of checking them out!

[–] JustEnoughDucks@feddit.nl 6 points 1 week ago (1 children)

I have designed multiple things with it.

Definitely not perfect, probably would have a difficult time in a commercial setting, but in the past 5 years has gotten a whole lot better!

It is kind of GIMP right now, I hope it gets to be like Blender as far as user experience.

[–] JustEnoughDucks@feddit.nl 3 points 1 week ago* (last edited 1 week ago)

HealthyPi will be a too option too. Much more fitness focused than pinetime or banglejs

[–] JustEnoughDucks@feddit.nl 2 points 1 week ago (1 children)

Belgium is moving more and more to a much better place just because of regulations anyeay

Solar panels and batteries in a shit ton of homes because of energy prices and older government incentives

10000L rain water tanks because government regulations now require rainwater hookups for future toilers and washing machines plus water is expensive here

Induction stoves to not have to put extraction fans in the kitchen to the outside to boost energy EPC ratings (resale value)

We always have a bunch of potatoes and cans of tomatoes and pasta for fries, mashed potatoes, or different pastas (but maybe that is just my family)

A ton of people would be quite OK for a while here I think.

[–] JustEnoughDucks@feddit.nl 2 points 1 week ago (2 children)

Nice! I am thinking either mailbox.org or posteo. They have IMAP. They support pgp indeed it seems. One of those might be a winner!

[–] JustEnoughDucks@feddit.nl 1 points 1 week ago (1 children)

So then it comes down to whether enough military personnel will have the morals to stand up to fascist orders from the executive branch and disobey them, displaying that they are at odds, or if they will simply obey unlawful, fascist orders to not get prosecuted under the UCMJ.

Also, I would be extremely hesitant to believe that the host of pilots, mechanics, MPs, and logistics did not notice at all women and children being dragged in chains, likely crying, and if on-video behavior is anything to go by, also likely being harassed by ICE handlers and thought there was nothing wrong enough to bring it up to their COs. Cargo is quickly inspected at the very least. And the fact that they didn't have any prior clearance to land at the airport they were going to... They aren't complete idiots...

Sorry, but these things do not happen quietly. That is like saying the train drivers and the people loading them into the cars carrying the Jews only knew they were carrying "personnel, material" and happened to be going to "a labor camp".

view more: next ›