clmbmb

@clmbmb@lemmy.dbzer0.com

I’m on fosstodon

This profile is from a federated server and may be incomplete. Browse more on the original instance.

clmbmb,

So, no grindcore concerts? Oh, wait! There weren’t any anyway! Fuck dictators, fuck authoritarianism!

Reproducing a Microsoft corporate environment on Linux.

Most companies I’ve worked at where employees had a Microsoft work computers. They were under heavy control, even with admin privileges. I was wondering, for a corporate environment, how employees’Linux desktops could be kept under control in a similar way. What would be an open source or Linux based alternative to the...

clmbmb,

I hate zscaler. At my company it’s set up so that it proxies all traffic through it and comes with its own CA certificates, which breaks a lot of things - I can’t install pip packages for python, I can’t clone/work with git repos if they’re on https only. We are used to temporarily disable it to do these things because corporate won’t change the policies.

clmbmb,

!Linux will help you for sure.

clmbmb,

yeah… this is stupid!

clmbmb,

Even if they do, I would run away from any service/app that would open to them. And so should everyone!

clmbmb,

I haven’t had battery usage issues with it for years! Just checked now and it’s below 0.4% - it doesn’t even show up in the main app list in the battery settings.

clmbmb,

it’s probably not what you want

What do you mean?

clmbmb,

Thanks for the great explanation.

So, currently, as I said, I’m using nginx proxy manager and do this:

  • reverse proxy to all my services inside the internal network on http: *arr stuff, rss reader, jellyfin and some other minor things. All of them use name.local.home notation. I’m using a local DNS for this, of course.
  • reverse proxy to just two services externally on https under wildcard certificates - both are non-standard names and the names are not related to the services themselves. For both these services I use Authelia with 2FA, so even if an attacker guesses the subdomain name, they’ll have to bypass that. As far as I can see in my logs, there are no attempts to breach my services. This is what I want to replicate and I’m planning on testing it.

On the other hand, You gave me a good idea about using *.lab.domain.com getting resolved by the local DNS and the main *.domain.com by my public DNS. I’ll give this a try too in the near future. Another plan for me is to start using Authentik, as I saw it’s a bit better than Authelia in some areas, even though it may be overkill for a little project - I’ll have to see.

clmbmb,

It’s not slow as in slow to respond. it’s slow when restarting… sometimes it takes 3-4 minutes until it’s up and I don’t have time for that ;-) Also, it’s a good “reason” for me to learn traefik.

clmbmb,

If they’re used to Windows, then KDE Plasma would be the better option IMO. If you feel it’s too slow on an old laptop, then you can try Cinnamon or XFCE.

clmbmb,

For docker, you have to create /etc/docker/daemon.json and set:


<span style="color:#323232;">{
</span><span style="color:#323232;">  "data-root": "/docker"
</span><span style="color:#323232;">}
</span>

You can move your /var/lib/docker while the daemon is stopped. I had no issues when I did the move.

I don’t know how to change this for podman.

LE: ahelpme.com/…/change-the-location-of-container-st…

clmbmb,

Like western paintings depicted Jesus as a white man with (sometimes) blond hair.

Meta gave Netflix and Spotify access to users private messages (arstechnica.com)

in 2018, Facebook told Vox that it doesn’t use private messages for ad targeting. But a few months later, The New York Times, citing “hundreds of pages of Facebook documents,” reported that Facebook “gave Netflix and Spotify the ability to read Facebook users’ private messages.”...

clmbmb,

No. That doesn’t eliminate the need to use a phone number! It’s just ‘hidden’.

clmbmb,

Slackware in 1998, installed from DOS with a series of diskettes. Then Debian, Red Hat Linux (not Enterprise!)… and so on.

clmbmb,

What are you, a communist giving bibles away for free?

How can I bypass CGNAT by using a VPS with a public IPv4 address?

I want to move away from Cloudflare tunnels, so I rented a cheap VPS from Hetzner and tried to follow this guide. Unfortunately, the WireGuard setup didn’t work. I’m trying to forward all traffic from the VPS to my homeserver and vice versa. Are there any other ways to solve this issue?...

clmbmb,

This looks really interesting. I’ll check it these days.

You may be offered a free premium Telegram subscription – but please don’t accept (archive.is)

Telegram is giving away FREE Premium subscriptions! All they need from you is to use your cell phone as a relay to text out their OTP codes! And the recipient of the OTP sees your phone number! What could POSSIBLY go wrong with this deal?...

clmbmb,

XMPP is an old protocol. GTalk (google talk) and Whatsapp used it, then extended it, then didn’t give back to the community. So here we are…

The problem with alternative protocols and apps and whatnot is that people are reluctant to change and won’t try anything new if only 2-3 other people use that protocol/service. I can’t even convince my best friends to use Signal, let alone XMPP.

clmbmb,

As other people have commented: why would GTK be so important? A terminal should be a bare window, without any decoration. At least that’s what I use: first setting I check in a terminal is “disable window title” or something like that.

How do I set a default app in Android (12+) other than the option provided? (lemmy.world)

I use a Pixel 6 Pro with Android 14 installed, and I cannot use Proton Mail instead of Gmail for email links. Whenever I click Proton Mail, Gmail is still the top option the next time I open the same email link. I don’t want to reset app preferences, as I have too many notification and app usage settings set for my apps. Is...

clmbmb,

did you try what other people said, namely going to Gmail app info (depends on your lancher/settings layout) > Set as default > Open supported links (toggle to disable)?

clmbmb,

It’s still a server. A file server in this case.

clmbmb,

Piracy is not breaking the law. Fuck capitalism!

clmbmb,

#!/usr/bin/env bash

This is the way!

clmbmb,

#!/usr/bin/env will look in PATH for bash, and bash is not always in /bin, particularly on non-Linux systems. For example, on OpenBSD it’s in /usr/local/bin, as it’s an optional package.

If you are sure bash is in /bin and this won’t change, there’s no harm in putting it directly in your shebang.

clmbmb,

Have you heard of women? Or maybe teenagers with not-so-large hands?

  • All
  • Subscribed
  • Moderated
  • Favorites
  • megavids
  • rosin
  • Durango
  • osvaldo12
  • khanakhh
  • mdbf
  • DreamBathrooms
  • ngwrru68w68
  • magazineikmin
  • thenastyranch
  • cubers
  • Youngstown
  • slotface
  • kavyap
  • JUstTest
  • GTA5RPClips
  • anitta
  • tacticalgear
  • modclub
  • ethstaker
  • cisconetworking
  • InstantRegret
  • everett
  • provamag3
  • normalnudes
  • Leos
  • tester
  • lostlight
  • All magazines
    •