Putting something on GitHub is really inconsequential if you’re making your project open source since anyone can use it for anything anyway,
Except for people in China (blocked in China) or people on ipv6 only networks, since Github hasn’t bothered to support ipv6, cutting out those in countries where ipv4 addresses are scarce.
So yes, it does matter. Both gitlab and codeberg, the two big alternatives, both support ipv6 (idk about them being blocked in china). They also support github logins, so you dob’t even need to make an account.
And it’s not a black or white. Software freedom is a spectrum, not a binary. We should strive to use more open source, decentralized software, while recognizing that many parts are going to be out of our immediate control, like the backbone of the internet or little pieces like proprietary firmware.
So I have been a part of this community for a while and it seems pretty quiet. I know Lemmy is not as big as Reddit so this community will always be much smaller but I kind of miss the activity on r/sysadmin. Infinity for Reddit still works for view only so I have been scrolling though posts on Reddit as some of the stories and...
Sometimes I’ve seen people complain about people using asklemmy for not askreddit style questions, but I actually think that’s ok and I’m in favor of that as it means more discussion, content, and visibility.
Eventually asklemmy will reach “critical mass”, and split into more niche communities.
I guess someone is super happy they saved a few hundreds kilobytes of disk space though.
Yes. All the people basing docker images off if debian, and trying to get them as small as possible. The splitting up of packages, allows people to only pull in what they need.
I find it odd, because debian does this by default, actually. They account for usecases like yours, and instead you have to edit a config file or use a command line flag to get it to not install recommended dependencies.
After months of waiting, I finally got myself an instance with Libre Cloud. I was expecting basic file storage with a few goodies but boy, this is soooo much more. I am amaze by how complete this is!!! Apps let me configure my instance to fit everything I need, my workflow is now crazy fast and I can finally say goodbye to...
Eelco has agreed to step down from the NixOS foundation board. Over the next two weeks, a constitutional assembly will be appointed to draft a constitution to democratically govern Nix/NixOS.
Just like Eelco’s way of governing, it will likely have 0 effect on 99% of people using NixOS,
Flakes not being stabilized, or worked on by Eelco, despite him literally being the inventor absolutely has an effect on every single Nix user. The flakes-nonflakes aplit is part of why the documentation on nix is so poor. Some things only support one or the other, and it’s a pain.
The aux fork of nix (which idk what’s gonna happen to it) said they would stabilize the current implementation of flakes as v0. I hope this new council does the same, because it’s been far too long. So much of the community uses flakes that’s it’s basically official, but it being “experimental” means they can’t be mentioned in official docs, or included by default in the official installer. You have to edit a config file to enable flakes.
The worst part of this all, is that the Determinate Systems nix installer, only comes with flakes and no channels (old way) - and Eelco literally works for Determinate Systems. Despite all of this, flakes are still “experimental”.
I hope things change. Flakes are legitimately better, a minor addition in complexity, in exchange for making it easy to reuse code. And finally having unified documentation and tooling (if flakes become the main way) will probably be the best benefit.
I really hope this council moves flakes put of their “experimental” status. If so, then democracy has spoken: the users want flakes.
What stops companies from having a shell corporation use the code, and then that shell company rents “services” at a very low cost to a large corp?
I’m thinking something of the opposite if what Google does, where Alphabet (““located”” in Ireland) rents the Google logo to Google, allowing Google to say that their revenue is much less than it actually is.
I dunno, some of these are a pretty big deal, in particular:
Gitea repeatedly makes choices that leave Gitea admins exposed to known vulnerabilities during extended periods of time. For instance Gitea spent resources to undergo a SOC2 security audit for its SaaS offering while critical vulnerabilities demanded a new release. Advance notice of security releases is for customers only.
Gitea is developed on github, whereas forgejo is developed on and by codeberg, who use it as their main forge (also mentioned on that page). Someone dogfooding gives me more confidence in the software.
I’ve watched some here and there, but having to try to catch them when they stream has put me too much in the mind of old tv and catching shows when they air. Watching the recording afterward is maybe good for some white noise, but it’s clearly not the intended experience I think.
The comparison isn’t quite right because you can use git with any provider (Github, gitlab, etc), including multiple at once.
On the other hand, snap is hardcoded to only be able to use one store at a time, the snap store. To modify this behaviour, you would have to make changes to the snap client source code.
That only applies to unstable distros. Stable distros, like debian, maintain their own versions of packages.
Debian in particular, only includes security patches and changes in their packages - no new features at all.* This means risk of breakage and incompatibilitu is very low, basically nil.
*exceot for certain packages which aren’t viable to maintain, like Firefox or other browsers.
Anyone have any good external pen testing tools that you’ve used on your self hosted setup? Mine is pretty secure overall but I would like to be able to scan the WAN for vulnerabilities or misconfigurations just to make sure I haven’t missed anything.
It’s more a EULA than an actual license. It prohibits a lot of stuff, and is basically source-available.
You agree not to create any product or service from any par of the Code from this Project, paid or free
There is also:
Sn1perSecurity LLC reserves the right to change the licensing terms at any time, without advance notice. Sn1perSecurity LLC reserves the right to terminate your license at any time.
So yeah. I decided to test it out anyways… but what I see… is not promising.
The two pacman commands are redundant. You only need to run pacman -Syu sn1per --noconfirm once. This also goes against docker best practice, as it creates two layers where only one would be necessary. In addition to that, best practice also includes deleting cache files, which isn’t done here. The final docker image is probably significantly larger than it needs to be.
It’s still building right now. I might edit this post with more info if it’s worth it. I really just want a command-line vulnerability scanner, and sn1per seems to offer that with greenbone/openvas as a backend.
I could modify the dockerfiles with something better, but I don’t know if I’m legally allowed to do so outside of their repo, and I don’t feel comfortable contributing to a repo that’s not FOSS.
This is just straight wrong. iMessage on android has worked by connecting to a remote Mac, which then connects to imessage. The protocol is locked to their hardware.
And, even if there was a true open source reimplimplementation of iMessage, that would say nothing about the security of Apple’s proprietary implementation of the iMessage end to end encryption.
Because some of us have fat fingers and accidentally downvote when we scroll on mobile.
One of the things I liked about reddit was that, since it saved downvoted posts, I could go through the list every once in a while and undownvote the accidents.
Can’t do that here though, and I sometimes notice posts or comments I’ve accidentally downvoted.
Anyway, people shouldn’t care so much, we don’t have a karma system or the like here anyways, so why does it matter?
Hello. I’m looking for a more private (for obicous reasons) and fast discord client for android, since the app is terrible and preforms terribly on my relatively old phone. I can’t change to something like matrix/signal, since I can’t convert other people.
Discord is adding ads soon. Currently, they don’t enforce the TOS violation of custom clients, but maybe after they add ads, they will begin to do so. I would be very careful with any of this.
When syncthing is configured to go both ways (the default), it also syncs any deletions. You can somewhat get around this by something like one way sync, but it’s not really a proper “backup” software.
Personally, I like to treat data synced by syncthing, even between multiple machines, as one copy of the data when I am following the 3-2-1 backup rule*, because syncthing won’t save me from a buggy program deleting all my files or user error, or anything like that.
*See wikipedia for info about the 3-2-1 backup rule.
Why FOSS projects are using proprietary, privacy invasive infrastructure?
cross-posted from: lemmy.ml/post/15691030...
r/sysadmin and the size of this community
So I have been a part of this community for a while and it seems pretty quiet. I know Lemmy is not as big as Reddit so this community will always be much smaller but I kind of miss the activity on r/sysadmin. Infinity for Reddit still works for view only so I have been scrolling though posts on Reddit as some of the stories and...
Debian maintainer unilaterally strips KeepassXC package of a lot of features (fosstodon.org)
Disk imaging
What are we doing for disk imaging theses days?
Nextcloud appreciation post
After months of waiting, I finally got myself an instance with Libre Cloud. I was expecting basic file storage with a few goodies but boy, this is soooo much more. I am amaze by how complete this is!!! Apps let me configure my instance to fit everything I need, my workflow is now crazy fast and I can finally say goodbye to...
NixOS Foundation board: Giving power to the community (discourse.nixos.org)
Eelco has agreed to step down from the NixOS foundation board. Over the next two weeks, a constitutional assembly will be appointed to draft a constitution to democratically govern Nix/NixOS.
Bruce Perens proposes draft Post-Open Zero Cost License (www.theregister.com)
NixOS forked (aux.computer)
hachyderm.io/
Nether Rule (lemmy.ca)
What's the draw of watching/following streamers?
I’ve watched some here and there, but having to try to catch them when they stream has put me too much in the mind of old tv and catching shows when they air. Watching the recording afterward is maybe good for some white noise, but it’s clearly not the intended experience I think.
Ubuntu Snap Hate
I’ve gathered that a lot of people in the nix space seem to dislike snaps but otherwise like Flatpaks, what seems to be the difference here?...
If all kernel bugs are security bugs, how do you keep your Linux safe? (www.zdnet.com)
Self Host Pen Testing
Anyone have any good external pen testing tools that you’ve used on your self hosted setup? Mine is pretty secure overall but I would like to be able to scan the WAN for vulnerabilities or misconfigurations just to make sure I haven’t missed anything.
Elizabeth Warren slammed for wanting to ‘break up Apple’s smartphone monopoly’ (www.bostonherald.com)
Mercedes becomes the first automaker to sell autonomous cars in the U.S. that don't come with a requirement that drivers watch the road (fortune.com)
Opensource/foss Discord frontend
Hello. I’m looking for a more private (for obicous reasons) and fast discord client for android, since the app is terrible and preforms terribly on my relatively old phone. I can’t change to something like matrix/signal, since I can’t convert other people.
Syncthing v1.27.6 (github.com)
Syncthing release v1.27.6...
OpenSUSE has the best installation menu of any OSs ever made (lemmy.ca)
Flying Carpet | Cross-platform AirDrop between Android/iOS/Linux/macOS/Windows via ad hoc WiFi (f-droid.org)
If hot air rises, why is it colder at the top of a mountain?
Any Ways to Block Twitch Ads?
Twitch has gotten insufferable with ads lately. Sometimes I’m getting 3mins straight of ads....
Apple Updates App Store Guidelines to Permit Game Emulators, Website Links in EU Music Apps (www.macrumors.com)
cross-posted from: sopuli.xyz/post/11251495...