They let you "reclaim"/"melt" things you bought before. I think this is an attempt to make a few rich people that are $30k or so in "complete their collection", and then probably repeat that year after year every time they release an updated pack.
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the...
Realistically, there is only a trivial pure security difference between logging in directly to root vs sudo set up to allow unrestricted NOPASS access to specific users: the attacker might not know the correct username when trying to brute force. That doesn't matter in the slightest unless you have password auth enabled with trivial passwords.
But there is a difference in the ability to audit what happened after the fact if you have any kind of service storing system logs remotely or in a tamper-proof way. If there's more than one admin user on a service, that is very very important. Knowing where the compromise happened is absolutely essential to make things safe.
If there's only ever going to be one administrative user (personal machine), logging in directly as root for manual administrative tasks is fine: you already know who the user is. If there's any chance there might be more administrative users later (small but growing business), you should consider doing it right from the start.
Well, my recommendations for anything semi-automated would be Ansible and Fabric/Invoke. Fabric is also a Python tool (though it's only used on the controlling side, unlike Ansible), so if that's a no-go, I'm afraid I don't have much to offer.
Iโm not sure if this is the best community to post in, but I just bought a used computer and slotted in an RX480 as the GPU. I installed KDE Neon 5.27 on it, and it worked flawlessly for 2 days....
The RAID1 seems to be failing according to that screenshot. That breaks the "Local File Systems" task and since quite a lot of things tend to depend on that, many things usually end up failing in an annoying cascade failure. It's also failing with a timeout instead of a strict error, which is odd.
Either way, I'd try commenting that line for /mnt/raid in /etc/fstab for now and seeing if that makes the system boot. It's possible that journalctl -u dev-md0.service or systemctl status dev-md0.service might tell you more, but it's 50/50 if it'll be anything useful.
You're most likely booted, otherwise you might need a live USB. Hopefully, the system isn't in read-only mode. What I'd recommend doing is:
cp /etc/fstab /etc/fstab.backup
To make a copy once. Then, nano /etc/fstab to run nano, a basic CLI editor. You can use the arrow keys to navigate and type freely in it. The hints like ^O shown on the bottom mean ctrl+o.
You'd use the arrow keys to go down to the line that probably says /dev/md0 /mnt/raid morecrap, put a # in front of it, press ctrl+w then enter to save. If that worked, ctrl+x to exit and try a reboot again.
Obviously can't promise this is "the" error preventing the system from booting, but it's generally a good idea to disable broken stuff like this to get the system working again, then fix it from there. Hopefully, this does the trick. Your RAID setup will not be activated on reboot after you do this but it's not going to permanently delete data or anything.
No, it comes together with a CLA being required to contribute. In other words, Canonical (and only Canonical) is still allowed to sell exceptions to the AGPL.
Not that high. Spotify uses some pretty tight compression (not good, just tight); most users get 96-128kbit/s AAC, premium can go a bit higher if opted in. That works out to about 16KB/s or 58MB/hour, assuming nothing's cached.
Bandwidth pricing very much goes down with scale, not up. But even the non-committed AWS pricing at Spotify's scale is 2 to 3 cents/GB. You end up paying way less than that with any kind of commitment and AWS isn't the cheapest around to begin with.
You can hardcode a specific version of nixpkgs, instead of a branch. With the new Nix CLI & flakes enabled you can do something like this:
nix run "github:NixOS/nixpkgs/b4372c4924d9182034066c823df76d6eaf1f4ec4#cowsay" "moo mooooooo"
That's the commit I'm seeing for nixos-23.11 today, and it should still give you that exact version of cowsay years from now.
Of course, the better option is to make a dev shell with flakes. Flakes come with a lockfile builtin that accomplishes the same effect, and there's no problems having different projects on different lockfiles/versions. It's a bit more work to learn, the Zero to Nix tutorials are pretty decent at teaching and come with examples though (ultimately most things are ~30 lines of boilerplate and a list of packages that you want).
And they're also deleting/deleted all classic Minecraft accounts from before that. They invented an incredibly weird and needlessly obtuse process to extend the migration deadline by 3 months (true final deadline is now mid December 2023), but that's seemingly it. Everyone not paying too much attention to their email just gets $30 worth of game deleted because of a completely arbitrary decision.
A biggie you miss is the toolchain: the compiler/binutils/linux-headers/libc/libstdc++ combination. The libc and usually libstdc++ are key components of any install. The other parts usually don't make it to non-dev-desktops, but the distro couldn't be made without them, so they're virtually always available as packages.
Only exception is if the entire distro is cross-compiled or it's made exclusively for containers, but those kinds of special distros break every rule imaginable anyway. Some might not even ship a bootloader or a Linux kernel by themselves.
Don't bother "securing" directories like that. The meaningful permission bit is the write permission on the directory holding the file. cat ~/.bashrc > ~/.bashrc.new; put-malware-in ~/.bashrc.new; rm -f ~/.bashrc; mv ~/.bashrc.new ~/.bashrc or the like will still work if you have write permissions to /home/username at all. Marking the file immutable with chattr +i as root might be slightly more effective, but realistically still not enough in a lot of cases as the parent directory can still be renamed. Not to mention you've only found some of the low-hanging fruit; your text editor most likely also has a few ways to accomplish arbitrary code execution in its config/scripting/plugin files but it absolutely doesn't stop there.
Don't bother buying old systems because they can have free firmware. Ever since Spectre, CPU vulnerabilities have made old machines completely unsuitable for high-security purposes time and time again. Not all mitigations are equally effective and with mitigations on, performance takes a massive hit on those 10 year old machines. If you can get a reasonably new system with free firmware, that's good, though.
DSP doesn't have builtin controller support, so I'd be leery recommending it for Deck unless you're used to more complicated manual input mapping. Hardware-wise, it's more than capable as long as you don't go megabasing postgame.
DSP also doesn't do cloud saves, so you gotta be careful with your wineprefix.
I think most people don't realize how unusual their company structure is. It feels like it's set up to let them do exactly that. As far as I can tell, once you look past the smoke and mirrors, the board effectively controls both the non-profit and the for-profit.
AWS has a shitton of in-house "Graviton" ARM stuff available and the ARM server chips from Ampere are popping up in more and more places as well. Most Linux servery distros have ARM images available now, and most software builds without major changes. It's a slow transition but it's already happening.
You're comparing maximum capacity to actual usage... weekday peak hours are like 80% of weekly passengers on most functional rail systems. Very common for the rest of the hours to run half schedules or smaller carriages because it's simply not necessary, but the network can handle it if required.
Today FUTO released an application called Grayjay for Android-based mobile phones. Louis Rossmann introduced the application in a video (YouTube link). Grayjay as an application is very promising, but there is one point I take issue with: Grayjay is not an Open Source application. In the video Louis explains his reason behind...
"Open source" has more or less always meant something very specific as defined by the Open Source Definition. Adding restrictions on top like no commercial use or no lawsuits turns it into "source available".
The badness this game had at launch really can't be overstated, though. At launch, this was a paid early access always online mostly-singleplayer-with-coop game with a premium currency shop and a battle pass. And it was one of those games where the shop was the most fleshed out part.
They've added offline mode and are now reworking the microtransactions to Steam DLC, but I'm still very skeptical of them. That launch was so blatantly over the top bad.
This thread is frustrating. Everyone seems more interested in nitpicking the specifics of what OP is saying and are ignoring that a forum sends you your password (not an automatically generated one) in an email on registration.
The number of people accepting email for some magic thing without in-between mechanisms is ridiculous. If it's sent in an email you should 100% consider it to be stored in plaintext in multiple places. There is incredible amount of machinery between your mail() call and the end user reading that email, on both the sending and receiving end. For example, my spam filter (rspamd) will likely store a copy of it for a while, and that's not unique to it.
What's in the database is not really relevant. Only the worst instance of storage counts.
Star Citizen Now Selling $48,000 Bundle That Includes Every Ship (www.gamespot.com)
Is it actually dangerous to run Firefox as root?
I have a few Linux servers at home that I regularly remote into in order to manage, usually logged into KDE Plasma as root. Usually they just have several command line windows and a file manager open (I personally just find it more convenient to use the command line from a remote desktop instead of directly SSH-ing into the...
Super weird error, what's happening? (lemmy.zip)
Iโm not sure if this is the best community to post in, but I just bought a used computer and slotted in an RX480 as the GPU. I installed KDE Neon 5.27 on it, and it worked flawlessly for 2 days....
Canonical changes the license of LXD to AGPL (discourse.ubuntu.com)
Spotify doesn't make profit from music streaming, despite having over 400M monthly active users, because it pays two-thirds of all its revenue to the rights holders. (open.substack.com)
Valve To Steam Deck Owners: Stop Huffing Its Vent Fumes (kotaku.com)
Tool to manage CLI tools
Iโm trying to find a thing, and Iโm not turning up anything in my web searches so I figure Iโd ask the cool people for help....
GitHub: Can no longer search code without being logged in. (github.com)
Response from Martin Woodward, GitHub's VP of Developer Relations:...
What are the major components of any Linux distribution?
Hi all - I am learning about Linux and want to see if my understanding is correct on this - the list of major parts of any distro:...
Security advise collection - what do you recommend?
I use Linux for quite a while and would like to gather some security advice, well known and lesser known....
Generic container brand rule (feddit.nl)
GitHub - arcataroger/awesome-engineering-games: A curated list of engineering-related video games rated Very Positive or higher on Steam (github.com)
Sam Altman to return as CEO of OpenAI (www.theverge.com)
See also twitter:...
A box of DevOps (sh.itjust.works)
Intel doesnโt think that Arm CPUs will make a dent in the laptop market (arstechnica.com)
[meme] Being forced to drive isn't freedom โ it's a government-mandated lifetime subscription to oil (lemmy.world)
Image transcript:...
Why are most memes on Lemmy from 5-10 years ago?
Iโm glad people are active, but why are the most upvoted memes things from years ago? Bots? Users desperate for content?
15,000 Scientists Warn Society Could 'Collapse' This Century In Dire Climate Report (www.vice.com)
Vice.com
Grayjay is not Open Source (hiphish.github.io)
Today FUTO released an application called Grayjay for Android-based mobile phones. Louis Rossmann introduced the application in a video (YouTube link). Grayjay as an application is very promising, but there is one point I take issue with: Grayjay is not an Open Source application. In the video Louis explains his reason behind...
This indie dev (Indie RPG Inkbound) is removing all microtransactions after noting that "player sentiment is trending against" them (www.eurogamer.net)
Israeli communications minister seeks shutdown of Al Jazeera bureau (www.reuters.com)
What UI design trend do you hate the most?
I personally hate rounded corners and shadows added everywhere. Makes most things look crappy and smudged.
OP finds vulnerability where a forum sends you your password in plaintext over email and everyone misses the forest for the trees (lemmy.world)
This thread is frustrating. Everyone seems more interested in nitpicking the specifics of what OP is saying and are ignoring that a forum sends you your password (not an automatically generated one) in an email on registration.