Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)L

LordKitsuna

@ LordKitsuna @lemmy.world

Posts
2
Comments
376
Joined
3 yr. ago

  • Plex Announces Massive Price Hike on Lifetime Subscription Plans

    Jump

  • I am aware that an rce is the worst possibility I'm saying it shouldn't be. The web portion is already its own isolated binary that you have to install but it's designed with seemingly very little attention to security.

    To the point that jellyfin has already had several major RCE and despite having full support for running over the web with http developers are basically just like you should not be using this without a VPN which is overall a pretty pathetic stance for a media server

  • Plex Announces Massive Price Hike on Lifetime Subscription Plans

    Jump

  • This is the most hilarious lie I think I've seen in a while from open source on here. To be clear I use it as my daily driver, I switched off Plex a long time ago when I saw the writing on the wall.

    But I still have issues with media matching to this day, issues where subtitles on certain devices just refuse to display no matter what you do. And the server still loves to randomly take up absolutely massive amounts of memory for seemingly no reason whatsoever I ended up making a strip to just forcibly kill it and restart it every 12 hours to prevent it from eating the entire system's memory.

    And no my file naming is not the media issue everything I do is properly named exactly as jelly fin documentation says it wants by sonarr. Not to mention you are expected to maintain a VPN system just for accessing your media away from home as the web interface is so hilariously unsecured as to be a constant source of major system vulnerability.

    It's usable, but it's not as just works as Plex I have thousands of TV shows, anime, and movies as in thousands of each of those categories and Plex never once failed to match to the correct media, never had a problem just playing subtitles on any client, and I think only ever had one major issue with the web interface in terms of security? There's been lots of minor ones that would give people essentially just access to Plex but not the underlying system

  • Plex Announces Massive Price Hike on Lifetime Subscription Plans

    Jump

  • The fact that's needed at all is the problem. Developers need to stop making monolithic structures that have access to everything ever and putting it on the user to maintain to maintain a VPN network for security.

    There's no reason I should not be able to just use an nginx reverse proxy for remote access to my jellyfin and have that be safe. It should at worst give people a copy of my media if there's a security issue.

    Personally I went out of my way to make this be the case, i have my instance locked into an unprivileged lxc whitelist only on syscalls which took a while to figure out the minimum needed for function but I got there. The host System is using the hardened kernel from Upstream and a series of sysctl lockdowns for example P Trace is not allowed even if you are the root user.

    So I do indeed just nginx reverse proxy my instant because the worst case scenario even if they got complete shell access to the system they would be locked into an unprivileged container that had no access to any files other than my media files but the fact that I have to go to this level is already ridiculous

  • Bitwarden New CEO has extensive M&A, Private equity experience, Removes Transparency from its Motto

    Jump

  • I mean some may be offering that but it means you can just rent a cheap. VPS and host your own

  • Bitwarden New CEO has extensive M&A, Private equity experience, Removes Transparency from its Motto

    Jump

  • You won't have to. Bitwarden is FOSS. The server is able to be self hosted so "migration" will just be you moving their account to the self hosted one if things go south

  • Bitwarden New CEO has extensive M&A, Private equity experience, Removes Transparency from its Motto

    Jump

  • Bitwarden is completely FOSS, both client and server

  • Data center "mistakenly" used 30 million gallons of water

    Jump

  • I feel like you missed the part where I said that I'm showering daily, I have a dishwasher, do laundry with a standard front load washing machine i may not be connected to a city water but I have everything plumbed in i have all the usual stuff in a household. The only thing that was relevant about being off grid is that I have an exact understanding of how much water I go through at any given moment

  • Data center "mistakenly" used 30 million gallons of water

    Jump

  • That definitely feels high, mine is a household of two but I know exactly how much water I use because I'm off grid and I have to go haul it myself from the city my tank on my trailer holds 275 gallons and that's generally enough to last me anywhere between a week to two weeks depending on how much laundry I need to do.

    I shower daily, do dishes all the usual stuff so what the fuck is the average family doing with all that water that they are using more in a day than I do in a week

  • "Steam Controller ran out faster than we anticipated" Valve say, surprising no one, promising to get more stock in

    Jump

  • Honestly I feel like it's too little. At the very least the first wave of Hardware should be something crazy like the account has to be at least 10 years old have at least 30 purchases total and have an average of 8 hours a week play time.

    Sure there will be some legitimate people that get filtered by that but it will pretty much guarantee scalpers can't get anything in any serious volume

  • There's always money in the Flock Cameras.

    Jump

  • Yeah some kind of central location to store it all

  • Microsoft Calls 16 GB RAM A Compromise And 32 GB The New “No Worries” Standard

    Jump

  • Meanwhile i have a linux server that's currently running individual LXC containers for hosting

    Snipe-it, zammad, paperlessNGX, wiki.js, rustdesk server, firefly III, flare, among a few other things. And it's barely using 6GB total. Less than windows sitting at desktop these days. It's pathetic how bad windows has become.

  • Firefox browser has started shipping Brave's adblock-rust engine

    Jump

  • No, but it's nowhere near as strict in its management. Plenty of memory issues can still usually from unintentionally maintaining a reference to an object. forgotten global variables, uncleared timers (setInterval), or closures that stay in scope longer than necessary.

    And ofc you now have the performance overhead of GC constantly running

  • Firefox browser has started shipping Brave's adblock-rust engine

    Jump

  • Yeah as much as I love ublock origin and use it heavily. I support more rust on more things. 60+% of browser CVE are memory issues. Rust was explicitly made to stop those.

  • Endgame [LoadingArtist]

    Jump

  • Could be diesel or propane either way wouldn't have been hard to design a box for it to sit in so that the fumes could still go outside.

    After an apocalypse like that it's unlikely that solar or wind would be very viable it would most likely be nuclear winter so that would stop both as solar is not going to get any sunlight and a windmill is going to require excessive maintenance to stay functional in that.

    The better bet would still be battery bank but battery bank with generator that way you're not just wasting electricity since a generator is a demand-based response but still uses a set amount of fuel no matter what just to run you use the generator to charge up the battery Bank and then use the batteries only turning on the generator when they need to recharge

  • Ditch SUV's

    Jump

  • Smart fortwo is all most need. 4door is for afyer kids

  • School of hard knocks

    Jump

  • It's pretty funny reading the comments because honestly I would generally agree with the meme. But I'm coming at this from the perspective of a systems administrator and when it comes to dealing with networking and security most of the people I see coming out of college with degrees don't know a goddamn thing. Their courses are like 10 years out of date and not even remotely relevant to the real world but because they spent so much money on getting it they are very inflexible about changing how they were taught.

    Meanwhile when I find somebody out on the street who just has had a passion for computers since they were like five they tend to be extremely on top of current security and networking needs and more than willing to be flexible and change how things are done when the situation calls for it.

  • Removed

    t.nothus

    Jump

  • I've never even understood the idea. Even if it was just a brain filter that would mean constantly slamming into rocks/trees

  • Thoughts?

    Jump

  • I mean we don't NEED to. We can just randomly decide the race ends here. Lots of fun philosophical arguments in that conversation

  • Removed

    oh ok

    Jump

  • Gemini is just like "can we get back to work already"