maiskanzler 3 months ago • 100%
Nice, thank you!
maiskanzler 3 months ago • 100%
Oh neat! That looks like a perfect fit for me! I saved your post and will come back to it once the biyearly "just f*ing fo it again" motivation hits me once more :D
maiskanzler 3 months ago • 100%
Yes, I do loose the origin IP and I'm a little bugged by it. It also means that ALL traffic incoming on a specific port of that VPS can only go to exactly ONE private wireguard peer. You could avoid both of these issues by having the reverse proxy on the VPS (which is why cloudflare works the way it does), but I prefer my https endpoint to be on my own trusted hardware. That's totally my personal preference though.
I trust my VPS provider to not be interested enough in my data to setup special surveillance tooling for each and every possible software combination their customers might have. Cloudflare on the other hand only has their own software stack to monitor and all customers must adhere to it. It's by design much easier for them to do statistics or snooping.
maiskanzler 3 months ago • 100%
I am using the smallest tier VPS from IONOS for 1€/month. Good, reliable and trustworthy as it is a subsidiary of 1&1 telecommunications.
maiskanzler 3 months ago • 100%
Rent a VPS, point DNS to it, have it act as central wireguard peer and connect your server(s). Then bridge incoming traffic to server via socat or firewall rules. Done
maiskanzler 3 months ago • 96%
Sure it's easy to set up, but the same behaviour is what I get with my handrolled solution. I rent a cheap VPS with a fixed IP solely for forwarding all traffic through wireguard. My DNS entries all point to the VPS and my servers connect to the VPS to be reachable. It is absolutely network agnostic and does not require any port shenanigans on the local network nor does it require a fixed IP for the internet connection of my home server.
Data security wise the HTTPS terminates on my own hardware (homeserver with reverse proxy) and the wireguard connection is additionally encrypted. There are no secrets or certificates on the rented VPS beyond the bare minimum for the wireguard tunnel and my public key for SSH access.
Shuttling the packets on the VPS (inet to wireguard) is done by socat because I haven't had the will or need to get in the weeds with nftables/iptables. I am just happy that it works reliably and am happy to loose some potential bandwidth to the kernelspace/userspace hoops.
maiskanzler 3 months ago • 100%
Apart from the usual bed cleaning tips it's hard to guess where you are going wrong. Whenever I have problems it comes down to a "greasy" build plate. Simply touching it inbetween prints can make difficult geometries impossible.
I stick to 99,9% Isopropanol and have a tissue box next to my printer. I wipe down my build plate with a fresh tissue + alcohol before every print and have yet to see that method fail. It works great with PLA (60°C bed) but for PETG (80° bed) the alcohol evaporates too quickly. In the latter case I do the wipe down before reaching target temperature.
maiskanzler 3 months ago • 100%
Nur eine Spur noch, dann wirds besser! Wirklich! Ich kann aufhören wann immer ich möchte!
maiskanzler 4 months ago • 100%
Coming from Rust I am toying around with Lua at the moment. Lua is a small, simple and I would say a very neat language. But for big projects like an entire game I would personally much prefer a "traditional" compiled language like C/C++, Java/C# or Rust. Scripting langs are great for small scopes, but they quickly become a burden for bigger things in my opinion.
maiskanzler 4 months ago • 94%
Momentan boomt auch Lack. Der wird traditionell aber eher auf Sylt genossen.
maiskanzler 4 months ago • 100%
+1 for FolderSync. Very reliable and has many options.
maiskanzler 4 months ago • 100%
And basically sentenced for life on top of that.
maiskanzler 4 months ago • 100%
There's prometheus node exporter which can collect such data from several hosts. You can hook it up with Grafana for neat dashboards and I'm almost sure it also integrates with Homeassistant.
maiskanzler 4 months ago • 100%
Oh boy.
maiskanzler 5 months ago • 100%
...YOIIINK!
maiskanzler 5 months ago • 100%
But I like to use Btrfs on top of LUKS and more often than not it's not an option.
maiskanzler 5 months ago • 100%
Wtf.
maiskanzler 5 months ago • 100%
Does it have to be an overlay or would a regular notification that pops up suffice? Those may be quite easy to write fir your chosen DE.
maiskanzler 5 months ago • 100%
Very neat idea!
maiskanzler 5 months ago • 100%
As far as I know commercially available ereaders go to sleep in between page turns. After a pageturn my Kobo/Tolino stays awake for maybe a second to allow the user to rotate the device, after that it only responds to the page buttons or touch input.
Most ereaders are running on highly modified Android systems, because it is easy to write graphical applications for it and the underlying Linux kernel makes networking and the likes very easy I suppose.
maiskanzler 5 months ago • 100%
This is pretty verbatim.
maiskanzler 5 months ago • 100%
Do you see that hill? Wouldn't you like to... see what's behind it?
maiskanzler 5 months ago • 100%
Yeah that occurred to me as well. Then I immediately think that maybe we need ☆one more language☆ to fix this. And then I remember that one xkcd comic...
maiskanzler 5 months ago • 100%
Absolutely true, it was more of a joke because Python is being used for pretty much anything today. I really don't want to mess with correct indentation in my terminal.
maiskanzler 5 months ago • 100%
The line between configuration is very messy anyways. So many projects abuse YAML as a domain specific language. Looking at you, HomeAssistant and ESPHome!
maiskanzler 5 months ago • 66%
Python😎
maiskanzler 6 months ago • 100%
Sounds like a great market situation for Aldi or Lidl to expand into!
maiskanzler 6 months ago • 100%
What? I've never had the feeling that nextcloud assumes that. Are you using a special all-in-one docker image? Because I am using the regular one and pair it with db, redis etc. containers and am absolutely happy with it.
maiskanzler 6 months ago • 100%
Your btrfs snapshots are possibly counted separately by all the regular tools. They simply go into every directory they can find and add up the size of the files they see. They do not care if they are looking at an identical snapshot of the folder next to them, they simply add it all up.
Use sudo btrfs filesystem show
(and maybe add a path behind it, I am not sure). That will give you the true usage.
maiskanzler 6 months ago • 100%
Richtig und wichtig. Und außerdem gerade rechtzeitig. Wir müssen so viele offene Lücken stopfen wie es nur geht.
Diese hier wurde ja u.a. durch Die Anstalt ziemlich bekannt. Gibt es weitere?
maiskanzler 6 months ago • 100%
WhatsApp IST Ende-zu-Ende verschlüsselt und benutzt (fast?) dasselbe Protokoll wie Signal!
Bei Telegram sind die Nachrichten nur transportverschlüsselt, liegen also beim Anbieter frei lesbar rum.
Signal ist nicht nur E2E verschlüsselt, es versucht sogar die Metadaten ("wer schreibt wem und wann?") zu vermeiden/für die eigenen Server unsichtbar zu machen.
maiskanzler 6 months ago • 100%
That site is a gold mine!
maiskanzler 6 months ago • 100%
Maybe get a reputable one, the other ones are sadly malware infected in way to many cases. It's a way for the manufacturer to make an extra buck from the sale.
maiskanzler 6 months ago • 85%
If you have an AVM Fritz!Box home router you can simply create a new profile that disallows internet access and set the devices you want to "isolate" to that profile. They will be able to access the local network and be accessed by the local network just fine, but they won't have any outgoing (or incoming) connectivity.
maiskanzler 6 months ago • 100%
I'll look into that, thank you!
maiskanzler 6 months ago • 100%
Wenn man runterscrollt, hat der schonmal ne knappe Million gespendet.
maiskanzler 6 months ago • 100%
I've always been on android, so take this with a grain of salt. In my opinion Samsung phones have come a very long way. They used to be slower and bloated in comparison to other brands, especially while the market was still moving fast. I used to have a Sony, a ZTE, a Motorola, an Umi and a Jiayu - I tried quite a few over the years.
The recent generation are all fast enough and performance wise last 4+ years before they get noticably slow and an upgrade becomes necessary. Software support on Samsung is now phenomenal. I had so many bugs and hitches on other vendors' phones and they were rarely fixed - the absolute opposite has been the experience on my Samsungs. Updates are frequent, smooth and stable.
I know this reads like an ad, but I was honestly positively suprised after I bought a Samsung tablet a few years back and have slowly switched over to Samsung devices. The same happened with all other members of my family. Samsung simply won.
I suppose the iPhone is very similar in that regard, both simply work and are great for everyday use. It's almost boring!
I do advice you to look at the upper end though, they simply have more performance reserves. If you are a display menace and battery destroyer though, you won't notice any significant slow down from the cheaper range in the 2 to 3 years you have before it becomes uneconomical to repair the device anyways.
maiskanzler 6 months ago • 100%
If only modern kernels weren't a problem. I wish you could just install new OSs like on PC.
maiskanzler 6 months ago • 100%
Out of curiosity, how did you solve that software wise? I was planning to do the same thing with my old MFP. Are you just using CUPS and SANE?
maiskanzler 6 months ago • 100%
It's probably also highly automated and the staff's job is just to watch for irregularities and alert the necessary teams.
Hey, just found this gem of a video and thought I'd share. Covers a great deal of information about embassy and the pico within the first two and a half minutes and is nicely paced overall!
Über den ganzen Bullshit lachen können hilft manchmal auch. Für die passenden positiven kosmischen Energien hilft extra3! Macht dann einmal 250€ bitte.
Ihr habt ne fette Grafikkarte, aber der RAM wird knapp? Einfach auslagern! Ich bin gerade zufällig auf diesen Artikel im Arch Wiki gestoßen und sieh an: Grafikkarten-RAM ist unter Linux wunderbar für alle möglichen Spielereien nutzbar! Man kann den normalen RAM durch swap space auf der GPU "erweitern" oder einfach eine RAM-disk auf der GPU anlegen! Chrome freut sich.
Alt-Text: Sticker. Zu sehen ist eine lächelnde Angela Merkel mit Sonnenbrille. Absolutes Banger-Outfit. Aufschrift: Merkel-Diktatur, und zwar JETZT!
Hey, you probably know about restic and borg for backups. They are pretty mature and very commonly used. [Rustic](https://github.com/rustic-rs/rustic) is a fully compatible reimplementation of restic in Rust and they do seem to have implemented a few improvements over restic. The developer even used to be a contributor on restic. Is anyone here using it already? It looks super promising but I'd love to hear your opinion!
Hey, erster Post hier! Nach einem [Kommentar von @leopold_s](https://feddit.de/comment/250449) kam bei mir mal wieder die Frage auf, warum wir in DE eigentlich keine einheitlichen Glasflaschen für alle Getränke wie Bier, Wein und Co haben. Viele Mineralwassersorten nutzen schließlich schon einheitliche ["Normbrunnenflaschen"](https://upload.wikimedia.org/wikipedia/commons/e/e1/Normflasche-1.jpg) von der [GDB](https://de.wikipedia.org/wiki/Genossenschaft_Deutscher_Brunnen) - diese typischen Glasflaschen mit Aufdruck "Deutscher Bunnen" eben. Die gibt es übigrens [schon seit 1969](https://de.wikipedia.org/wiki/Normbrunnenflasche#Geschichte) und war damals lt. Wikipedia ein Versuch der deutschen Getränkefirmen, der Coca Cola Company Einhalt zu gebieten 🤷. Die Vorteile sind ja eigentlich klar: Ist eine Flasche speziell auf eine Marke zugeschneidert, z.Bsp. König Pilsener oder Coca Cola, muss die Flasche nach der Rückgabe wieder durchs ganze Land geschifft werden, statt einfach zum nächstgelegenen Abfüller zu gelangen und dort mit dem Produkt einer anderen Marke befüllt zu werden. Wenn man den Gedanken weiterdenkt, macht es doch eigentlich sogar Sinn dass auf noch mehr Behälter auszuweiten: - Marmeladengläser - Nutellagläser - (Oliven-) Ölflaschen - Eingelegtes Obst/Gemüse - (...) Klar, hat nen paar Nachteile. Produkte sehen erstmal "langweiliger" aus und man muss das Rückgabesystem deutlich ausbauen. Außerdem schränkt man den heiligen freien Markt ein Stück weit ein. Aber so richtig gravierend ist das jetzt nicht. Schließlich kann man ja immer noch durch das Design von Banderole und Deckel hervorstechen und ein bestehendes Rückgabe-/Pfandsystem auszubauen scheint jetzt nicht schwieriger zu sein, als es [erstmals aus dem Boden zu stampfen](https://de.wikipedia.org/wiki/Pfandsystem#Einf%C3%BChrung_in_2003). Demgegenüber natürlich die klaren Vorteile: - ⚡ Mehrweg-Glas muss nur gereinigt werden und braucht weniger Energie. Altglas wird zerbrochen, eingeschmolzen und dann wieder in einzigartige Formen gebracht. - 🚚 Kurze Transportwege für Rückgaben - 💰 Preise im Supermarkt sind einfacher nachzuvollziehen. Besonders aktuell werden viele Verpackungen kleiner bei gleichem oder sogar steigendem Preis (["Shrinkflation"](https://de.wikipedia.org/wiki/Shrinkflation)) - 💪 Standardgläser lassen sich besser im Schrank stapeln In meiner schönen, durch-standardisierten deutschen DIN-Welt käme also alles entweder im schicken Normglas mit Schraubverschluss und breiter Öffnung oder eben in einer Flasche wie aktuell das Mineralwasser. Dazu feste Größen von 250, 330, 500, 700, 1000 und 1500 ml. Alles herrlich deutsch durchorganisiert. Nicht ganz so extrem, aber zumindest in die selbe Richtung gehen auch die [Forderungen des Nabu](https://www.nabu.de/umwelt-und-ressourcen/ressourcenschonung/einzelhandel-und-umwelt/mehrweg/nabumehrwegguide.html): - Optimierung bestehender Mehrwegsysteme und Nutzung von Standardflaschen. - Stärkung der dezentralen Abfüllung von Getränken und des regionalen Verkaufs, um Transportemissionen zu reduzieren. - Etablierung neuer Mehrwegsysteme für zum Beispiel Wein und Milch, für die Mehrweg bisher nur selten existiert. - (...) Also, was spricht dagegen?