Yes, it made people realize we don't need Secure Boot and it's just a pit of vulnerabilities.
I realized it happened with me whenever my computer was idle for a few minutes and the monitor turned off. Eventually it fixed itself, but it sure was annoying having to change the brightness back to the value it was before it went on stand-by.
Do you have to do this every time you update your phone?
Care to share how you disabled every bit of AI in the phone?
Yet companies are manipulating survey results to justify the FOMO jump to AI bandwagon. I don't know where companies get the info that people want AI (looking at you Proton).
I maintain the DNS plugin for Vultr and I can say that it's "safe", but if you're worried you should check their source code.
I believe it's easier to have a vulnerability in the external provider's API (for example, caddy-dns/vultr uses govultr) than Caddy. But I wouldn't take things for granted if I was skeptical about these plugins.
I have a k3s cluster for fun and I can admit that k8s is way too complicated.
I don't want to dig hours through documentation to find what I'm looking for. The docs sometimes feel like they were written for software devs and you should figure part of the solution yourself.
I have a ExternalName service that keeps fucking up my cluster everytime it restarts, bringing down my ingresses, because for some reason it doesn't work and I have no idea where to look at to figure out why it doesn't work - I just end up killing the service and reapplying the yaml file and it works.
I had to diagnose why my SSL certificates would get stuck in "issuing" in cert-manager, had to dig through 4 or 5 different resources until I got to an actual, descriptive error message telling me that I configured my ClusterIssuer wrongly.
I wanted a k3s cluster to learn but every time I have issues with it I realize it's a terrible idea.
I wish I had podman + compose but it does seem like a docker-compose is more complicated. Also, I wish I could do ansible but I have no idea where to start (nor how it works).
EDIT: oh yeah I also lost IPv6 support because k3s by default doesn't enable v6 and I was planning on using Hetzner CCM to have a 2 node cluster until I realized Hetzner Networks don't support v6.
Can you use CrowdSec to track logs from a k8s pod? Say I have my website and some other services hosted on a k3s cluster, do I need to spin up a new pod for CrowdSec or should it be installed on the host?
They kinda already do this. Any .exe you download outside the Microsoft Store requires double confirmation before you can execute it, unless it's from Microsoft.
As much as I despise MS and think they are equally incompetent, I don't think it's a good idea to lock down Windows. They will stop providing kernel access to 3rd parties at first, then a few months later you will only be able to download software from the Microsoft Store.
Yes, it's a security issue but them being allowed to close down their OS sets a dangerous precedent that will make Windows even more shittier and enshittified than it already is.
The VPN bandwidth doesn't need to be that good, I was checking the GL iNet models and 200 Mbps on WireGuard is enough for me.
I am looking for suggestions of cheap, OpenWrt compatible routers that may have Wifi 6, for future proofing. My idea was to use it as a main router, but also as a travel router so I can plug it whenever I travel somewhere else.
I also want to learn how to use OpenWrt (I have an old router at home to test it out, but it's not ideal for everyday use since it's 100Mbps and doesn't have gigabit ports).
It'd be nice to have:
- Wifi 6
- OpenVPN or WireGuard support
- Compatibility with OpenWrt
- Ideally less than 60 EUR
A small form factor is also appreciated but not a requirement.
I checked the device tables and lists on the OpenWrt wiki, but it's hard to decide. A beginner's guide to the operating system recommended some routers but most of them are too expensive for my use case.
Currently, I'm leaning towards the GL iNet Opal (1200) but it doesn't support OpenWrt, the other option is the BananaPi BPI-WIfi 6. What would be your suggestions?
The default config for sudo is to ask for root password. I too was annoyed by this and had to change the setting to ask for the user password, not root, every time I used sudo.
It could be the issue if above 4g decoding/resizable bar is not enabled: https://gitlab.freedesktop.org/drm/amd/-/issues/3343
had a similar issue that my system would freeze completely after playing FO76, had to downgrade the kernel to get my games to work again.
Can someone ELI5 what's going on? Seems like they are still fighting about Nix allowing a defense company to sponsor their conferences, and trying to ad hominem the project leaders.
I found Tailscale/Headacale way more difficult to setup than Wireguard.
Have you tried to install the it87 driver for your kernel? https://github.com/frankcrawford/it87 (on AUR it's it87-git)
I have ASUS B450M PRIME GAMING and after installing the driver, the chassis fan sensors were detected and I could use CoolerCtrl to draw the fan curve.
I don't quite like CoolerCtrl because of its UI, seems to be web based, but it works and has a daemon mode to start minimized on startup.
Seems like they are only dropping the deb for Ubuntu.
That's like going to a therapist and then finding out your therapist needs to go to therapy after treating you.
I have a small VPS that hosts some services I use daily and I'd like to migrate that to a K8s cluster. One of the services being hosted is my personal website, built with Hugo and served by Caddy.
Right now, I have the code for my website on Codeberg and I have a CI pipeline that builds the website and uploads it to my VPS via rsync.
I want to move the website to the k8s cluster, but I have no idea how to do it "securely". What I have right now is a separate user on my VPS called deploy and it rsyncs the files to the data directory Caddy is using to serve my files.
I thought I could do the same on the k8s cluster server, but it's usually not a good idea to mount host paths with k8s unless absolutely necessary, because container escaping is an actual problem.
So far the only alternative I could think of is to change the CI pipeline to publish my website on another branch and signal it to my K8s cluster so the files should be updated, but I'd like to know what better options exist and how easy they are to setup.