cyberwolfie

cyberwolfie OP , 4 months ago

It is not my package, but I could of course go ahead and change the source code directly to handle this. But I’d prefer a solution that would persist through updates.

cyberwolfie OP , 4 months ago

Yeah, I tried this, and it works from my session, but I still got the same error from trying to run the program. I figured it was because it is called outside the bash session so the run commands have not been run, but is that perhaps not true?

cyberwolfie , 5 months ago

Oh, I found Dolphin to be a superior experience to File Explorer in Win 10. I had a particular hatred for how it would, when copying files inside a OneDrive folder and trying to instantly rename them, decide to mark the entire name field after about one second (when sync of new file is complete), causing me to erase everything I wrote in that second and having to start naming it again. In my last job, this occurred on a very frequent basis.

cyberwolfie , 5 months ago

I use Fluent Reader Lite. Fits my established workflow of consuming RSS-feeds well.

cyberwolfie , 6 months ago

Have they been cross-posting 1:1 between Mastadon and the platform formerly known as Twitter so far?

cyberwolfie , 6 months ago

Agreed. I recently did this (first time making a torrent-file) to transfer a set of 45 min videos to a friend, and will probably prefer this way of doing it in the future.

cyberwolfie OP , 6 months ago

Not a requirement that it is E2EE, as the Borg repo is already encrypted. Guess my knowledge of these services is biased towards E2EE from previous research for use cases where that was a requirement.

Thanks for the tip, hadn’t hard about Backblaze before. Very reasonable pricing. Would a good strategy then be to schedule rclone to have it synced, or are there other ways that would be better?

cyberwolfie OP , 6 months ago

Hm, after the initial upload, it shouldn’t really generate much traffic if I can only manage to upload the diff, so it might not be much of an issue for me. I am not yet really familiar with tools like rsync and rclone, and also don’t know how the changes are stored in the Borg repo (e.g. if I move a 1 GB file from one folder to another, does that get picked up as a 1 GB change by the syncing tools?), so I would need to do some more research to see if that would be achievable.

Hetzner also looks nicely priced, but it would’ve been nice if I could choose an even cheaper tier with less storage, as 1 TB is quite overkill for this particular use case. I could of course use it to backup other things.

cyberwolfie OP , 6 months ago

What are you looking for in a host?

cyberwolfie , 6 months ago

Learn Linux TV is number one for me - his Linux Crash Course has been an immense help in getting started using Linux for me.

cyberwolfie , 6 months ago

I have been using this combined with Fluent Reader Lite for Android and a self-hosted FreshRSS-server to sync my feeds. Just recently found a workflow that works well for me: I will browse my feeds on my phone once in a while (very productive bathroom breaks…), showing only unread stories. I star any story I want to read later, mark the rest as read. With Fluent Reader on Linux set to only show starred, and I can then pick and choose whatever story I want to read from there on a bigger screen. Whenever I go some days without checking, I will just mark all spammy news outlets as read without checking the 400 unread stories.

cyberwolfie , 6 months ago

Cool, I’ll check it out. I am not experiencing any issues with Fluent Reader with my use case though.

cyberwolfie OP , 6 months ago

Ok, thanks - so if I understand correctly then, it is listening on port 22 as a default, and not accepting traffic on any port.

That brings of the question: wouldn’t I be better off changing the SSH-port? And is that so easy as to uncomment the #Port 22 line in the config file and changing the port number to something random, and saving that somewhere? Would I then be able to connect by running ssh myuser@mydomain.com:, or would I need to do anything else to successfully connect?

cyberwolfie OP , 6 months ago

Yes.

cyberwolfie , 6 months ago

Genuine question: is there any way for any keyboard application to be privacy disrespecting if their internet access is blocked off by a firewall?

cyberwolfie , 6 months ago

Do you know if there is any way to check and potentially also block inter-app communications like that?

cyberwolfie , 6 months ago

EU is doing a lot of good work to protect the privacy of citizens against corporate surveillance, but continues to propose regulation that would increase government surveillance. News such as this is good, as it seems to show that there are protection measures within the EU to stop such legislation from being effectuated. Another example is the Data Retention Directive, which was first passed back in 2006, but then later declared invalid by the European Court of Justice in 2014. However, while the intent when it comes to corporate surveillance seems aligned with the public interest, the intent when it comes to government surveillance is not. Such privacy violating proposals will continue to be proposed.

I certainly do not have a good overview over all of this. We are completely beholden to the great work of pro-privacy organizations and corporations to keep exerting pressure and making these pieces of legislation known and understandable to the public. But unfortunately, most people can't even begin to consider the implications of such overreach, which is why the "protect the children"-rhetoric is so effective - "I am not doing anything illegal and thus have nothing to hide, so if we can protect the children from abuse by removing encryption which is only something criminals use anyway, I'm fine with that". I am clueless to how I can best contribute here, but I am luckily seeing a shift among friends and family in the awareness on these topics.

cyberwolfie , 6 months ago

Oh, I think this is very difficult. First of all because it is not a single reason why a future where privacy has eroded is a very bad thing, but rather many different reasons. This makes it difficult to know where to start, as it will depend on the person you are talking to what they are more receptive to. Concepts such as security, privacy, secrecy and anonymity are often confused. You have different actors you would want protection from, including corporate and governmental entities.

I don't think most ordinary people you meet will be bad faith actors though, but I do think many tend to take offense if you are outspoken against something that is proclaimed to be about protecting children. Why wouldn't you want to save children?

Some of the reasons below, but not an exhaustive list. As I said, difficult to know where to start.

1. You do have something to hide, even though you might not be doing anything illegal (to your knowledge). Most people dislike people staring into their living room from the street, and will install curtains or other ways to prevent it. Most people closes and locks the door when they go to the toilet. Most people do not say every single thought they have out loud. I think the disconnect comes from people not actually knowing what data is collected, and even if they do, they do not understand how this data can be used / misused to learn things about you or manipulate you, and the privacy threat of having this data stored anywhere even if it is not being used (i.e. risk of data leaks). In terms of manipulation, I think that the story on how Facebook nudged people to vote in the Scottish referendum highlights the creepy influence such a company can have on society, and this was already in 2014. Who's to say the owners of such platforms will not use it to sway elections their preferred way by using such nudging tactics on the population they want to vote, and not on the ones they'd rather stay home. We shouldn't have to trust that they don't abuse such a power.

2. What today might be perfectly legal, might not be legal tomorrow. Case in point are the draconian abortion laws implemented in various states of the US. Facebook had to comply with government requests to hand over chat logs..

3. What today is illegal, should perhaps not be illegal. We do not want 100% law enforcement, as that would mean that we consider today's laws final, however we are constantly evolving our laws. A recent example is legalization of weed in the US. How many have been incarcerated and had their lives ruined on charges related to weed? Yes now the same activities are in many states considered legal. Or homosexuality? Sodomy laws are not a very distant past in many countries (and still exist in other places of the world). If you had Apple or Google scanning your phones and flagging you to law enforcement for illegal activities. Effective mass governmental surveillance (and corporate surveillance that can be passed on to law enforcement) could potentially send countless people to jail on charges that could be legalized in just a few years.

4. Building an infrastructure for mass surveillance is not future-proof. You might trust your government not to misuse it today, but what about after next election? There are countless examples of less-than-democratic forces gaining power in Western democracies in recent years. We need strong protections against potential oppression/suppression, and not just soft protections that are easily swept aside.

5. We are dependent on journalists and whistleblowers exposing wrongdoing in our society. Lack of tools that ensure privacy and anonymity prevents this.

6. Even if our societies are not oppressive regimes today, many around the world are. Political opponents and resistance groups in such regimes need ways to protect themselves. Otherwise authoritarianism will have an too easy time to crack down on dissidents, making organized opposition impossible.

cyberwolfie , 6 months ago

I’m on a Fairphone 4 with CalyxOS

cyberwolfie OP , 6 months ago

Thanks for the reply, and sorry for seemingly ignoring it - been fighting off a cold and massive headaches the last couple of days.

To answer your questions: no, it does not need to be an all-in-one solution (e.g. the draft solution I had pictured included an RPi connecetd to the speaker that runs balenaSound or Snapcast), but I hope to keep it simple and neat.

My "homelab" (I realize now I need to start putting that in quotes 😅 ) consists of a dedicated mini-PC hosting some services through Docker and soon a Raspberry Pi with a Zigbee-receiver running Home Assistant and an MQTT broker. So I don't have a very sophisticated setup, although I do hope to one day get there. So for the time being, your solution is a bit too advanced for me, but I have saved it in my notes for future reference!

cyberwolfie OP , 7 months ago

Ah, that didn’t occur to me… good to know. I will use it mainly to navigate the Jellyfin UI, so hopefully it will be sufficient as it mostly consists of large images.

Good to know the feature is included in the Dolphinbar - I have been thinking about getting it in order to get the Wiimote working with Retroarch. But on the hardware I am running it on now, Wii-games are unplayable in Retroarch, so I have delayed that purchase.

cyberwolfie OP , 7 months ago

Hehe, I will from now on!

cyberwolfie OP , 7 months ago (edited 7 months ago)

I tried that, but nothing really happened (i.e. no output). hid-wiimote is one of several things I couldn’t fit into the whole picture I was trying to create for myself. I figured that, since I got it connected and could see the sensor data from the xwiishow command from xwiimote, that the module was loaded and I didn’t need to pay more attention to it.

cyberwolfie OP , 7 months ago

Yeah, I already have KDE Connect already setup, and it is quite nice. However, since this is for navigating a media station I would prefer to avoid having my smartphone nearby, as I will end up scrolling mindlessly like the drone I am. Getting the Wiimote working is also not entirely a project of utility, but something I consider to be an interesting and fun project, so while having options are good, I still want to accomplish this.

cyberwolfie , 7 months ago

I also got 9/20, feeling certain about only a handful, and completely thrown off by others. Since all questions were yes/no, expected score would be 10/20, so my score correctly reflects that I had no real idea what was AI-generated or not. I expect the average score to be close to 10/20, skewed somewhat higher by those who might have a keen eye for some telltale signs of AI-trickery.

cyberwolfie , 7 months ago

Agreed. I made the switch after Mendeley pushed their online manager with only a new limited desktop client, which was awful. Couldn’t believe I hadn’t gone with Zotero in the first place. Originally only used for my thesis, now I use for work and personal interests as well.

cyberwolfie , 7 months ago

Isn’t distance more suitable to describe an improvement than time? Don’t find anything wrong with that comment.

“It is better by a mile” vs “It is better by three hours”

cyberwolfie , 8 months ago

I’ve had a Fairphone 4 for just under a year running CalyxOS, and I am very happy with it. Not sure when / if CalyxOS will be available for FP5, but unless they have locked down anything, I don’t see why that shouldn’t happen. If I understand your post correctly, it is already available with e/OS/?

Maybe the specs are underwhelming, but with the FP4, it does not affect me the slightest based on my use case. Phones are more than good enough already. I do not play any games on my phone. Camera could be better - maybe it is on FP5? Is it the perfect phone? Nope, but at the moment, I think our choices are too limited if you want privacy and repairability. Supporting a company that pushes these kinds of phone is also a reason I went with this phone.

Swapable batteries are nice - I’ve not made use of it yet, but I am planning on getting one or two spare batteries for travel to keep in a printed case. In the EU, this will be mandatory in the future, but first form 2027. Other than that, I am happy with the ability to buy spare parts if something breaks. I can’t see myself ever buying something that is deliberately unrepairable again when there is no reason it should be. I don’t mind the lack of 3.5mm-port, which I know irritates a lot of people. If you swear to this, I can understand that this is disappointing. There exists an adapter, but my experience with these kind of adapters is that they quickly wear out. That was my experience with the iPhone and Apple’s own adapters at least. I burned through four in 1-2 years.

cyberwolfie , 9 months ago

<span style="color:#323232;">…lock-in tactics should put any person who cares about those things off.
</span>

Unfortunately most people don’t care.

And once you are locked-in, the barrier to get yourself out of it is often so high that it dissuades most people from even trying to get out. I moved from macOS to Linux last year, and even though I was only using a small portion of the Apple ecosystem (iCloud was the only thing I believe), it still took a lot of time as they are designed to make it difficult/time consuming to migrate. Not to mention the macOS/iOS only applications you might’ve ended up using, as cross-platform functionality was not top-of-mind when choosing. In my case, the notes app Bear was such an example.

cyberwolfie OP , 9 months ago

They are different, but share the first three numbers.

cyberwolfie OP , 9 months ago

Just checked this, and “Allows local access” is checked in the VPN application, and “Block all non-VPN traffic” is unchecked in Android settings.

About potentially overlapping IPs: I did check, and they were all different (server, laptop, phone).

cyberwolfie OP , 9 months ago

Ah, that would explain it. I could set up split tunneling on a per app basis only in my current VPN, and not IP, but it works. However, I am in the process of migrating to ProtonVPN now. Here the “per app”-permission also works, and it does have the option to allow certain IPs, but I was not able to get it to work.

cyberwolfie OP , 9 months ago

Nice!

cyberwolfie OP , 9 months ago

This is probably where my lack of knowledge in networking shines through more than ever, but I kinda thought that local IPs would be handled locally and not depend on which DNS servers I use? But I guess that if VPN is active and has not been explicitly told to allow local connections through split tunneling, then it actually do make that request with whatever DNS server I use, which obviously couldn’t resolve some random local hostname?

cyberwolfie OP , 9 months ago

Thanks for the description, I’ll look closer into this and see if I can get this to work (on a test server at home first… :)).

This thread is the first I’ve heard of Podman - is this something I should look into in favor of Docker, or would you say it is more a case of “pick one and stick to it”?

cyberwolfie OP , 9 months ago

A log is a very good tip - I’ll definitely start with that.

cyberwolfie OP , 9 months ago

That sounds convenient, and having looked at some videos, it seems very nice. I can see myself using this for things that I need to work properly, like Nextcloud, and maybe host other services in a more complicated way, to be able to learn more.

cyberwolfie OP , 9 months ago

Thanks for the tip. I will be looking into setting up SSH keys fairly soon, and look more into strengthening ciphers et al.

From a practical point of view, what is the likelihood of a brute-force login attempt to succeed? There are plenty of login attempts, but most of them are for root, and as I’ve disabled root-login that will fail no matter what. Other attempts are typically for generic other names such as ‘admin’, ‘user’ and ‘test’ that has no associated user on the server, as well as some weird choices that I can only imagine comes from some database breach.

cyberwolfie OP , 9 months ago

/boot is 98% filled, so I am guessing it is that one. I’ve submitted a ticket with Tuxedo, and hopefully they are able to point me in the right direction.