forbiddenlake

joined 1 year ago
sorted by: new top controversial old
The CUPS explout is here: GitHub - RickdeJager/cupshax in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 4 points 1 month ago

Not true, Arch and Ubuntu (the ones I personally checked on) already pushed patches that disabled cups browsed by default, removing the service listening on 631.

Firewalls: what SHOULD I block? in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 3 points 1 month ago (1 children)

You probably don't need a local Firewall

If the computer never leaves the house, maybe. If it's ever on public Wi-Fi though, default deny inbound at a bare minimum. Linux computers with cups installed and running but no firewall were revealed yesterday to be vulnerable to RCE.

My Wayland Your Wayland Our Wayland in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 19 points 1 month ago

This is great:

What if my experimental protocol is approaching the 3 month removal period but I am missing ACKs due to reviewer inactivity?

Contributors engaging in good faith protocol development should not be penalized due to reviewer inactivity. It is advised that experimental protocol authors post memes to the base MR until reviewers become active.

What if an experimental protocol author posts memes to the MR for many months rather than furthering development?

It is expected that protocol authors are seriously attempting to reach staging/ status. If it is determined by members that this is not the case for a given experimental protocol after a three month period has elapsed, the one week removal notice may be invoked regardless of how good the memes may be.

What's a standalone open source project that does file searching? in c/selfhosted@lemmy.world
[–] forbiddenlake@lemmy.world 12 points 3 months ago

Do you need more than locate offers?

https://wiki.archlinux.org/title/Locate

AMD Ryzen 9 9950X & Ryzen 9 9900X Deliver Excellent Linux Performance Review in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 5 points 3 months ago (1 children)

Handbrake uses avx512 and zen5 significantly improved on avx512

http://numberworld.org/blogs/2024_8_7_zen5_avx512_teardown/

Various distros across different families freezing when doing package manager updates in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 2 points 3 months ago* (last edited 3 months ago) (3 children)

What hardware? And can you narrow down when during updates?

I had this problem on Arch on a 5 year old Lenovo laptop with an Nvidia 1660ti GPU. With judicious use of set -x I narrowed it down to systemd daemon-reload.

I actually changed my ext4 journal mode and added a pacman hook in that calls sync before any systemd hooks ran, after the second time half of the package updates got lost due to the freeze.

Because the problem only happened most times, and usually not soon after a reboot, I can't prove it, but the problem hasn't reoccurred since I switched the Nvidia driver to the open flavor.

[Very bad take] Why open source are not that important (servers and IT) in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 3 points 4 months ago (1 children)

I wouldn't recommend watching it,

So why are you giving him views by prominently linking it? It looks like you're just bringing the rage bait here.

[SOLVED] still cannot open a transmission port, what am I doing wrong? in c/linux@lemmy.ml
[–] forbiddenlake@lemmy.world 13 points 5 months ago

You can still torrent without forwarding a port, for example by only making outgoing connections. But that may limit your speed, and figuring out forwarding should help.

Which of these VPS providers would you recommend? in c/selfhosted@lemmy.world
[–] forbiddenlake@lemmy.world 6 points 7 months ago (1 children)

Of all those, I've only heard of Heztner. Am I out of touch?

I've been a Linode customer for years, and I used to use Digital Ocean as well. I've been happy with them, did you consider them?

Comcast: "Starting today, new and existing customers can take advantage of the following speed increases: in c/technology@lemmy.world
[–] forbiddenlake@lemmy.world 1 points 8 months ago* (last edited 8 months ago)

None that article, but check my other reply and check your plan. You may be pleased, I was.

Comcast: "Starting today, new and existing customers can take advantage of the following speed increases: in c/technology@lemmy.world
[–] forbiddenlake@lemmy.world 1 points 8 months ago

The marketing fluff doesn't, but they actually did increase upload speeds. Mine went from 10 to 20 up. And here is the DSL reports forum thread from when this round started.

Also, they are testing larger increases. I could get 100 up today, if I had a supported modem.

So, check your actual plan and modem to see what you have now.

22
Self-hosted Content-Security-Policy report, etc, collector/displayer? (lemmy.world)
 

tl;dr: self-hosted report-uri.com ?

I messed up my site's Content-Security-Policy and blew up my report quota on report-uri.com last month. I'm happy with them, but I don't really want to pay for this service, and I want to avoid that in the future. So I'm looking for something(s) to:

  1. Collect Content-Security-Policy browser reports (go-csp-collector is sufficient here, if not great, as it doesn't support the newer Report-To) and log to JSON (or whatever)
  2. Collect other browser reports such as NEL, Deprecation, Crash and log to JSON
  3. Collect SMTP-TLS and DMARC email reports and log to JSON
  4. Display them somehow for searching and for seeing trends: preferably something less manual than Grafana, but I can collect the logs and do custom dashboards in Grafana that parse JSON (or whatever) logs if I need to.
  5. Let me filter incoming reports based on various things (like ignore CSP reports with no URL)

In my searches I found plenty of SaaS and no source code for the whole thing. Sentry and its clones are too much; I don't want to instrument an app I don't have. I did find plenty of 5-year old abandoned projects, though.

So, what's out there in this space for self-hosting?

For reference, report-uri.com looks like the below, with the ability to drill down and filter and see reports.

view more: next ›