moonpiedumplings

@ moonpiedumplings @programming.dev

Posts

28
Comments

560
Joined

3 yr. ago

https://programming.dev/comment/22662028

moonpiedumplings @programming.dev 5h ago

It's not quite a VPN, but it is very resistant against blocking:

17h ago

Your logging is probably down

https://github.com/pgautoupgrade/docker-pgautoupgrade

moonpiedumplings @programming.dev 17h ago

Or if you are on k8s, you can use cloudnativepg.

3d ago

Your logging is probably down

https://wiki.hackerspaces.org/List_of_Hacker_Spaces

moonpiedumplings @programming.dev 3d ago

https://infosecmap.com/

Also check out meetup.com for linux user groups and other events.

4d ago

Permanently Deleted

Mindustry (open source)

4d ago

Remote KVM recommendations

Also check out meshcentral. Important thing aboout meshcentral is that it lets you hijack the users screen, show you can show them step by step through things. RDP doesn't do that, it kicks the other user out.

4d ago

Finally, an optimal monitor configuration!

https://sprocketfox.io/xssfox/2021/12/02/xrandr/

Edit: someone already posted it somewhere is in the thread lmao

4d ago

Permanently Deleted

No, because proton is not Windows. Wine only works on Linux, so it's actually a Linux platform. I consider every developer/publisher who targets proton to actually be targeting Linux, rather than windows. Every single time a windows update breaks something that continues to work on proton I laugh

4d ago

Permanently Deleted

Yes but the steam runtime is basically an entire Linux installation (that never gets updated) that valve drags onto your system. I found it greatly annoying when I wanted to use Steam Input (because that would make Nintendo Switch pro controllers work) on a laptop with 32 gb of storage and steam dragged along 4 gb of ubuntu that I was never going to touch (since I was playing games outside of steam using wine directly).

4d ago

Free ways to listen to EPUB files at 400+ WPM on Android?

Hmmm. What about converting epubs to audio files and then speeding them up? You could do this process on a computer, or probably in termux on the android device.

4d ago

An actually functional webproxy to self-host

By the way: https://en.wikipedia.org/wiki/Shadow_IT

4d ago

An actually functional webproxy to self-host

So, my high school used to have a domain/ip whitelist. The trick to get around whitelists is to take advandage of the fact that whole subdomains or cloud providers would be included in the whitelist.

Any duckdns subdomain, or anything hosted on many cloud providers would be unblocked.

So holy unblocker has a one click deploy, which can deploy to PaaS sites which would usually have their entire ip address space and subdomains included in the whitelist.

@myszka@lemmy.ml

5d ago

Considering self hosting my own git repositories. What are some options?

You should probably migrate now, forgejo is currently a soft fork that is fully compatible, but in the future they are planning to hard fork and not be compatible. Well, they are in the process of doing so right now.

5d ago

Search self-host user groups and access management

Second comment, but also check out midpoint by evoloum: https://docs.evolveum.com/iam/

It is a modern web frontend on top of Active Directory.

5d ago

Search self-host user groups and access management

Use an Identity Provider (IDP)*. Other people have mentioned LDAP, which can play this role.
Use groups within the IDP to declare who has what privileges.
Apps using the IDP for auth can read the groups and allow/deny permissions based on groups.

*Or Identity and Access Management if you are in the cloud ig.

For open source solutions, I would recommend:

Authentik (what I use)
Kanidm (doesn't have web ui)
Nubus by Univention

These three solutions all have invites, ldap, and can act as oauth providers. (Oauth is single sign on), which are the features I want. There are also integrated, including it all in the one app.

There is also LLDAP, which is a web ui for ldap, and then you could use a service that connects to that, like authelia or keycloak, to add oauth on top.

5d ago

An actually functional webproxy to self-host

No, Socks5 does not work for this usecase. You don't get permissions to run it locally via crostini (or use crostini in general) and the relevant proxy settings are locked in the chromebook settings. In addition to this, it is too easy to fingerprint, and some of the more aggressive setups will catch it and block it. For example, my high school would autodetect wireguard and then kick you off of the network for 10 minutes if you attempted to connect.

5d ago

An actually functional webproxy to self-host

These kinds of setups are used to bypass agressive network filtering and content censhorship. All the traffic is http(s). And then the way only a browser is needed means it works on locked down devices like chromebooks.

The browser in docker is something I have used, but it requires more resources to host and can only be used by one person at once if you are using something like linuxserver's webtop.

5d ago

An actually functional webproxy to self-host

Yeah you want the titanium networks projects, which are essentially a bunch of web proxies exactly like what you ask for.

I used to use Metallic, but it's not actually that good and not maintained anymore.

Here is a public instance of holy unblocker: https://uc.robby.blue/scramjet

This is one of their flagship projects, and is what you want. Self hostable of course, code on github. I preferred the projects that give you internal tabs though, like hypertabs or anura.

Public anura instance: https://anura.pro/ (but anura looks like a pain to self host, it's much more complex)

5d ago

Working to Decentralize FedCM

This requires manually enabling every additional provider.

No, it doesn't. The docs are confusing on this, but forgejo has two methods to enable oauth/oidc. One is to manually enable them, but there is a second, where people bring their own openid link.

The docs contain 3 things related to oauth:

Oauth provider forgejo acts as oauth for someone else
Ouath client — This is the one where you manually enable providers
But then there is a third config. Openid. This one lets users bring their own openid/oauth link and sign in with that. No manual configuration required on the side of the forgejo server per oauth provider being used.

6d ago

Setting up a testing lab