moonpiedumplings

@ moonpiedumplings @programming.dev

Posts

25
Comments

512
Joined

3 yr. ago

moonpiedumplings @programming.dev 9h ago

They like to randomly delete them. It happened to me and a friend.

12h ago

Quick guide on using the Eduroam university internet on Linux

moonpiedumplings @programming.dev 12h ago

Use networkmanager. Other alternatives technically work but I have has seen many people struggle with alternatives, they are not as smooth.
Follow the instructions for connecting on android devices. The options will be named the same.

Linux @programming.dev

2d ago

Bluetooth streaming from phone randomly stops

KDE @lemmy.kde.social

2d ago

Bluetooth streaming from phone randomly stops

2d ago

Best remote control option to support non-techies

moonpiedumplings @programming.dev 2d ago

Did you try meshcentral? It's a selfhosted MDM.

2d ago

Why is self-hosted voice chat so hard?

moonpiedumplings @programming.dev 2d ago

It's easy. Mumble. Or the thing you used probably still works.

But you see, people never actually seek a discord alternative. They want a discord alternative that includes all the features in one app that is also federated, AND end to end encrypted, and each one makes things vastly more technically challenging and resource intensive and then you want them together.

A little secret: Matrix is much, much easier to host if you disable encryption and federation. Federation to many servers is the main performance killer, and "failed to decrypt message" will all disappear if you disable encryption.

2d ago

Cheap or free periodical externals scans

https://www.neowin.net/news/crowdstrike-broke-debian-and-rocky-linux-months-ago-but-no-one-noticed/

moonpiedumplings @programming.dev 2d ago

If your software updates between stable releases break, the root cause is the vendor, rather than auto updating. There exist many projects that manage to auto update without causing problems. For example, Debian doesn't even do features or bugfixes, but only updates apps with security patches for maximum compatibility.

Crowdstrike auto updating also had issues on Linux, even before the big windows bsod incident.

It's not the fault of the auto update process, but instead the lack of QA at crowdstrike. And it's the responsibility of the system administrators to vet their software vendors and ensure the models in use don't cause issues like this. Thousands of orgs were happily using Debian/Rocky/RHEL with autoupdates, because those distros have a model of minimal feature/bugfixes and only security patches, ensuring no fuss security auto updates for around a decade for each stable release that had already had it's software extensively tested. Stories of those breaking are few and far between.

I would rather pay attention to the success stories, than the failures. Because in a world without automatic security updates, millions of lazy organizations would be running vulnerable software unknowingly. This already happens, because not all software auto updates. But some is better than none and for all software to be vulnerable by default until a human manually touches it to update it is simply a nightmare to me.

3d ago

Cheap or free periodical externals scans

moonpiedumplings @programming.dev 3d ago

Second comment, but also investigate Wazuh. It can audit systems and report vulnerabilities. It's not an external scanner, but I have found it to be more effective and less annoying than greenbone/openvas.

3d ago

Cheap or free periodical externals scans

moonpiedumplings @programming.dev 3d ago

Instead of trying to automatically scan your environment, it's probably better to figure out how to automatically update applications first. CVE's eventually get patched.

4d ago

I’m done with RAID5

moonpiedumplings @programming.dev 4d ago

No, isn't it only software raid5 done via btrfs?

Btrfs + hardware raid should work fine. The OS can't tell the difference anyways.

5d ago

GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform

Fermi is just a custom client for discord/spacebar. It's not federated.

5d ago

GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform

It's not federated, just easy to self host and point custom clients at.

5d ago

GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform

Faster than my edits, I see.

5d ago

GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform

https://hub.docker.com/r/spacebarchat/server

Docker compose's don't really need to be maintained though. As long as the app doesn't need new components old docker composes should work.

EDIT: Oops, it does look like spacebarchat's docker images have last been updated over 2 years ago:

EDIT2: Although this is outdated, I think their github repo has an action to autobuild docker images on pushes. Still investigating.

EDIT3: Okay, they don't seem to be actually ran.

But using nix to build a docker image is pretty cool.

EDIT4: Oh shit, the docker image build workflows were added just 2 hours ago. Of course they haven't been ran!

Docker support soon, probably.

EDIT5: the workflow ran, but it looks like it's private for now.

Selfhosted @lemmy.world

github.com /spacebarchat/spacebarchat

5d ago

GitHub - spacebarchat/spacebarchat: 📬 Spacebar is a free open source selfhostable discord compatible communication platform

5d ago

Question: Is there a Self Hosted Discord like app?

https://github.com/spacebarchat/spacebarchat

Literally reverse engineered discord, made open source.

5d ago

Discord will restrict your account next month unless you scan ID or face

It's not that hard though. There are companies that offer data recovery as a service. If the value of the data on those drives exceeds the cost of those services then it becomes worth it to fish one of the drives out of the dumpster and take it there.

5d ago

Discord will require a face scan or ID for full access next month

Honestly, the best solution to 1 may be to simply deploy mumble in addition to matrix (or other chat apps).

5d ago

Discord will restrict your account next month unless you scan ID or face

This is not truly foolproof. Data can still be recovered from the spinning metal platter since it can theoretically be removed and put into a recovery device, even in a broken state.

Im addition to that, hard drives/ssd's sometimes have small flash memory chips, from which data can sometimes be recovered.

If you want it to actually be unrecoverable then you have to actually ensure all parts thay store data are truly deleted/wiped, which is more than just the core platter. Or just use encryption and throw away the key, since all data going through the tiny OS on these devices will be encrypted. Or just store them forever in a vault.

Ask Lemmy @lemmy.world

6d ago

What's the minimum number of food items you can survive on exclusively and what are they?

1w ago

Memory compression on hypervisor vs host

moonpiedumplings @programming.dev 1w ago

Unless you are running at really large scales, or really small scales and trying to fit stuff that quite fit, memory compression may not be significant enough of an optimization to spend a lot of time experimenting a lot. But I'm bored and currently on an 8 GB device so here are my thoughts dumped out from my recent testing:

Zram vs Zswap (can be done at hypervisor or at host):

One or the other is commonly enabled on many modern distros. It is a perfectly reasonable position to simply use the distro's defaults and not push it any further
Zram has much, much better compression, but suffers from LRU inversion. Essentially after zswap is full, fresh pages (memory) goes to the swap instead. Since these pages will probably be needed, it will be slower to get them from the disk then to get them from zram.
Zswap has much, much worse compression but cold, unused pages are moved to swap automatically, freeing up space
I am investigating ways to get around the above. See my thoughts on this and other differences here: https://github.com/moonpiedumplings/moonpiedumplings.github.io/blob/main/playground/asahi-setup/index.md#memory-optimization

Kernel same page merging (KSM) (would be done at hypervisor level) (esxi also has an equivalent feature called something different):

Only really efficient if you have lots of the same virtual machines
Used to overcommit (promise more ram than you physically have)
- Dangerous, but highly cost saving. Many cheap VPS providers do this in order to save money. You can run four 8 GB vps on 24 GB of ram and take a semi-safe bet that not all of the memory will be used.

In my opinion, the best thing is to enable zram or zswap at the virtual machine level and kernel same page merging at the hypervisor level, assuming you take into account and accept the marginal security risk and slightly weaker isolation that comes with KSM. There isn't any point running zswap at two layers, because the hypervisor is just gonna spend a lot of time trying to see if it can compress stuff that's already been compressed. Than KSM deduplicates memory across hosts. Although you may actually see worse savings overall if zram/zswap compression is only semi-deterministic and makes deduplication ahrder.

I agree with the other commenter as well about zram being weird with some workloads. Like I've heard of I think it was blender interacting weirdly with zram since zram is swap, making less total memory available in ram, whereas zswap compresses memory. If you really need to know you gotta test.

1w ago

VirtualBox upstream now supports KVM as a (still experimental) backend on Linux.