43% health?? Sounds like a faulty battery, probably still under warranty if you’ve only had it for a few months (< 1 year).
Warranty instructions: https://frame.work/warranty
helpimnotdrowning.net (eternally unfinished)
43% health?? Sounds like a faulty battery, probably still under warranty if you’ve only had it for a few months (< 1 year).
Warranty instructions: https://frame.work/warranty
yes, it’s mostly things like games or software
though, I have seen more & more reports of people finding malicious disguised LNK files in their downloads and torrents, which will run some arbitrary command if you open that: Windows does not ever show the LNK extension, so a file could be named “<whatever>.mkv.lnk”, and you would only know if you checked the “file type” column in Explorer (which would read “Shortcut” instead of something like “Matryoshka file”), or when you see the cmd.exe window flicker open and close.
bonus edit: LNK is the native file extension that Windows uses to link app shortcuts, such as the shortcuts on your desktop.
I haven’t had any issues since April-ish. Try refreshing your blocklists: in your Settings Page > Filter Lists, click the little clock icons next to the list names to force-refresh
This might also become a hassle since basically all residential connections (likely of OPs friends) have dynamic IPs - if someone wants to join while OP is away, but their IP has changed since their last connection, now they have to wait on OP to update the firewall rules.
Apart from getting your MSA token stolen, there’s not really much that can get around server login (yet). All online-mode logins pass through Microsoft (part of the reason why Xbox service outages seem to affect Minecraft so much).
If your friends all individually seem to stay within some certain IP ranges (ex, first handful digits always stay the same, 12.34.56.xx), then I’d say go ahead with whitelisting them fully (ex, 12.34.56.xx --> 12.34.56.0/24, CIDR notation). If they jump around unpredictability, I would stick with the username-based whitelisting and online-mode-only.
Do you have any posts/reading on the win32 additions to the kernel? I vaguely remember something similar being talked about some time ago, but I can’t find anything right now.
as long you are only forwarding Minecraft’s 25565 port from your router to your server machine, it should be fine. Just make sure to keep Online mode on, use the whitelist, and get your plugins from trusted sources. Otherwise I wouldn’t worry too much.
I see others recommending VPN solutions like zerotier for your friends to connect to; I don’t personally feel like this is necessary, and (in my experience), making your friends do more technical setup than just connecting to the server is often a big turn-off.
Bonus: If you ever take a peek at your server logs while it’s running (and exposed to the Internet, if you avoid said VPN solutions), you might notice a lot of weird connections from IPs and usernames you don’t recognize. These are server scanners and threat scanners that look for vulnerable servers to connect to and exploit. This is normal and you’ll be fine as long as you keep that whitelist and stay up-to-date on developments in the server admin space.
I’ve acknowledged that, while convenient, my (small) setup is still a burden that I would be asking someone to take. If your friends don’t already share your passion or knowledge for Linux/Docker/the intricacies of <whatever you may be running>, I doubt they’d be willing to take on what you leave them.
My friends had a family member who had a giant setup of Raspberry Pi’s that did Pi-hole, Home Assistant, F@H, among many other services and machines (there were like 6 Pi s!). They passed some time ago, and there’s just no one in the family who was willing to take on the responsibility to learn how to manage everything that was going on—services have been slowly degrading/going down since then.
Those who rely on your services will just go back to using Google Drive, watch-anime-free.org.ru, and pressing “Open LAN world” in the Minecraft client. I don’t think it’s okay, but if you’re out of the game, you won’t be there to object.
That is to say, if you DO have friends that are knowing and willing, you need to leave plenty of good documentation. I haven’t been one to write much of anything, and I’ve already fucked up my shell profiles again because of no documentation, but I can give some general pointers:
Basically, leave meaningful comments that explain why something is the way that it is. You should be able to use this documentation yourself as reference material. Keep this documentation updated regularly, as frequently quoted “bad documentation is worse than no documentation” (or something like that)
(sorry if this last section in particular doesn’t make much sense, I haven’t slept in $hours. feel free to ask for clarification!)
Big fan of running cat file.json | ConvertFrom-Json
and just being able to do things quickly!
Decided to buy another drive instead of doing any more harm than I needed to, no worries
unfortunately I was, lol
I’ve already bought another drive to avoid this funky shuffling, so I should be fine now
What’s the advantage in btrfs over ext4? I’ve kept hearing about it since I started with Linux but the only advantage I can see with it is the snapshot rollback feature, which while useful looking, I don’t think would be something I would use
Yep, I’ve just ordered another 8tb to copy to and avoid the headache that could be a drive failure. And it’ll certainly be faster, gparted is still giving a 13 hour ETA for the first resize! Thanks for the help!
The docs say jellyfin-ffmpeg is only needed on Debian distros, like Debian itself or Ubuntu, other distros like Fedora should be able to use their respective ffmpeg packages. https://jellyfin.org/docs/general/installation/linux#ffmpeg-installation
Is there a reason you can’t have root on your VPS? Maybe you could ask to have Jellyfin and ffmpeg installed by an admin?
If your willing to try it, you could unpack the .deb file with dpkg -x <jellyfin-ffmpeg-for-your-distro.deb> <unpack dir>
and stick the resulting directory (directories?) in Jellyfin’s PATH, but I’ve never tried this myself and I don’t know how well this could work.
No issues with the GPlay version on Android 11
due to the way the Fediverse works (servers hosted on many different machines rather than one large machine), text search isn’t (officially) possible. on Mastodon you have the option of searching by hashtags, but I don’t think that works on Lemmy.
you would have to use an external search engine like DuckDuckGo, Google or something like https://www.search-lemmy.com/
TLDR; No
It hasn’t been necessary in a long time, unless you’re a developer who frequently needs to type in filenames in everywhere (since the command line needs extra protection against spaces and other symbols)
The OS (Windows, Mac, Android, etc) handles thar all for you so you don’t have to worry about it (unless you happen to use a badly-written program that doesn’t understand spaces, but this is super rare to begin with, and more protected against as time goes on)
I don’t think sites can request attestation yet, for vpn ips it’s usually that the ip/ip block has shown “suspicious” behavior & got reported either manually or picked up by bot sensors.
(Now of course it’s also bad to let Google and friends be the arbitrator of good and bad IPs, famous for the destruction of truly self-hosted email (among other things))
Basically, the idea is that a server can refuse to serve you (or degrade your experience with captchas/heavier restrictions) unless you (your device) complete a “challenge”. This could be something like the browser (through a system API) checking some device details like
etc. Basically making sure the “environment” is clean and not tampered with (trusted).
The problem is with what defines a “trusted” environment. It could start at just making sure the device isn’t rooted (like Android’s Safetynet/Play Integrity check; most people don’t root their device & don’t/won’t care, also easily justifiable since it can be a security vulnerability because the device is “wide open”).
Then, like the article mentions, the device makers (Google (phones, chromebooks), Microsoft (Windows, Xbox), Apple (macOS, iOS, visionOS, etc), Meta/Facebook (Oculus), etc) could change their terms for attestation and deny approval on stricter, potentially anti-consumer criteria such as device age (forcing you to buy more things).
What do you mean by privacy? If you mean like other people you may live with/come across having access to your data, the best solution is having an encrypted drive/partition. No DE or standard login is going to stop a determined threat actor from just pulling out your storage device and reading off what’s on there.