Glad you are okay. I got out yesterday too and the scenes of the city were just an absolute mess. Glad the cell towers are back online, so many people I saw yesterday were just trying to find a spec of reception to get even a single text out to their loved ones to let them know they were still alive.

It’s going to take quite some time to repair all the damage and get power back up, but I saw the National Guard rolling in as we left with tree chippers 🙏

Opinion? Try again. It’s called slander.

I happily use Fedora for workstation purposes but hate to admit I use it, so it’s an accurate critique. It’s a great operating system though, naming aside.

It literally was in the opening paragraph. Previous years keynotes are available in a playlist here, so I assume they’ll do the same for this year’s keynotes as well. The event only just ended yesterday.

Open Source Summit 2024 keynotes. I don’t think any of the recordings are available yet.

The malicious code is only thought to have affected deb/rpm packaging (i.e the backdoor only included itself with those packaging methods). Additionally, arch doesn’t link ssh against liblzma which means this specific vulnerability wasn’t applicable to arch. Arch may have still been vulnerable in other ways, but this specific vulnerability targeted deb/rpm distros

I hope you’re right and this isn’t about them getting ready to DRM brush handles to brush heads. Sonicare brush heads are ridiculously overpriced compared to the knock offs

This is a feature of SATA devices too. Use UUIDs in your fstab unless you enjoy playing musical chairs with your mount points

Been a sync user since 2010. LJ has taken a lot of breaks but has always come back

You need to use chown if you want to own the libs

It was a sad day when my Metroid Prime 4 pre-order at Amazon with a very nice discount got cancelled

I don’t actually know the answer, but I couldn’t resist digging at least just a little bit. My gut tells me that it’s probably related to rad fem in some way, like with gold star lesbians etc and that somehow trans people are involved.

The only thing I could really find was the term “bi lesbian” which is just a way to invalidate the identity of multiple groups of people at once.

I think maybe some people might be uncomfortable identifying as a label of lesbian, and there are other ways to express this, like wlw. Also for some, lesbian still carries a stigma or implies a connection to porn. Maybe that just means we should work on reclaiming it though, instead of shunning the label

The LE steam decks are shipping with a screen manufactured by BOE.

Mine just arrived and indeed has 3 dead subpixels (2 blue, 1 green)

LE, order placed 10:19 Pacific. Not shipped yet, but packaged. Guess the Canada shipping backlog is real – hopefully it comes this week.

But you actually don’t know what monero is being used for when it’s used in transactions, no one does. You just have a bias that if people want to keep their transactions secret, it must be illegal.

You could make the same argument for cash.

This is called the “Door in the face method” of bargaining. Start with a request so high and absurd that you “slam the door in their face” because it’s so absurd.

The next time they try, they’ll come back with an offer that sounds far more reasonable than the original request. Since you’re still primed with the previous context, your brain makes it sound less bad than it probably is ("At least it’s not the first offer!). You’re more likely to accept after this.

The opposite technique is called “foot in the door”, start with a small request (get your foot in the door) and then increase the ask after the small request goes over.

This will probably use some well-defined api endpoint to do their telemetry check-in, so this could probably be effectively circumvented if users were willing and able to do host level overrides to specifically prevent the unity engine from phoning home

You need a budget, but it’s not free.

But with Intuit, you are the product, so it’s only free in the sense that they get your info and you get mint in return.

I don’t really use it for this, but here are some things I do use it for:

• metrics scraping on servers without needing to open ports or worry about ssl encryption. Works great for federating Prometheus instances or scraping exporters
• secure access to machines not directly exposed to the internet. I.e. ssh access to my home box while I’m traveling
• being an exit node for web traffic while traveling. I.e. maybe you are traveling and have a bank who is giving you grief about logging in – masquerade that connection from your home IP

I mostly just use it for metrics scraping though

I mean you could just use docker and if all you want is a plex container, it may be the way to go. Kubernetes is definitely a lot to learn if you are kind of hesitant to get started with it in the first place. I would just say that single binary distribution like k0s just basically becomes a docker on steroids when used in a single node environment. I’ve become so familiar with k8s that going back to docker feels like a massive downgrade for anything but a simple and straightforward task (which a single plex container, admittedly is).

Just do yourself a favour and if you go that route, at least use docker-compose to template your container. Searching through your bash history to find the command you used to start the container is just a recipe for frustration waiting to happen.

One major feature that k8s has which docker doesn’t (I mean, there are lots tbh) is the ability to use helm charts. These are basically install templates, if you don’t like the defaults then you can provide your own (assuming the chart author has written good charts) and the helm chart will template your values into the default chart and spin up a bespoke version for you.

For instance, a theoretical helm chart whose purpose is to install qbittorrent would likely provide the following:

• the manifest to run a version of qbittorrent
• a cluster IP to expose the plex web port internally
• an “ingress” object to connect your nginx frontend to the qbittorrent web port so that you can go to mydomain.com/qbittorrent and qbittorrent appears
• a volume mount to store your data in

However, say this ingress by default doesn’t use SSL, but you want to ensure you’re using https when you enter the password on your web interface, but the rest of the chart defaults meet your needs – then a well written chart would allow you to provide values that let you template the SSL setup for the ingress object and provide for cert-manager to go and provision some certificates for your provided hostname with Let’s Encrypt.

Helm charts basically are a way to provide a sane set of defaults which can be extended and customized to personal needs.

k8s (or the lightweight cousins) may not be ideal for you and, as I said, I’m biased because I’m a certified k8s admin, so tinkering with k8s resembles something like fun for me. Your mileage may vary :)

Terms:

• batteries: this isn’t a kubernetes term, just a figure of speech. You got a new toy and it came with batteries – you didn’t have to supply them yourself. The batteries were included (i.e. the installation was opinionated and came with a pre-existing notion of how you should use the application). I wrote that last comment from my phone, so I may have misused the term in an attempt to get a response written on my phone
• pod: a collection of containers running in tandem – for instance, if you had nginx and plex running in the same pod, then plex can find nginx ports as if they were sharing the same machine (127.0.0.1 is the same for both containers). If you had nginx and plex running in different pods, then you would need to use a service to allow them to communicate with each other (which they could easily do with the cluster’s dns service)
• manifest: a yaml file containing the spec of your containers (name, container port, image to use, volumes to mount). This would basically equate to a docker compose file, but manifests can also define services, namespaces, volumes, etc. In that regard a manifest is a yaml file that defines an object in kubernetes
• nodeport: a type of service. This one will direct traffic to a given pod and potentially open that service to external services. By default nodeports are given in the 30000-32767 range and will bind to the hosts network interface. The result is that the service becomes available on a port externally. The other service type is clusterip which only assigns an IP which can be accessed internally (i.e. by other pods/services in your cluster – for instance if you had a mysql service you wanted to expose to a web/application pod but not let the world access it, then clusterIP lets you do this). The final service type is loadbalancer which is a bit more complicated (TLDR, these are frequently integrated with cloud providers to automatically spin up actual load balancer objects, for instance, at AWS, but can also be used to bind services to privileged ports on your external IP while leveraging something like “MetalLB”)