Store the secrets on a Yubikey. They are unstealable then.

Yubico has their own GUI app or you can wrappers for their CLI tool to use something like dmenu, rofi or Fuzzel to pick one.

Thanks to all for the feedback. I have a UPS installed and running now.

Confirmed this was a lie. Accidentally unplugged the device, turned it back on-- no factory reset.

Confirmed this was a lie. Accidentally unplugged the device, turned it back on-- no factory reset.

Ok, this prompted me to root-cause the issue. A bad cable between laptop and USB dock seems most likely. Hardware issue, not Linux!

Linux revoked my mic permissions in the middle of a call today, on Google Meet. Happened before on Zoom.

I have not root-caused it to see if there was flaky hardware or what.

If you run for office to be different from all the rest and win, do you immediately become corrupted upon election?

Nice. What do you use wifi access at home? One thing the AT&T box has done well enough has been to provide wifi access throughout the house.

Yes, we went over this point multiple times, including the distinction between a reboot and a factory reset. He said the device does this to “protect itself”. Although I only care about protecting from blips, I think a small UPS may be the way to go. Though guess that means if the power is out for more than 15 minutes, my AT&T modem may still factory reset itself!

The marketing mixes metaphors, talking about gardening, growing, curating… all part of sustainable process that includes plants dying.

It also uses words like forever and permanent.

Having content live forever is at odds with metaphors of the natural world, where things naturally die.

Clickbait headline.

SSNs have been understood to not be a reliable “secret” for years and were never intended to be one.

The solution has always been to quite treating them that way, not to repeat the same mistake of creating yet another database full of new SSNs which would also be quickly compromised.

How does it handle helm features that are not valid compose features? Silent failure or loud warning?

Or you could change the preference to enable the feature again.

To explain how HAproxy and competing tools solve this:

Two servers are prepared to be the single reverse proxy, but one is active. They constantly communicate with a “heartbeat”. When the active one fails to send a heartbeat, the secondary executes the steps to become the active primary. When the primary’s heart starts beating again, it becomes active again.

So there can be a few seconds of downtime, but the failover is automatic.

Yes, especially if people use the “latest” tag, trusting whatever the container might be updated to do in the future.

I am using Navidrome and if it has significant bugs, I haven’t run into them yet.

That’s not what the FAQ says, rather it says Flatpaks are often sandboxed but not fully containerized. Containers don’t need to have a performance penalty because they run on the same kernel as the host. Container tech applies a chroot, disables some capabilities within the container and that’s about it. They are in contrast to virtual machines that need to boot an entire additional OS before doing anything.

Part of the app resides on the GitHub infrastructure, where GitHub stores, processes and displays results. So their costs are not zero.

But GitHub could take a “tax the rich” approach to pricing by charging enterprise customers more for self-hostingand leave it free for others.

A lot of open source is funded like that— most funding for a project comes from a very few companies and everything else uses it free or for very low donations or costs.

My job involves maintaining Linux servers so there are no problems with Linux as my desktop.

Currently Arch Linux as the desktop OS.

You have never had some family member experience a broken website that they needed to work but you were not around to fix it on the server side?