Re: I don't care what the experts say....
there are free IPv4 to IPv6 tunnels out there. I've been using he.net for a long time.
10282 publicly visible posts • joined 1 May 2015
no NAT for IPv6
well there IS a spec but I have not heard great things about it nor widespread use (other than NAT-PT which is IPv6<->IPv4 and not what you were looking for, probably)
All IPv6 addresses (with a few exceptons) are public.
For privacy, it looks like we should use VPNs or SOCKS proxies.
An ISP could provide this service or you could just use the Tor network so long as it has IPv6 exit points (I do not know, probably does, my guess).
Seriously though if you have a fixed IP(v6) address (like a home office or a business) you just assume you're being tracked, and an IPv6 /64 will be trackable based on the prefix anyway. So yeah, for true privacy, Tor or a proxy or a VPN..
And tracking is the LEAST of the problems. A windows box with an IPv6 address that is NOT firewalled by a non-windows "something" is like being promiscuous in a series of adulterous activities. NOT a matter of IF you get a virus (or whatever), but WHEN.
(I remember WinNuke, and I still see ALL of those open ports on any windows box connected to my network, and Micros~1 firewall does not, In My Bombastic Opinion, inspire ANY sense of confidence and/or security for stopping malware or outright attacks)
or WORSE, demands a LARGER HR DEPARTMENT managed by the same people who think up questionaires like this. After all, if they're not finding enough applicants, they just need MORE PEOPLE in HR to read and filter MORE RESPONSES!
Wow a train wreck! Let's fix it, by sending MORE TRAINS!! (saw that in a Futurama episode when every human except for one got really stupid when the giant brains invaded)
I have to ask who is wasting time reading the responses to those questions... and what silly questions were THOSE PEOPLE asked in order to be hired to read people's answers to even SILLIER questions... and it goes on and on and on and on in my mind, like a bad bureaucratic nightmare from HELL...
(how can a company like this make money?)
If I were interviewing candidates I would have questions like "what would your close friends/family say is your most annoying trait"
If someone asked ME that, I'd probably say something with the words "Fuck" and "OFF" embedded within. You should ask something relevant like "How would you solve a problem like ...' and skip the amateur psychology.
playing in a jazz band isn't going to win me the job.
From MY perspective, you should gain a LOT of points for that one (creative people do creative things, and Jazz implies improvisation, which is EXTREMELY creative In My Bombastic Opinion). But the way in which the questions were framed leaves too much ambiguity as to what they're looking for. You could add to your Resume/CV that you are a musician and achieve the same effect.
maybe the recruiters were extemely unpopular in school when they were teenages and are secretly out for some warped kind of revenge (like an extreme grudge coupled with cancel culture) ? You know, TW[A,I]TTER [ab]users!!!
"*I* am in charge now, and *I* can EXCLUDE YOU now, because *I* have *Da POWAH* !!!"
(or something else equally psychotic)
during a DH key exchange there's a random value, your "secret" that is only known to you, and the other side should have a similar secret.
If one side re-uses this secret, it can severely weaken the DH key exchange.
Using /dev/random. if the algorithm is both fast AND random (using entropy), each DH key exchange could ideally use its own random "secret" which is ideally also a prime number. This is why some servers _might_ choose NOT to look up new "secret" values and re-use them, from a pool or for everyone (whatever).
So KUDOS to the Linux devs for doing this. Crypto-safe random numbers from /dev/random: a VERY good thing.
(as for the symmetric encryption keys themselves, they too can be generated on the fly via /dev/random if it is crypto-safe)
Vax'ing is MEDICALLY UNNECESSARY if you have antibodies.
And after OMICRON, it's likely EVERYBODY does.
(If I had genetically designed a COVID-19 variant to at least "partially immunize" EVERYONE such that if you were exposed to ONE variant that had VERY LITTLE deadliness and you got ANTIBODIES for it because it was SO contageous, yet had VERY LITTLE CHANCE of you dying from it, that you would ALSO have enough immunity to protect you against OTHER variants BECAUSE of it, I would have designed something _LIKE_ OMICRON to do just that... but it looks like maybe nature did it FOR us, and not like it was not already predicted by immunologists that a virus would typically mutate into a variant like that based on how OTHER viruses do the same thing already)
Time to stop cowering in fear. Time to stop masking like SHEEPLE. Time to stop SHUTDOWNS especially from TYRANNICAL DICTATORSHIPS.
Just get on with our lives already... no more panic, no more lockdowns, no more shutdowns, no more masks, no more draconian VAX mandates, none of that. The population is IMMUNE ENOUGH now. It is OVER. Let it GO AWAY.
(and let's NOT REPEAT THIS MADNESS, EVAR AGAIN!!!)
I would suggest maybe a site like this full of tech geeks doesnt really understand modern user interface design and would rather use a terminal.
a) while getting work done, I have a LOT of mate-terminal sessions running on multiple virtual desktops under Mate - and each has a specific name and a specfic purpose. (I count 9, only one of that has no application windows open on it at the moment)
b) Mate terminal sessions are often ssh'd into other things, so I leave them open out of convenience. And since on FreeBSD my default shell is 'csh' it's nice to have all of that easily searched command history there.
c) pluma with syntax highlights and 'trim extra space off the ends of lines' is my go-to code editor, for everything from C and C++ to php, html, and javascript/css. If you have a hybrid project, that's kinda necessary.
d) if you set up your Xorg correctly (and do not forget to firewall port 6000 if you do this) you can use 'export DISPLAY=some-workstation:0.0' and run pluma natively on THAT machine, with no need to (let's say on an RPi) use an 800x480 touch screen to edit code. Just have it run on your big bad workstation with it's yuge monitor and keyboard and mouse, edit away, use a git repo to manage source files across the multiple machines.
(yeah probably described how a LOT of productive people get things done)
Oh, and that word modern - probably does NOT mean what you think it means!
middle click still works. But I want non-hiding scroll bars that show me about where I am on the page based on their relative position. When searching through a doc or source file or whatever for specific text, and it wraps around, the scroll bar will bounce back up to the top and let you know you've "wrapped".
That and I tend to grab the thing and scroll it like was intended.
Besides - it IS my computer and my theming choice. They SHOULD respect it!
and TRIPLING DOWN apparently on the 2D FLATTY FLATSO McFLATFACE FLATASS rounded-look scrollbar (that is WAY too FORNICATING SKINNY to properly grab with a mouse) and FUGLY Micros~1 Windows-Ape/Win-10-nic/FLATTY look. YUCHHKKKKK!!!!!
NO. Just NO.
TraditionalOk, please, or similar, or GTFO.
But having ALL WEB PAGES AND APPLICATIONS COMPLY with my theming choice for GTK3 and GTK4?? THAT I *WANT*!!
And you can BET YOUR SWEET ARSE that on MY machines, it will NOT be ADWAITA!!!!!!!!!!!!!!!!!!
Within Mate, getting rid of adwaita requires an extra step:
gsettings set org.gnome.desktop.wm.preferences \
theme 'TraditionalOk'
For Firefox, this (about:config):
widget.content.gtk-theme-override = "TraditionalOk"
widget.non-native-theme.enabled = false
Yes it WAS a ROYAL PAIN IN THE ARSE to figure this out. It PISSED ME OFF SO MUCH I *BOTHERED* to figure it out. Those 2D FLATASS millenial SMUGS can SUCK MY FREEDOM OF CHOICE instead of FORCING ME into their 2D FLATSO HELL!!!!!!!!
(see icon - this 2D FLATASS ANTI-FREEDOM crap REALLY pisses me off!!)
wait until the AI spits out a recipe for making the molecules, and/or the equivalent of an organic chemistry C&C machine.
Then someone accidentally leaves it on "auto" and the next thing you know...
Another thing that came to mind while reading the article:
D O _ N O _ E V I L
(that goes double ++ for the medical and pharmaceutical professions)
the war is not universally popular there
It is my understanding that the war is universally UN-popular in Russia, among the regular people. Why would they want to become the SOVIET UNION again?
I have to wonder WHAT LAWS WERE VIOLATED in the (alleged, reported) intentional publishing of MALWARE with the intent of causing damage and copying unwanted files onto people's computers...
because if THIS is TOLERATED, then WHAT'S NEXT?
(think of every wacko out there who ever did things in protest that simply IRRITATE everybody and even cause various forms of damage, from throwing paint on people's fur coats, to filing predatory and/or malicious lawsuits to halt a project over some political or environmental pet pieve... (and YES, I'm talking 'new form of cancel culture' and WOKENESS being a major factor here)
The cost of commuting (especially with fuel prices DOUBLED in many cases, and new cars harder and more expensive to come by) is HIGH, from the amount of time involved to the cost of vehicles, and do not even get me started on the sacrifices often necessary to use PUBLIC transportation... (which in my case became both time AND money even though i could sleep on the train)
Also worth pointing out, the cost of maintaining an office full of people. It would be cheaper for companies to pay for special high speed internet for each employee. Ditch the buildings, order hardware online and have it shipped to home offices, and pay for high speed internet at those offices, and EVERYBODY wins!!!
(for when it is practical, of course - it's hard to make a whatsit from your home office when the assembly line and warehouse are at the site)
a lot of flaws found in windows take the form of "privilege escalation" which is where things like NOT using an admin login fall apart.
Sure, NOT using admin is a good idea. I do this when possible. You won't be able to use anything from "The Store", but who wants those CRapps anyway. And if your user gets infected with some registry polluter, you can always just delete it and re-create it. That kind of recovery is simple. Or you can run tools from the admin user to clean it up (same idea) as the admin user is not likely to have been corrupted. UNLESS... it was a privilege escalation flaw that the malware used to screw you over.
Still it is A level of protection, and should be made use of.
But unless you stay off of 'teh intarwebs' with your windows machine, do NOT use a Micros~1 browser or mail reader, ONLY read mail in plain text without graphics displayed inline, and ONLY view those graphics (or e-mail attachments) with an appropriate viewer program via "file open", you'll probably need a minimal AV program (like defender *cough*) to provide yet another extra layer of defense.
Real security involves using a computer system that is more secure by design, such as GNU/Linux instead of Microsoft Windows, plus being more careful about what you do with your computer.
You are "not wrong". however, for the average user, especially those who actually SURF THE WEB with a windows computer using a login that has administrator-level access, the A/V at least provides a minimal level of defense. (I do not use it, as it mostly gets in the way of software development, but I do not use windows machines for web surfing either, and any e-mail is read by "not outlook" in PLAIN TEXT MODE ONLY and NO inline graphics)
So yeah I call that "safe surfing" but it works best when NOT using a Windows OS.
oh yeah, like it's OUR fault for NOT "turning it off" using an external piece of hardware with a hackish configuration on it... because "they" fixed it so you cannot merely edit the windows hosts file. (even THAT is really too much for an end user to HAVE to do to turn this crap OFF)
We should not even have to CONSIDER doing this in the FIRST place... (it's on THAT level of WRONG)
Isn't Hamburg going TO open source, and NOT reverting to Micros~1 products? I just found a 2020 article that says so, and nothing since to say otherwise.
I think it was Munich that flip-flopped on this but they seem to be back in the open source realm now along with Hamburg.
Imagine having to redo from scratch the whole fragile and utterly complex back office structure
it has been done before (at a significant cost savings, I might add)
I would not consider Windows 3.0 an "F-up". I thought it was BRILLIANT at the time.
Remember how Windows 2.x and even the 386 version were all 2D FLATTY with CGA compatible colors? Well 3.0 fixed this with a 3D Skeuomorphic appearance and IT SOLD LIKE CRAZY, because of the 3D SKEUOMORPHIC APPEARANCE. And solitaire. (good luck finding that in any "modern" version of Windows, unless you like ad-ware or paying for it. Worthy of mention, Aisle Riot on Linux).
So even though ME and Vista were true "F-ups" you have to admit that everything ELSE showed actual improvements worth having the upgrade for... even XP (they focused on game compatibility, which mostly worked).
What I do not understand is how you could POSSIBLY include Win-10-nic in your iist of NON-failures.
how about that TV screen in "Idiocracy" in which 3/4 of the screen was covered with ads and only the middle 25% or so had actual content you WANTED to see.
Cue Micros~1 "New WIndows" in late 2022 or 2023, using up that "unused" screen space and slowly encroaching onto your desktop until the amount of screen space available for actually USING the thing is only a fraction of the size of the monitor. "I'll need to upgrade my monitor to get work done now".
(Cycle of evil continues until it's like IDIOCRACY)
That and frogs being slowly boiled
at the cost of maintaining such older machines, would it make sense to invest money into projects like ReactOS in lieu of buying up the hardware? (you know paid developers and people who are really good at systems programming and even retired Micros~1 employees who understand the nuances, etc.)
Community support with paid developers might get it done.
(that, and maybe some open source help from Linux and FreeBSD if that's at all possible - not sure if ReactOS licenses are compatible with GPLv2 and/or BSD licensing)
having done electronic design for a SIMPLE battery operated device's circuit board, dealing with the inevitable "how do you handle a dead battery without having it swell up like a balloon" problem [none of which was supported by any of the battery charge I.C.s inherently, it required some clever use of discrete MOSFETs and schottkey diodes to create a special blocking circuit that would reset whenever charge power was applied but stay disconnected from the battery once voltage dropped below a certain point), so yeah.
Battery management IS pretty difficult, especially with the ones that tend to catch fire when you get it wrong. And I only dealt with a single cell. Dealing with ICVs (Individual Cell Voltage) and what do you do when one of them gets too low [you do NOT want a CELL REVERSAL] more or less requires a bit more than an old style relay-based voltage regulator like you'd find on a car made in the 1950's.
So yeah. Computer monitoring of the battery is more or less MANDATORY for an electric vehicle. And that is just the battery, not even the digital waveform generators for the motor coils... (unless you want to do regular brush/commutator maintenance or have a short vehicle life, you need brushless motors)
(Amazingly piston gasoline or diesel engines seem quite simple and reliable by comparison)
[athough I would not mind seeing a swashplate design become practical, the piston engine has been perfected for over 100 years and is very very good nowadays]
I have a convertible, and when driving in snow it's the WARMEST car I've ever owned. Something about the nylon (or whatever material it is) weave allows the heat to stay inside the car much better than metal. And of course when weather is nice, top comes down and it's cool as hell.
You do not need heated seats. You just need more convertibles.
and realized they could do without all that extra crap?
yeah my old car does not have those things. Seems fine to me.
(car designers - just because you CAN does not mean you SHOULD, and if you price every vehicle higher because you have too many 'extras' we do not need, you might end up making new cars UNAFFORDABLE along the way)
i was actually hoping that vaccine research for "the virus" would lead to great improvements in medical science... and maybe it has? May not see anything for decades, though. However, the political side of this went off the deep end LONG AGO, from mandates to anti-vax hysteria. It stopped being medicine when politics got involved. And it does not take "rocket surgery" to "follow the money" to see why this happened.
Fingerpointing blame game. Projecting. "See, YOU do this." Justifies them doing it 100 times as much. Politicians do this a LOT.
Yes. Sad.
Or if you like Bible references, something about removing a spec of sawdust from your friend's eye when you have a log stuck in your own eye. Worthy to point out, both are made of wood. "Projecting" (well, a form of it anyway).
Things like Fail2ban help with that
A short time ago I commented on recent attack frequencies, so i decided to chart the number of IP addresses banned per day (just ban count, not unique IP) since forever. Seems 2 or 3 years ago there was an even HIGHER peak for some reason (attempts to crack ssh anyway). So recently it has gone up, but it has actually been higher in the recent past, close to double from what I can see visually.
[and that is simply Fail2ban's ban log, sorted by date, and indicating the total number of bans per day, charted with gnuplot to a PNG file. I should publish it, maybe. I used an aggregation utility I wrote a decade or so ago to sum ban count per day, and a shell script to control it, output to an x,y file and a vertical bar chart in gnuplot)
most of those crack attempts are dictionary login-in names and attempts to log in as 'root'. I do occasionally report them, especially if I am bored, or when they are irritating enough to become "my new special friend".
Article: It is entirely possible that whoever drove this attack co-opted resources at those IP addresses
yes. That was my first impression of what happened, since it explain things the best.
Also a windows zero day might help explain things, too. Or maybe it's just one of the 'Anonymous' group's botnets. Whichever I guess, results are kinda the same for either scenario.
And, limiting to 30-something Gbits (as a DDoS) might just be a function of the data pipe between N.Y. State and China... (not such a fat one after all maybe?)