Readit News logoReadit News
Jenda_ commented on New startup sells coffee through SSH   terminal.shop/... · Posted by u/ethanholt1
fragmede · 2 years ago
Check for yourself with

    ssh -v -i /dev/null terminal.shop
vs

    ssh -v terminal.shop
What you're looking for is that there is no line that says something like

    debug1: Offering public key: /Users/fragmede/.ssh/id_rsa RSA SHA256:xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Upon further testing, the full command you want is:

    ssh -a -i /dev/null -o IdentityAgent=/dev/null terminal.shop
to forcibly disable a local identity agent from offering up its identities as well, and not just agent forwarding.

Upon further testing,

    ssh -o IdentitiesOnly=yes terminal.shop
still offers up my public key on my system (macOS, OpenSSH_9.6p1, LibreSSL 3.3.6), contrary to what StackOverflow and the Internet seems to think. Tested by hitting whoami.filippo.io, linked in child comment.

Jenda_ · 2 years ago
For a cool example (deanonymization), see https://words.filippo.io/dispatches/whoami-updated/ (discussed at time: https://news.ycombinator.com/item?id=34301768). Someone has crawled public keys from GitHub (tbh I was surprised that GitHub publishes them) and set up a database.
Jenda_ commented on Airlines required to refund passengers for canceled, delayed flights   abcnews.go.com/Politics/a... · Posted by u/vyrotek
michaelt · 2 years ago
A lot of the things I hate about flying are things that other people might well be fine with.

When someone tells me to arrive 3 hours before my scheduled departure time, to me it's disrespectful that they would waste so much of my time so unapologetically.

Other people might see it as no big thing, an enjoyable chance to sit and read, or do some people-watching, or a comforting safety margin.

When someone tells me to take off my shoes and belt and shuffle through a metal detector while they take my wallet and keys out of sight, under the constant threat of even more intrusive searches - to me that's extremely undignified. There's no other situation in my life where people can control what I wear, or presume to separate me from my keys and wallet.

Other people might feel reassured by the process, or see it as no different to going to a swimming pool.

When someone demands I walk a needlessly winding path through a maze of tawdry shops selling overpriced perfume, to arrive at an uncomfortable seat surrounded by garish billboards.... you get the picture.

Jenda_ · 2 years ago
+ making you empty your water bottle, and then on some airports there is no option to fill it afterwards (e.g. only hot water available in the toilets and no drinking fountain)
Jenda_ commented on Keep your phone number private with Signal usernames   signal.org/blog/phone-num... · Posted by u/Josely
pitkali · 2 years ago
Also in Polish, actually.
Jenda_ · 2 years ago
And some others. https://en.wikipedia.org/wiki/Quotation_mark#Summary_table
Jenda_ commented on Alexei Navalny has died   reuters.com/world/europe/... · Posted by u/0xdeafbeef
reactordev · 2 years ago
“Invading a well-armed Europe is almost impossible.”

Funny, the world had the same thought in 1936.

Jenda_ · 2 years ago
Besides an open military invasion (hopefully improbable), I'm afraid of slowly tilting and influencing border states (Slovakia, Hungary) to lean towards Russia, with maybe some future economic extortion, or in the very extreme case, staging an election/referendum to leave EU/NATO.
Jenda_ commented on Over the edge: The use of design tactics to undermine browser choice   research.mozilla.org/brow... · Posted by u/ChrisArchitect
jeroenhd · 2 years ago
Last time I checked (three months ago?) you needed to patch the kernel to enable hibernation in kernel lockdown mode. I think OpenSUSE enabled these kernel patches by default, but that caused issues with secure boot.

Nvidia "just working" is a matter of luck and patience. I'm on kernel 6.7 on my laptop with the latest Nvidia driver and I'm booting with special Nvidia command line flags and running with carious Nvidia specific tweaks to make the thing not drain my battery the moment it boots up. Wayland support remains spotty on multiple compositors.

It'll probably Just Work with a whole bunch of extra power consumption on desktop, as it does on mine, assuming you don't particularly care about Wayland support. Wayland support works in that there is content rendered to the screen, but hardware acceleration is spotty and has weird performance issues that aren't present on Intel iGPUs.

You can make all of this work, but out of the box it doesn't.

Jenda_ · 2 years ago
Oh, OK, I didn't think about lockdown mode, just a regular rootfs encryption.

I still use X, as Wayland does not seem to implement all the features I'm using (but it's improving, so I expect I can go to Wayland in a few years).

Jenda_ commented on Over the edge: The use of design tactics to undermine browser choice   research.mozilla.org/brow... · Posted by u/ChrisArchitect
squigz · 2 years ago
They manage 2 entirely different contexts. When I want to check my mail, I know I just have to go to Firefox and hit the first tab; not cycle through 200 unorganized windows
Jenda_ · 2 years ago
Some window managers, such as Fluxbox, support "tabbed windows". You can group windows into one "superwindow" and then switch these in a titlebar. Maybe this is what the GP meant?

Screenshot: https://www.reddit.com/r/UsabilityPorn/comments/bqg9tw/fluxb...

Jenda_ commented on Over the edge: The use of design tactics to undermine browser choice   research.mozilla.org/brow... · Posted by u/ChrisArchitect
jeroenhd · 2 years ago
All three work flawlessly for me. It takes either luck or looking up known incompatibilities before purchasing a laptop, but it's no longer 2008. Not buying hardware from certain vendors (Nvidia) helps improve your chances.

The lack of hibernation with an encrypted system is an annoying problem, though. There's a good reason it doesn't work, and the explanation has made me doubt other hibernation implementations, but it's annoying that bypassing this restriction is so hard.

Jenda_ · 2 years ago
> The lack of hibernation with an encrypted system is an annoying problem, though.

I don't understand. Hibernation to an encrypted swap partition (and even to a swap file on an encrypted rootfs) works normally.

> Not buying hardware from certain vendors (Nvidia) helps improve your chances.

nVidia just works if you accept the proprietary driver. On the other hand, with AMD, you get fun like this: https://www.wezm.net/v2/posts/2020/linux-amdgpu-pixel-format.... Of course, if you don't need high GPU power, use Intel integrated GPU, which works the best.

Jenda_ commented on FDA says 561 deaths tied to recalled Philips sleep apnea machines   cbsnews.com/news/fda-slee... · Posted by u/pizza
dns_snek · 2 years ago
They killed at least 561 people, knew about it, covered it up for years, and you want to debate whether manslaughter charges might be appropriate? Any justice system which allows that to happen without imprisoning the people responsible for the rest of their lives is completely broken, says me.

It's not casual cynicism either, at this point it's professional cynicism because we've all seen this film 1000 times before and we know how it typically ends. Personally I'd reserve the use of words such as "toxic" and "dangerous" for Philips' CPAP machines and their leadership.

They're going to pay less than $1 million per victim while their annual profits are in the billions. Would you feel good about that amount if they killed your dad, mom, brother, sister, son or daughter?

Jenda_ · 2 years ago
> They killed at least 561 people

I don't know anything about this case, but "561 deaths have been reported in connection to" does not mean they were all indeed "caused by". They may have reports of anyone who died while using the device, from whatever cause like old age. Now they will investigate and hopefully conclude something.

Jenda_ commented on FDA says 561 deaths tied to recalled Philips sleep apnea machines   cbsnews.com/news/fda-slee... · Posted by u/pizza
mechhacker · 2 years ago
What tape works for you?
Jenda_ · 2 years ago
The GP talked about nose tape (I guess nasal strips), not mouth tape.

I personally use:

- better breath strips from aliexpress

- a 3D print similar to https://noson.eu/

Jenda_ commented on Czech republic sets IPv4 end date   konecipv4.cz/en/... · Posted by u/deadbunny
omnimus · 2 years ago
The reason is very similar to why people from United Kingdom get upset when you call it England. Czechia is at same time name of the main region and (now) the country as a whole.

Funnily enough the distinction between regions exists in english language - Bohemia being the name of the region. So Czechia as name for country could work. But in czech language word for Bohemia region is "Czechia" (there is no Bohemia).

So thats why for years you had people insisting on the Czech Republic. Because you don't want to overlook the other two regions Moravia and Silesia.

Jenda_ · 2 years ago
> But in czech language word for Bohemia region is "Czechia" (there is no Bohemia).

No. Bohemia is Čechy, Czechia is Česko.

Yes, they are sometimes confused, and maybe people are unhappy with Česko because it's just too similar to Čechy. People from Moravia and Silesia feel underrepresented when someone mistakenly uses "Čechy" (Bohemia) for the entire Česko (Czechia; Bohemia+Moravia+Silesia).

J

u/Jenda_

KarmaCake day319July 10, 2019
About
Sysadmin and hardware developer from Prague, CZ. I have created a weather radar worth the 21st century and now we have a startup for this. Our latest product demo: https://www.youtube.com/watch?v=JU2z4H_ELus

https://jenda.hrach.eu/

View Original