Readit News logoReadit News
puffybuf commented on Please Don't Promote Wayland   stoppromotingwayland.netl... · Posted by u/PKop
stingraycharles · 14 days ago
It’s mostly application support that’s lagging, right?

And of course window managers like i3 needing complete replacement, but those seem to be mostly down already.

puffybuf · 14 days ago
i3 has pretty much been replaced by sway for me. Works great I have no problems with wayland as a regular user

Deleted Comment

puffybuf commented on BorgBackup 2 has no server-side append-only anymore   github.com/borgbackup/bor... · Posted by u/jaegerma
puffybuf · 3 months ago
I've been using device mapper+encryption to backup my files to encrypted filesystem on regular files. (cryptsetup on linux, vnconfig+bioctl on openbsd). Is there a reason for me to use borgbackup? Maybe to save space?

I even wrote python scripts to automatically cleanup and unmount if something goes wrong (not enough space etc). On openbsd I can even Double encrypt with blowfish(vnconfig -K) and then a diff alg for bioctl.

puffybuf commented on Xenon is an open source universal game cheating framework C++   github.com/kiocode/xenon-... · Posted by u/everestkio
puffybuf · 4 months ago
I use x64dbg to make cheats. It is a binary debugger for x64/32. Check it out and learn assembly/winapi.. For serious debugging of binaries you'll want a DMA device to inject into memory without a debugger attaching.
puffybuf commented on fd: A simple, fast and user-friendly alternative to 'find'   github.com/sharkdp/fd... · Posted by u/tosh
puffybuf · 5 months ago
fzf, ripgrep are some command line tools I like. Check them out. Being able to quickly search your history with fuzzy finder is so useful.

Deleted Comment

puffybuf commented on Tj-actions/changed-files GitHub Action Compromised – used by over 23K repos   stepsecurity.io/blog/hard... · Posted by u/varunsharma07
mubou · 5 months ago
In recent years, it's started to feel like you can't trust third-party dependencies and extensions at all anymore. I no longer install npm packages that have more than a few transitive dependencies, and I've started to refrain from installing vscode or chrome extensions altogether.

Time and time again, they either get hijacked and malicious code added, or the dev themselves suddenly decides to betray everyone's trust and inject malicious code (see: Moq), or they sell out to some company that changes the license to one where you have to pay hundreds of dollars to keep using it (e.g. the recent FluentAssertions debacle), or one of those happens to any of the packages' hundreds of dependencies.

Just take a look at eslint's dependency tree: https://npmgraph.js.org/?q=eslint

Can you really say you trust all of these?

puffybuf · 5 months ago
Stealing crypto is so lucrative. So there is a huge 'market' for this stuff now that wasn't there before. Security is more important now than ever. I started sandboxing Emacs and python because I can't trust all the packages.
puffybuf commented on OpenBSD Innovations   openbsd.org/innovations.h... · Posted by u/angristan
avodonosov · 6 months ago
Is OpenBSD suitable for daily use on a laptop?

Does anyone have such experience? Is it ok?

puffybuf · 6 months ago
I use it, and even run wayland (sway) on my dell laptop. No bluetooth support. Encrypted disk. Takes a lot of time to setup. Generally similar to linux, but less hardware support.
puffybuf commented on Johnny.Decimal – A system to organise your life   johnnydecimal.com... · Posted by u/debone
tikhonj · 6 months ago
I am pretty ADD. For me, moving to a system using org-mode helped a lot. It didn't make me an "organized" person (hah!), but it has repeatedly kept me from losing track of important things and has given me a place to take tasks/reminders/notes/etc off my mind. Being able to write something down and trust that it will surface back when I need it has reduced my mental load and general anxiety.

I haven't been super organized or consistent in how I use org-mode—org-mode is great at letting me discover my own workflow and adapt the tool to what I need rather than adapting myself to the tool—and I've gone through periods where I lost the habit, but, overall, it's been a concrete improvement to my life. I've found that seeing it as a tool rather than a "system" made a big difference for me. I've never liked productivity systems (especially at work), but having a tool I can use in whatever ways helps me is a qualitatively different—and better!—thing.

puffybuf · 6 months ago
I love org-mode with emacs. I use it to organize my notes / game hacks / todo / pretty much anything using a tree structure. You can use drawers to hide things like sample code.
puffybuf commented on Securing edge device systems, including firewalls, routers, and VPN gateways   nsa.gov/Press-Room/Press-... · Posted by u/transpute
UI_at_80x24 · 7 months ago
Anything that you can buy off the shelf is compromised.

I use OpenBSD on all my edge devices. It's not perfect but it is superior to 99% of everything else. That combined with poisoning the replies to nmap scans (fingerprinting) puts me in the 'much harder' to compromise category.

"Security through obscurity" isn't security. But "Don't be where your enemies expect you to be" is still good advice.

Also, relying on 1 layer of security is insanity. You need multiple layers, you need isolation.

puffybuf · 7 months ago
I highly recommend OpenBSD for firewalls, vpn (wireguard), and other edge servers. It has served me well. I love how everything is organized.
p

u/puffybuf

KarmaCake day44December 24, 2022View Original