rustyminnow (u/rustyminnow)

rustyminnow commented on Environment variables are a legacy mess: Let's dive deep into them allvpv.org/haotic-journey... · Posted by u/signa11

motorest · 2 months ago

> Environment variables are often used to pass secrets around. But, despite its ubiquity, I believe that's a bad practice:

I think environment variables are recommended to pass configuration parameters, and also secrets, in containerized applications managed by container orchestration systems.

By design, other processes cannot inspect what environment variables are running in a container.

Also, environment variables are passed to child processes because, by design, the goal is to run child processes in the same environment (i.e., same values) as the parent process, or with minor tweaks. Also, the process that spawns child processes is the one responsible for set it's environment variables, which means it already has at least read access to those secrets.

All in all I think all your concerns are based on specious reasoning, but I'll gladly discuss them in finer detail.

rustyminnow · 2 months ago

I think in the context of containers you're right, there's a level of isolation and secrets are probably fine. But I think under other contexts that lack that isolation (e.g. bare-metal processes, local dev tooling) there are extra concerns.

(inb4: container env-vars are isolated from other containers, not from processes on the host system)

rustyminnow commented on I regret building this $3000 Pi AI cluster jeffgeerling.com/blog/202... · Posted by u/speckx

randomNumber7 · 3 months ago

What I think is strange with stuff like this that you should be able to come to that conclusion without technical knowledge. Just the fact that everyone runs AI on GPUs and NVIDIAs stock skyrocketed since the AI boom should tell you s.th..

Did OP really think his fellow humans are that moronic that they just didn't find out you can plug in together a cuple of rasperri pis?

rustyminnow · 3 months ago

Nobody thought an RPI cluster would ever be competitive, and Geerling never expected anybody would. But it's fun to play "what if" and then make the thing just to see how it stacks up and that's his job. Any implication or suggestion of this being a good idea is just part of the story telling.

rustyminnow commented on Immich – High performance self-hosted photo and video management github.com/immich-app/imm... · Posted by u/rzk

N-Krause · 4 months ago

Runs on a Pi4 in a cabinet with a lot of other self hosted stuff. Data is stored on a NAS. Performance on the Pi4 isn't the greatest, but it works without any annoyance.

It has been hosting my SO's and my photos for a few months, the transition from Google Photos was pretty easy and it is almost a drop in replacement. I love it.

Make sure to checkout https://github.com/simulot/immich-go, it was a great help migrating my Google Takeout to Immich.

rustyminnow · 4 months ago

How do you expose the service for your SO when away from home? Do you use tailscale/cloudflare tunnel/vpn? public port on your router? I've been trying tailscale for myself, but there's a hair more friction than my SO would accept.

rustyminnow commented on Google will allow only apps from verified developers to be installed on Android 9to5google.com/2025/08/25... · Posted by u/kotaKat

ranger_danger · 4 months ago

Maybe, although there are services that will accept your mail and then scan/email it to you. But I believe OP has stated that they live in Germany full-time.

rustyminnow · 4 months ago

I don't keep tabs on OP; I just provide hypothetical answers to literal interpretations of rhetorical questions.

rustyminnow commented on Framework Laptop 16 frame.work/ro/en/laptop16... · Posted by u/susanthenerd

soperj · 4 months ago

Thinkpads still have buttons. I don't ever use the trackpad, just the nub and buttons.

rustyminnow · 4 months ago

I would be all in on the nub if mine didn't have such terrible drift. Trackpad with top buttons beats any other trackpad though.

rustyminnow commented on Google will allow only apps from verified developers to be installed on Android 9to5google.com/2025/08/25... · Posted by u/kotaKat

majorchord · 4 months ago

How does one not have a mailing address in $current_year?

rustyminnow · 4 months ago

If one is a "digital nomad"

rustyminnow commented on Claude Code IDE integration for Emacs github.com/manzaltu/claud... · Posted by u/kgwgk

adregan · 5 months ago

I’m actually a neovim user already! This makes me worry that my config has something to prevent this behavior (but I hope not, I hate messing with my config)

rustyminnow · 5 months ago

:help 'autoread' (I think)

rustyminnow commented on TODOs aren't for doing sophiebits.com/2025/07/21... · Posted by u/todsacerdoti

perfmode · 5 months ago

For cases like the one described in the article, I prefer NB comments.

// NB: If the user triple-clicks this button, the click handler errors because [xyz]

rustyminnow · 5 months ago

What does NB stand for?

Edit: "Nota bene" apparently: https://en.wikipedia.org/wiki/Nota_bene

rustyminnow commented on You Are in a Box jyn.dev/you-are-in-a-box/... · Posted by u/todsacerdoti

jynelson · 5 months ago

lol yeah it absolutely is

originally i had them both in one article but it was getting to be really quite long and i am still thinking through what i want to say in the follow-up

rustyminnow · 5 months ago

A bit off-topic, but in a shell pipeline like that, if you put your pipe chars at the end of the line you don't need backslashes and you can comment out bits of the pipe for devving.

This little change was mind-blowing for me so I always try to share when I can :)

rustyminnow commented on AI slows down open source developers. Peter Naur can teach us why johnwhiles.com/posts/ment... · Posted by u/jwhiles

doug_durham · 5 months ago

You should be rejecting the PR because the fix was insufficient, not because it was AI agent written. Bad code is bad code regardless of the source. I think the fixation on how the code was generated is not productive.

rustyminnow · 5 months ago

> You should be rejecting the PR because the fix was insufficient

I mean they probly could've articulated it your way, but I think that's basically what they did... they point out the insufficient "fix" later, but the root cause of the "fix" was blind trust in AI output, so that's the part of the story they lead with.