Day9. Though I just rewatched a funday Monday from episode 200 or 300 and it was just as amazing and fun as it was back over a decade ago.

I watched newer stuff he still seems to be a great guy.

I’ve been thinking of running something using second hand usb cameras and raspberri pi 3+ since my switch already has poe and my nas has 40tb.

I have a 3d printer so a wall mount enclosure shouldn’t be hard either.

Was thinking of mounting them on the window frames indoors.

Nvr software like this might work: https://github.com/seydx/camera.ui

Tailscale will allow me to access the Web front end anywhere on my devices. Individually it could hold the RPis too just for remote troubleshooting later if anything happens.

Personally I’d like to reuse as many things that I already own and have no specific reliance on a vendor. If I got a rstp camera later, I wouldn’t need a pi to host the camera. But I’ve got a couple of pis and a couple of usb webcam to start. It won’t work for night mode so I’ll have to make sure the outdoor lights are triggered by motion.

But I’ve not done anything yet this is all how I’ve thought about it in my head. So I’m watching this space to learn more too.

I know you already got this but here is it again in my own words: don’t watch the news, don’t read social media, make personal connections one on one with people and judge your life by your vision and lens. Most people are judging it through a distorted news or social media centric set of glasses and it sounds hopeless. But when you look at your own family and friends you might just realise they’re better than you think, you’re able to find time to play and connect, you can still work and live with comfort, and your kids can grow up strong and healthy.

Start discarding that which is not truely part of your life, ignore the billionaires, the enshitification and all other forms of uncontrollable and frankly, barely affects you. These societal issues are always painted with someone else’s view point.

When you find something that does directly, without someone else telling you it does, affect you, and you’re in the mentally healthy place to take on that challenge, that’s when you Ave. If you think about it like that, and others did the same, most of our societal problems would be tasked by those who are in positions to do so.

I say this as someone who’s currently on 24/7 standby watching someone kind of like you, but going through depression, going through hopelessness, and going through addiction recovery (with all the slip ups). And their life right now is made, but they’re so busy fixated on issues they can’t either control nor have affects on them. They’ve got a house, it’s part paid off, they’ve got a well paying job, the owners of that job respect and offering pay rises to them, they’ve got a partner, who’s struggling their best to help them. In isolation they’re in luxury. But they get self worked up about other people’s business and societal or global issues. For what good? Stay grounded and self aware. Be thankful to yourself for making it so far already, and see the upward trends over the entire life and not the tiny problems of today.

My mate started terrarium building.

For very little cost, you can look for second hand fish tanks and go for walks to collect moss, rocks, twigs etc. Weirdly it built more meaning to the more ‘I need to move my body so I’ll go for a walk’.

Now he likes hiking, and collecting moss along the way.

The actual terrariums are gorgeous too.

Tailscale can act as a site to site vpn, but it’s best used as a meshvpn imo with as many things as possible in it.

Why? Because the dynamic dns is so powerful. Every host name automatically is in every other tailscale joined computer automatically. My NAS (Truenas in my case) is just “nas” so to access it it’s just https://nas. Same with my rustdesk server on https://rustdesk. Jellyfin? You guessed it: https://jellyfin.

Why is this cool? I moved my box between other networks and it just works again. No ips changed.

I take it to work. It just works. I keep one server at my parents place? It just works.

But my printer doesn’t have the ability to join the tailnet so I use subnet routing to create a node on that network to act as a NAT router to get to and from that printer.

You can even define exit nodes so if I install tailscale on my parents TV in another state, they can exit their internet via my home which has my IP and therefore Netflix counts it as inside my residence.

Anyway just some considerations. I generally use the subnet routing as a last resort. My 3 node proxmox cluster is all joined and if I took a node to my parents it would literally just work, if slower, as a cluster member. Crazy. Very cool

You said that more politely than I would have. Good work.

The active, in active noise cancelling means listening by using microphones then playing the exact inverse of the heard sound to cancel the noise, actively. Opposed to passive, which tries to restrict noise like ear protection by enclosing an ear and adding insulation against noise from getting in.

So no, not white noise, though that’ll sometimes be generated too. You’ll realise quickly most active noise cancelling headphones only listen on the microphones on specific frequencies which is why different settings can allow sound through.

Quoting of course from the great Dragoon Fenix.

That’s so cool

I have a feeling it did because I remember watching early rtsp multicast streams of the anime initial D found through winamp in like 1999 at 240p. It’s so long ago that I’m not even sure that’s a correct memory.

Thieves and murderers the lot of em. Just like my great great granddad before he was shipped here.

Telegram isn’t encrypting chats (only secret chats).

As far as reproducible builds telegram has got instructions and caveats or excuses around builds for the same issues signal does: https://core.telegram.org/reproducible-builds#reproducible-builds-for-ios

Both easily make Android reproducible builds. This Twitter message is a rock being thrown in a glass house, knowing most people who consume Twitter like it’s a firehose, won’t swallow the nuance of the details.

I don’t even, not to complete lengths.

Reasonably sure they mean telegram. Only secret chats are encrypted. Telegrams chat otherwise is basically transport layer encryption.

https://www.wired.com/story/telegram-encryption-end-to-end-features/

Australian native bees can’t sting, do a great job of pollinating, and make a little honey on the side. They’re very curious from experience with a swarm making a home on my water meter box, but not very scary.

Oh I think I’ve met you! You must be my coworker!

Just joking of course, looking fun of a privacy focused person while making a point my coworkers also don’t read. I’m glad you didn’t delete the post though, I enjoyed the journey. You did read, you’re better than my coworkers.

The Nintendo lawyers are full time, this is just a Thursday to them. You’re keeping those lawyers employed by giving them work.

I’m not going to argue strongly for this, but there’s a certain irony that if the defender suite (defender for identity, defender for cloud apps, fervently for office, and defender for endpoint) was instantly unlocked in their plan 2 version for every subscriber for free, that would kill a huge segment of the security market including some of the industry leaders like SentinelOne huntress labs, and even SEIM providers like splunk and Arctic wolf and dozens more. The XDR and identity management industry would instantly be forced into an anti competitive environment.

There’s an argument for ‘but if they built it secure, then you wouldn’t need to bolt on detections’. I think a relevant metaphor is you buy a house, but then you add detection like cameras and intrusion detection. Make sure the locks on the doors and windows aren’t bypassed.

So I would think there is some nuance. And frankly for small business the cost for m365 business premium which has all of that, including a bunch of information protection and data loss prevention. You just actually have more of a configuration requirement that nearly none of my customers I onboard ever have done…

The messaging around this so far doesn’t lead me to want to follow the fork on production. As a sysadmin I’m not rushing out to swap my reverse proxy.

The problem is I’m speculating but it seems like the developer was only continuing to develop under condition that they continued control over the nginx decision making.

So currently it looks like from a user of nginx, the cve registration is protecting me with open communication. From a security aspect, a security researcher probably needs that cve to count as a bug bounty.

From the developers perspective, f5 broke the pact of decision control being with the developer. But for me, I would rather it be registered and I’m informed even if I know my configuration doesn’t use it.

Again, assuming a lot here. But I agree with f5. That feature even beta could be in a dev or test environment. That’s enough reason to know.

Edit:Long term, I don’t know where I’ll land. Personally I’d rather be with the developer, except I need to trust that the solution is open not in source, but in communication. It’s a weird situation.

Now I’m not part of this, but a international student just got scammed $170 000 dollars over 3 months. They believed that the police had seized their Australian bank account and were contacting them related to their identity being stolen. It wasn’t at the time of call, but the international student, maybe 25, was fully profiled. They knew where he studied, who they had been talking to. At the time of call, the poor kid thought he was talking to the police, gave every bit of information including bank account which had mfa, but undid it and and followed the scmmers requests believing he would be deported. He called home to his parents and asked them for more money even in order to build a new account because he believed is other one was frozen, the new account was under order and control of the scammer who this kid trusted. The scammer even made this kid move into a hotel for a week as their “premise needed to be searched” it wasn’t for a month after this that it was found because the kid believed he couldn’t tell anyone before the school (where he was attending but kept leaving to take calls which is a no no) had to tell the kid that absenteeism will result in the student visa being cancelled. At that point it all came out, month and more of being scammed.

My point is, no it’s not business. Just look at the YouTubers, just watch Jim Browning. Just ask people, it’s a multi billion dollar industry. And it’s not limited to rules like ‘business’.

There are massive collections of databases online that find where breaches have occurred allowing attackers to dump the database of that service, then collect all those database dumps together to identify all known accounts under an email address. Then once that email account ever has a password breach attackers can look up and see ‘was this password used also on other accounts’ and attempt to use the same email and password on them. Moreover they will just try that email regardless of known affiliation, if they already have a user name and password across many online services, it’s safe to assume this will work sometimes. This is the essence of a credential stuffing attack.

https://www.abc.net.au/news/2024-01-19/what-is-credential-stuffing-scams-how-to-prevent-and-protect/103367570

https://www.abc.net.au/news/2023-05-18/data-breaches-your-identity-interactive/102175688

I’ve used abc here since I believe they write better for a lay person.

Edit: I should mean to say, they can also create a profile of you and your many email addresses as demonstrated.