Joe

You need training material for negative prompts too.

In some countries private law firms chase down infringers on behalf of copyright holders. They then attempt shakedowns with the threat of legal action if you don’t pay. They have a financial interest to catch people, and moral compasses vary.

Also, mistakes can happen (you, your family, guests using your wifi, in the courts, in the ISPs, in the law firms, in the tech they are using to identify people). Shit happens.

And if (when) it happens, then you would still have to deal with it, costing you time and money.

Understand the risks and make choices to minimize them if you can.

Apparmor profiles can be applied to an executable - the profile is then (if so configured) inherited by subprocesses. In my case I have a launch script to run lutris in a safe mode. It also changes the effective gid to be matched by some iptables rules (it was easier than creating a new network namespace, which is also possible). The script then checks that the Internet is inaccessible and that reading/writing to secured paths is denied before launching lutris.

Similarly I have a “safe” script to wrap other commands with an apparmor profile that stops most writes to my homedir/reads from some secure locations, which I often use to run scripts/programs from the Internet.

My sudo also requires a password (or a special keyboard combination, thanks to a custom pam configuration).

All that said and done, I’m sure I’ll be caught off guard one day.

I run a particular online windows game in a modded offline mode under Linux in network isolation and with a restricted apparmor profile. So far so good. Logs show no attempts to break out, except for the smoke test I run to ensure the sandbox is working. This is as much because of the random mods I install as the original devs (who could ban my online account).

On Windows, a VM would indeed be safer. GPU passthrough is possible … I guess easier with Windows using an onboard GPU, then passing a discrete GPU to the VM. You’ll lose some performance with a VM regardless, but it’s easy to disable networking, back up and restore from a known good state, and burn it to the ground when needed.

Probably not your issue, but high dpi mice and some wine games don’t mix well. I bought a cheap low dpi usb mouse after discovering this.

Your friends will find you wherever you are and will continue asking you such questions. There is no escape.

If you want fast GPS coordinates, then you give more location hints. Local privacy regulations apply.

Where in the world is Carmen Sandiego and Commander Keen … wait a second, the time machine’s dial is broken.

I only eat vegans. Would that count?

Who cares?

My company’s 9,000 CentOS machines and over 100,000 containers now mostly run Amazon Linux or Alpine. Rocky Linux was preferred by some, but we led the way and the rest followed. Our final licensed RH systems will also disappear this quarter (legacies of a DC-centric era), and we will be free of them.

It was inertia that kept us with RH, but their bad faith moves kicked us into action. We now have better security tooling and processes all around, too.

Good riddance, Red Hat (and IBM, until your next acquisition and corporate strangling)!

There is no point waiting for a response…the threat has been neutralized. Now repeat after me: There is no AGI.

I’d say that the board members also have to have some personal liability (criminal of course, but also limited financial liability and a temporary or permanent ban on serving on any board or executive (legally responsible) position, depending on circumstances. Incentives must be aligned, and not something that they can justify as a cost of doing business.

Dmoz was great.

I agree that such measures would help, however… Good luck getting that into law (again, in some places). It’s just not a realistic option.

What is your proposed solution?

More likely forwarding a mix of funny cat videos, gardening tips, home remedies, and paid-for conspiracy theories to all their friends and family, while convincing themselves that they are successfully doing research.

Don’t worry - it’s for a good cause of saving the youth from a dystopian future of carbon-neutral transportation and walk/bike-able cities & neighbourhoods. Sigh.

I took https://gitlab.freedesktop.org/pipewire/pipewire/-/blob/master/src/daemon/filter-chain/sink-virtual-surround-7.1-hesuvi.conf, and replaced hrir_hesuvi/hrir.wav with the full path to atmos.wav, which I downloaded from https://airtable.com/appayGNkn3nSuXkaz/shruimhjdSakUPg2m/tbloLjoZKWJDnLtTc

Here seems to be a walkthrough of it: https://forum.endeavouros.com/t/virtual-surround-sound-in-pipewire/24958

I also tried jconvolver in the past, but often hit issues when combined with pipewire. Pipewire’s native virtual surround support just works when configured correctly.

You can change the default sink to go to the virtual surround device this way:

pactl list short sinks    # get sink name
pactl set-default-sink <set default sink>

There will be a way to set the default in the pipewire config files (~/.config/pipewire/pipewire.conf.d/*), too.

I use “catia” when I want to do manual audio routing, and I guess similar is possible with pavucontrol.

You pay the Amazon tax indirectly often enough regardless. Huge chunks of the Internet run on AWS. And if it’s not AWS, then it’s Google Cloud or Microsoft Azure. Shareholders win again.

As for not buying shitty products, returning them when you realise how shitty they are, cancelling contracts when services turn shitty, etc. Yes, do that.

Welcome to the world of Carrier Grade NAT. 100.64.0.0/10 is reserved for this.

If you are lucky, you also have an IPv6 address. The catch is you need IPv6 on the client-side too.

A VPS or similar running wireguard and a proxy might bridge the gap.

It might also be possible to ask your provider for some port forwarding. Probably not, but check anyway.

Good luck!

Battery-licking good!