

There was an old Flash game called Pandemic 2. Iirc, there wasn’t a Pandemic 1, which struck me as odd.
Hello there!
I’m also @savvywolf@furry.engineer , and I have a website at https://www.savagewolf.org/ .
He/They


There was an old Flash game called Pandemic 2. Iirc, there wasn’t a Pandemic 1, which struck me as odd.


People exfiltrating movies from your Jellyfin account sounds harmless until you get a knock on the door from the police asking why you’re running a piracy sharing site. Depending on the attacker’s level of access, they may also wonder why your server is now serving kiddie fiddling videos. Or maybe the attacker just replaces all your movie metadata images with ones from the Bee Movie.
To me at least, DOS and region locking should come after properly locking down public facing services. They aren’t 100% reliable at preventing intrusions.
I’d be surprised if there wasn’t a large difference between the power usage of a cpu at rest (like most servers will be) and one at full power. Especially if it had a gpu in it. They certainly sound a lot louder in my experience.
You can never be truly sure how bad a compromised system has been compromised, or even easily detect when it has happened. It could be running as part of a botnet, stealing your credentials or probing your local/mesh network.
In my eyes, competent cybersecurity abilities are an important part of selhosting which seems to fall by the wayside. It’s important to know exactly what your server is doing, what is running and who has access. If your system is on the public internet, you have a moral obligation to behave and not have it turn into a botnet or spam machine.


This “someone else” being… A C API header which can’t be copyrighted/copylefted anyway?


I think we should have an AI tag, and “not AI” should be the default (otherwise we add “non-” versions of every tag and post titles are a list of what something isn’t instead of what it is).
Imo, a lot of the tools here have a high security requirement. Either because they handle personal/private information and/or are exposed to the public internet. AI use is a red flag to me that the developer hasn’t properly considered all the security implications of their product.


I hate that I can’t tell if this is a reference to something that actually happened or not.


Bro opening his ad with a story like a cooking recipie.
But yeah, iirc KeepassX is the gold standard for this type of thing, right?


They need to actually be really careful with that - Gamepass is I think one of the main things keeping gamers on Windows. Fuck up gamepass during the Gabecube’s release and people may start seriously wondering why they put up with Windows.
This is your regular reminder that docker isn’t a sandboxing solution and shouldn’t be treated as one.


https://www.ifixit.com/Guide/Steam+Deck+Battery+Replacement/149070
Looks like replacing the battery of a Steam Deck is possible but an experience. Not sure how it compares to other handhelds though.


Nextcloud. It does the job well enough.


I do not, and don’t plan to. Probably wouldn’t be that hard to set up though as someone familiar with nginx.
I guess Plex uses their own VPN under the hood then to make it more convenient?


Just out of interest as someone who has recently set up a Jellyfin server - what’s the main “value add” of using Plex compared to Jellyfin?
It seems to do everything I want, so I’m not sure why people would pay for Plex over the FOSS version.


One thing that jumps out at me reading the readme is the fact that it has a built in email server. Email is hard to get right, and I’m surprised a relatively young(?) project is working on getting all the moving pieces together rather than declaring it out of scope.
It’ll be interesting to see how it develops.


If that’s the case, throwing more people, especially juniors, into the team won’t make a difference.
By the way, having a team full of people that “don’t want to work” is a sign that they lack trust in the project or leadership. Maybe management should work on that rather than spouting right wing linkedinisms. :P


For friends that I know, they can just ask me and I’ll give them a login secret. I don’t have the headspace to manage fedidrama.


If you’re missing deadlines and getting customer complaints because of a new hire, that’s a failure in management, imo.
(Of course, that’s not saying management will take responsibility)
Doing a very quick search on this and it looks like the firmware updater uses webbluetooth. This knife has bluetooth hardware in it.


The problem with tools like this is that they don’t actually check that the mail is sent correctly. You can define security keys, but they don’t mean anything if your mail server doesn’t use them correctly.
For testing, I use https://www.mail-tester.com/ which you send an email to and it does more thorough tests on the server and email itself.
Doesn’t that cause issues if a backdoor happened a few months ago and you should be updating to a recent fixed version?
My understanding is that they usually go for the sites that distribute the content now, rather than individuals. Having an open Jellyfin instance looks like the latter rather than the former.