semi [he/him]

I prefer KeePass over Bitwarden because it is just a simple database file, less that can go wrong (no server component).

I am the original author of the Rust library for decrypting and modifying KeePass databases.. The current best implementation of KeePass, KeePassXC, is written in C++, so there could theoretically be security-relevant memory corruption bugs in it (though the developers of the project are excellent and I don’t think it is super likely). Rust is a language that does not have that class of issues by design, so I thought it would be interesting to see how far I could get. So far, I am still having fun and adding features bit by bit, and it is quite cool to me to be able to write one codebase that deploys to Windows, Linux, MacOS, Android (potentially iOS), and any modern web browser.

Our son is fortunately very relaxed, he eats and sleeps a lot so I can get some coding done while he is sleeping. Germany has decent parental leave, so my partner and I are both not working the first two months of his life.

Thanks! Our son is a bit less than a month old. The wife, our son, and https://omnikee.github.io/ are three different projects 😂

I’m taking care of a newborn and doing some FOSS work, so that project has been deprioritized for now 😅

I am administering several other docker servers and a k8s cluster from the command line, so I’m well aware what I’m missing 😀 - in this case, I was hoping for a higher wife approval factor, which is at least partially there.

Thanks for the portainer on unraid tip. I set up portainer itself yesterday but will have to get around to migrating the 30 or so already deployed containers to it.

Since it doesn’t come installed by default on a fresh system, my guess would be that you won’t break anything fundamental, but this is pure speculation.

Yeah, I’m currently running unraid on it because I wanted a hands-off maintenance experience.

While it’s nice to get started, I’m really missing even intermediate Docker features such as support for compose files (so that there is some grouping of main services with the database instance that supports it, etc). Still, it’s been working reliably for the year that I’ve had it.

Edit: I have tried the Docker Compose Manger plugin but didn’t find the experience an improvement because of the way the YAML editing works

Is keeping the servers where they currently are (or with a friend) an option? Then you could just VPN into it from abroad.

If that isn’t an option, I’m currently running a homebuilt NAS off an Intel N100 Mini-ITX mainboard and I’m impressed with how many services it can run simultaneously, including Quick Sync Video for hardware transcoding.

The mirrorlist is a configuration file listing servers that updates can get pulled in from.

When a package update is installed that contains a configuration file, it will not overwrite the old file but be installed with a pacnew extension so that you can merge the files (like you did). It will keep complaining at you until you remove the pacnew file, which is fine to do after you have merged successfully.

The graphical issues are probably due to something else that happened during the update.

Here is an exported result list from Kagi that should be accessible without an account.

deleted by creator

This will work in general. One point of improvement: right now, if the request fails, the panic will cause your whole program to crash. You could change your function to return a Result<Html, SomeErrorType> instead, and handle errors more gracefully in the place where your function is called (e.g. ignoring pages that returned an error and continuing with the rest).

Look into anyhow for an easy to use error handling crate, allowing you to return an anyhow::Result<Html>

As another German, I can confirm that the “first e in mesmer” way is how Germans would pronounce it. See for example 11seconds into this German video also officially from SUSE’s YouTube channel - a SUSE employee and German native speaker who is moderating a series of talks is using that pronunciation.

It’s just a tiny mistake that most Germans are used to hearing Americans make all the time (see also Porsche which is also not pronounced porsh, nor por-shay, but porsh-eh) and will politely ignore, but since this aims to be an educational video, should be pointed out to be slightly incorrect

I’m surprised that the post does not mention switching to Firefox or any other privacy tool other than their privacy badger, e.g. no mention of uBlock Origin.

Right! The last I remember hearing the “closed source is more secure” argument was about fifteen years or so ago, so it’s surprising that it is being pulled up from the dead.

From the FAQ of the Sunbird website (the tech powering Nothing Chats):

Will the app be open source?

Some of the messaging community believes that software that is open source is more secure. It is our view that it is not. The more visibility there is into the infrastructure and code, the easier it is to penetrate it. By design, open source software is distributed in nature. There is no central authority to ensure quality and maintenance and by putting that responsibility on Sunbird, development would not be feasible. Open source vulnerabilities typically stem from poorly written code that leave gaps, which attackers can use to carryout malicious activities.

To help satisfy our own ambitious goals of providing total privacy and security, we are currently undergoing a third party audit that will validate our security, encryption and data policies and plan on receiving ISO 27001 certification after launch.

This was a huge warning sign when the first round of news about Nothing Chats came around, so I’m glad we’re now getting early confirmation that security by obscurity still is a horrible idea and doesn’t work

The blog posts mentioned in the NYT article [1, 2, 3] are also worth a read, if you want to understand the evidence for tampering.

The reddit blackout make me realize that I would be willing to pay for a monthly subscription in return for ad-free access and to support ongoing hosting and development.