overview for someacnt

X terminates European Commission's ad account after €120 million fine in c/technology@lemmy.zip

[–] someacnt@sh.itjust.works 36 points 5 days ago (1 children)

Sadly, there are too many stupid people in the world who would just gobble up that shit.

Anon does a drug bust in c/greentext@sh.itjust.works

[–] someacnt@sh.itjust.works 2 points 6 days ago

Wait, so that was also Microsoft? Oh no.. I just gave away more money to them :/

What did I forget? in c/lemmyshitpost@lemmy.world

[–] someacnt@sh.itjust.works 1 points 1 week ago (1 children)

I relate to others, but isn't the Rubix cube quite common in STEM people? Dunno what that has to do with autism

Study claims to provide first direct evidence of dark matter in c/science@lemmy.world

[–] someacnt@sh.itjust.works 4 points 2 weeks ago

Wow, so they observed the emitted gamma rays directly, meaning we basically saw the dark matter directly? This is exciting! Of course more research would be warranted, tho.

The Final Final Layer_new(3) in c/programmer_humor@programming.dev

[–] someacnt@sh.itjust.works 4 points 3 weeks ago (7 children)

I mean, thoughts on nuclear waste? They certainly need management, and I dunno if humans are good at waste management.

ASUS Armoury Driver Set To Be Introduced In Linux 6.19 in c/linux_gaming@lemmy.world

[–] someacnt@sh.itjust.works 2 points 3 weeks ago

Oh, does this mean my ASUS laptop would be supported better?

Windows 11 could actually become the same kind of mistake Sony made with the PS3 in c/showerthoughts@lemmy.world

[–] someacnt@sh.itjust.works 1 points 3 weeks ago (1 children)

Microsoft just has so many users unwilling to change, that I do not foresee that happening. Just 10% of people switching to Linux would be absolute win for me.

I installed Arch Linux to a slow $10.29/year VPS along with GUI without using the installer. in c/linux@programming.dev

[–] someacnt@sh.itjust.works 3 points 3 weeks ago* (last edited 3 weeks ago) (1 children)

B..but it works, at least!

You're given $20,000 USD (or the equivalent in your local currency) to spend, but anything still left by the end of the day you lose for good. What are you spending it on? in c/asklemmy@lemmy.world

[–] someacnt@sh.itjust.works 4 points 4 weeks ago

No one wants to donate it to charity of my choosing?

(What if the charity is just a thin veil over my own account)

You're given $20,000 USD (or the equivalent in your local currency) to spend, but anything still left by the end of the day you lose for good. What are you spending it on? in c/asklemmy@lemmy.world

[–] someacnt@sh.itjust.works 1 points 4 weeks ago

I have some silver but it is not faring well compared to gold :(

Donald Trump ‘blowing Bubba’ message in Epstein emails under scrutiny in c/news@lemmy.world

[–] someacnt@sh.itjust.works 0 points 4 weeks ago

So there is nothing that is particularly incriminating Trump? Ugh.

My girlfriend is an actual model, just fyi in c/programmer_humor@programming.dev

[–] someacnt@sh.itjust.works 1 points 1 month ago (1 children)

Does not work for many of us

5

I am getting offended on this kind of messages, am I overreacting? (sh.itjust.works)

submitted 1 month ago* (last edited 1 month ago) by someacnt@sh.itjust.works to c/asklemmy@lemmy.world

19 comments fedilink

I got this comment as a reply to my post:

You can get a job and do your math, too.
Other people do more with less, why can't you?
Answer:
spoilerGreed and entitlement.

I feel quite offended, that I have to care about someone else who "do more with less". What does it have to do with greed? I do not get the thought process behind it.

I wonder if I am overreacting. I would feel better if they just said to get a job, but it felt more like they are trying to make fun of me.

EDIT: Thanks everyone for thoughtful replies! Now I feel a lot better - I was in very bad mood when I got the reply above, so I felt even more attacked. Still, I should learn to not get overly offended like this.

77

I only managed to produce one paper in 6 months of research. How do I survive? (sh.itjust.works)

submitted 1 month ago* (last edited 1 month ago) by someacnt@sh.itjust.works to c/science@lemmy.world

30 comments fedilink

I am in the field of applied math, and it took me 6 months to produce a paper. And now, I am out of ideas for new papers.

What should I do? How do I even continue? This is sooo difficult..

0

Which instance do you recommend nowadays? (sh.itjust.works)

submitted 1 month ago by someacnt@sh.itjust.works to c/asklemmy@lemmy.world

1 comments fedilink

I want to make an alt to post on my expertise, so I want a nice instance to create the new acnt in. Which do you guys recommend? I heard good words about piefed, but not sure I would make the jump, and dont know what the consequences would be.

77

Vaultwarden selfhosting, or bitwarden service? (sh.itjust.works)

submitted 7 months ago* (last edited 7 months ago) by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

30 comments fedilink

I am looking into password managers, as number of my accounts are increasing. Currently I am weighing two options:

Host Vaultwarden on a VPS, or
Use the free bitwarden service.

I want to know how they are in practical aspects.

While I am fine self-hosting many services, password managers seem to be one of the most critical services that should not admit downtime. I surely cannot keep it up, as I need to update it time to time.

On the other hand, using bitwarden might require some level of trust. How much should I trust the company to use the free service? How do I know if my passwords would be safe, not being exposed to the wide net?

I want to gauge pros and cons, are there aspects I missed? How are your opinions on this? If you are self-hosting vaultwarden, how do you manage the downtime? Thanks in advance!

78

Self-hosted PDF manager? (sh.itjust.works)

submitted 7 months ago by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

22 comments fedilink

I have bunch of textbooks, and a lot of lecture notes and notes from colleagues, all in PDF format. What is a good way to classify, manage, store, and read these PDF files? I am trying calibre-web, but it seems difficult to find applications to connect to it.

27

Ansible iptables best practices? (sh.itjust.works)

submitted 8 months ago* (last edited 8 months ago) by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

19 comments fedilink

I am currently looking into ansibles to store my configurations and deploy services more easily.

I have couple of iptable rules in /etc/iptables/rules.v4, which I can easily restore. Meanwhile, ansible has iptable role for configurations - hence, I am confused on what approach to take.

How do I persist this rules, especially across reboots? Should I rerun ansible every time on each reboot? I am at loss on how to best manage iptables, as other services can interact with it. How do you folks handle this? Thanks in advance!

55

How and where should I keep backups of system configurations? (sh.itjust.works)

submitted 8 months ago by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

28 comments fedilink

Sorry for adding to the massive pile of backup-related question, but I could not figure out how to manage backups from existing answers..

I want to backup my VPS setup (think container-defining files, its volumes, and etc configs), but am unsure where to put it. Does keeping these in the VPS itself make sense? If so, how do I create and manage the backup?

Also, I would need a remote copy - what is the good location for this? I wish I could copy to my laptop, but obviously I cannot do that automatically. Should I pay money for a backup? I want to avoid paying lots of money just for backups. Thanks in advance!

134

How to harden against SSH brute-forcing? (sh.itjust.works)

submitted 8 months ago by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

128 comments fedilink

Recently, I discovered that SSH of my VPS server is constantly battered as follows.

Apr 06 11:15:14 abastro-personal-arm sshd[102702]: Unable to negotiate with 218.92.0.201 port 53768: no matching key exchange method found. Their offer: diffie>
Apr 06 11:30:29 abastro-personal-arm sshd[102786]: Unable to negotiate with 218.92.0.207 port 18464: no matching key exchange method found. Their offer: diffie>
Apr 06 11:45:36 abastro-personal-arm sshd[102881]: Unable to negotiate with 218.92.0.209 port 59634: no matching key exchange method found. Their offer: diffie>
Apr 06 12:01:02 abastro-personal-arm sshd[103019]: Unable to negotiate with 218.92.0.203 port 16976: no matching key exchange method found. Their offer: diffie>
Apr 06 12:05:49 abastro-personal-arm sshd[103066]: Unable to negotiate with 218.92.0.212 port 49130: no matching key exchange method found. Their offer: diffie>
Apr 06 12:07:09 abastro-personal-arm sshd[103077]: Connection closed by 162.142.125.122 port 56110 [preauth]
Apr 06 12:12:18 abastro-personal-arm sshd[103154]: Connection closed by 45.79.181.223 port 22064 [preauth]
Apr 06 12:12:19 abastro-personal-arm sshd[103156]: Connection closed by 45.79.181.223 port 22078 [preauth]
Apr 06 12:12:20 abastro-personal-arm sshd[103158]: Connection closed by 45.79.181.223 port 22112 [preauth]
Apr 06 12:21:26 abastro-personal-arm sshd[103253]: Connection closed by 118.25.174.89 port 36334 [preauth]
Apr 06 12:23:39 abastro-personal-arm sshd[103282]: Unable to negotiate with 218.92.0.252 port 59622: no matching key exchange method found. Their offer: diffie>
Apr 06 12:26:38 abastro-personal-arm sshd[103312]: Connection closed by 92.118.39.73 port 44400
Apr 06 12:32:22 abastro-personal-arm sshd[103373]: Unable to negotiate with 218.92.0.203 port 57092: no matching key exchange method found. Their offer: diffie>
Apr 06 12:49:48 abastro-personal-arm sshd[103556]: error: maximum authentication attempts exceeded for root from 98.22.89.155 port 53675 ssh2 [preauth]
Apr 06 12:49:48 abastro-personal-arm sshd[103556]: Disconnecting authenticating user root 98.22.89.155 port 53675: Too many authentication failures [preauth]
Apr 06 12:49:51 abastro-personal-arm sshd[103558]: error: maximum authentication attempts exceeded for root from 98.22.89.155 port 53775 ssh2 [preauth]
Apr 06 12:49:51 abastro-personal-arm sshd[103558]: Disconnecting authenticating user root 98.22.89.155 port 53775: Too many authentication failures [preauth]
Apr 06 12:49:53 abastro-personal-arm sshd[103561]: error: maximum authentication attempts exceeded for root from 98.22.89.155 port 53829 ssh2 [preauth]
Apr 06 12:49:53 abastro-personal-arm sshd[103561]: Disconnecting authenticating user root 98.22.89.155 port 53829: Too many authentication failures [preauth]
Apr 06 12:49:54 abastro-personal-arm sshd[103563]: Connection closed by 98.22.89.155 port 53862 [preauth]
Apr 06 12:50:41 abastro-personal-arm sshd[103576]: Invalid user  from 75.12.134.50 port 36312
Apr 06 12:54:26 abastro-personal-arm sshd[103621]: Connection closed by 165.140.237.71 port 54236
Apr 06 13:01:26 abastro-personal-arm sshd[103702]: Connection closed by 193.32.162.132 port 33380
Apr 06 13:03:40 abastro-personal-arm sshd[103724]: Unable to negotiate with 218.92.0.204 port 60446: no matching key exchange method found. Their offer: diffie>
Apr 06 13:11:49 abastro-personal-arm sshd[103815]: Received disconnect from 165.140.237.71 port 50952:11:  [preauth]
Apr 06 13:11:49 abastro-personal-arm sshd[103815]: Disconnected from authenticating user root 165.140.237.71 port 50952 [preauth]
Apr 06 13:19:08 abastro-personal-arm sshd[103897]: Unable to negotiate with 218.92.0.208 port 59274: no matching key exchange method found. Their offer: diffie>
Apr 06 13:33:36 abastro-personal-arm sshd[104066]: Received disconnect from 165.140.237.71 port 50738:11:  [preauth]
Apr 06 13:33:36 abastro-personal-arm sshd[104066]: Disconnected from authenticating user ubuntu 165.140.237.71 port 50738 [preauth]
Apr 06 13:34:50 abastro-personal-arm sshd[104079]: Unable to negotiate with 218.92.0.204 port 44816: no matching key exchange method found. Their offer: diffie>
Apr 06 13:50:32 abastro-personal-arm sshd[104249]: Unable to negotiate with 218.92.0.206 port 27286: no matching key exchange method found. Their offer: diffie>
Apr 06 13:51:58 abastro-personal-arm sshd[104261]: Received disconnect from 165.140.237.71 port 50528:11:  [preauth]
Apr 06 13:51:58 abastro-personal-arm sshd[104261]: Disconnected from authenticating user root 165.140.237.71 port 50528 [preauth]
Apr 06 14:01:25 abastro-personal-arm sshd[104351]: Invalid user  from 65.49.1.29 port 18519
Apr 06 14:01:28 abastro-personal-arm sshd[104351]: Connection closed by invalid user  65.49.1.29 port 18519 [preauth]

As you can see, it is happening quite frequently, and I am worried one might break in at some point. Since SSH access guards users with root-access, it can be quite serious once penetrated. How do I harden against these kind of attacks? Because this is VPS, disabling SSH is a no-go (SSH is my only entry of access). Are there ways to stop some of these attackers?

As always, thanks in advance!

24

How to configure UFW rules for podman (sh.itjust.works)

submitted 8 months ago* (last edited 8 months ago) by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

6 comments fedilink

Note: I am using VPS for services, since I do not want to expose my home network to internet. I am using podman, . But firewall (using UFW frontend) seems to block all the routing and inter-container traffic, so I want to Currently I have UFW rules set as blanket open for all podman networks, like this:

Status: active

To                         Action      From
--                         ------      ----
22/tcp                     ALLOW       Anywhere                  
222/tcp                    ALLOW       Anywhere                  
80/tcp                     ALLOW       Anywhere                  
Anywhere on podman1        ALLOW       Anywhere                  
443/tcp                    ALLOW       Anywhere                  
8080/tcp                   ALLOW       Anywhere                  
Anywhere on podman0        ALLOW       Anywhere                  
Anywhere on podman2        ALLOW       Anywhere                  
Anywhere on podman3        ALLOW       Anywhere                  
Anywhere on podman4        ALLOW       Anywhere                  
Anywhere on podman5        ALLOW       Anywhere                  
22/tcp (v6)                ALLOW       Anywhere (v6)             
222/tcp (v6)               ALLOW       Anywhere (v6)             
80/tcp (v6)                ALLOW       Anywhere (v6)             
Anywhere (v6) on podman1   ALLOW       Anywhere (v6)             
443/tcp (v6)               ALLOW       Anywhere (v6)             
8080/tcp (v6)              ALLOW       Anywhere (v6)             
Anywhere (v6) on podman0   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman2   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman3   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman4   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman5   ALLOW       Anywhere (v6)             

Anywhere on podman1        ALLOW FWD   Anywhere on ens3          
Anywhere on podman0        ALLOW FWD   Anywhere on ens3          
Anywhere on podman2        ALLOW FWD   Anywhere on ens3          
Anywhere on podman3        ALLOW FWD   Anywhere on ens3          
Anywhere on podman4        ALLOW FWD   Anywhere on ens3          
Anywhere on podman5        ALLOW FWD   Anywhere on ens3          
Anywhere (v6) on podman1   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman0   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman2   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman3   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman4   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman5   ALLOW FWD   Anywhere (v6) on ens3

This neither seems secure, nor extensible when I add another network. Is there some 'best practices' for firewall setup with podman networks? How do you gurus set up your firewall for containers? Thanks in advance!

EDIT: Sorry for missing an important detail, I am running rootful podman with (userns=auto).

16

Organizing files to admit different grouping depending on use cases (sh.itjust.works)

submitted 8 months ago* (last edited 8 months ago) by someacnt@sh.itjust.works to c/linux@programming.dev

13 comments fedilink

I have separate directories for uni courses, which are grouped in semester directory. I also TA some classes, which is stored in separate folder named 'TA'. That is, it is grouped like this:

University
| - ...
| - 2024.2
| | - Lie algebra
| | - Operator algebra
| - 2025.1
| | - Mathematical Algorithms
| | - Diophantine equations
| - TA
| | - ...
| | - 2024.2
| | - 2025.1

Oftentimes, I focus on the current semester, so I want to view courses on a same semester grouped together. On other times, I want to group TA activities across semesters together to . I may also do the same with grouping similar subjects.

Basically, I want to view directories with different grouping for each use case, as in the title. I hope this makes sense.. Is there any kind of directory structure or application-based solutions for this cases?

EDIT: I want both GUI and TUI solution for browsing files like this, it's great if linux filesystem supports this natively but fine if it doesn't. Database with redirection capability would be even better.

Thanks in advance!

6

Backup solutions for iPad Goodnotes? (sh.itjust.works)

submitted 8 months ago* (last edited 8 months ago) by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

4 comments fedilink

My uni lab has ~~subsidized~~ provided* an iPad for study, so I am using it primarily for handwritten note-taking.

After a while, I figured I cannot easily transcript all of it into notes on laptop. Especially, the hand-drawn diagrams take way too much effort to translate into TeX diagrams. Since these notes are quite important to me, I want a proper backup solution.

I am using Goodnotes for note-taking. How would I go with backups of the Goodnotes files? Of course I could use iCloud, but I want to avoid it for privacy reasons. Preferably, I want self-hosted backup options. What are the good backup solutions in this case?

Thanks in advance!

EDIT: Why so many downvotes? Is it bad to get an iPad? Basically my uni lab (forcefully) bought me an iPad, should I have rejected it?

10

[Solved] Nextcloud AIO inside container - domain verification fails (sh.itjust.works)

submitted 8 months ago* (last edited 8 months ago) by someacnt@sh.itjust.works to c/selfhosted@lemmy.world

3 comments fedilink

I am setting up nextcloud AIO in a podman container on my VPS. After some struggle, I got to the installation page, but domain checking is simply not working out.

After looking up, I decided to check the port from host machine. Strangely, curl localhost:11000 hangs indefinitely. nextcloud-aio-domaincheck container is running, and it mapped port as 0.0.0.0:11000->11000/tcp. The domaincheck server should be reachable, and I don't think firewall would be preventing localhost access.. The single line log from domaincheck container is:

2025-03-20 13:47:43: (../src/server.c.1939) server started (lighttpd/1.4.76)

I am utterly lost here. Does anyone know what would be possible reasons, and how to troubleshoot the issue? Any pointers would be greatly appreciated. Thank you in advance!

EDIT: Just ran sudo podman exec nextcloud-aio-mastercontainer curl nextcloud-aio-domaincheck:11000, it seems to work in the internal network. At a loss how this does not get exposedd to the host..

EDIT2: Solved it, podman is misbehaving when the port is set to 0.0.0.0. Darn it, podman is such a pain..