semi [he/him]

You can sign git commits using SSH keys, including the one you use to connect to GitHub/GitLab/Codeberg. These sites also support verifying the signature.

German soldiers can refuse orders under certain conditions (e.g. if they against human dignity)

I prefer KeePass over Bitwarden because it is just a simple database file, less that can go wrong (no server component).

I am the original author of the Rust library for decrypting and modifying KeePass databases.. The current best implementation of KeePass, KeePassXC, is written in C++, so there could theoretically be security-relevant memory corruption bugs in it (though the developers of the project are excellent and I don’t think it is super likely). Rust is a language that does not have that class of issues by design, so I thought it would be interesting to see how far I could get. So far, I am still having fun and adding features bit by bit, and it is quite cool to me to be able to write one codebase that deploys to Windows, Linux, MacOS, Android (potentially iOS), and any modern web browser.

Our son is fortunately very relaxed, he eats and sleeps a lot so I can get some coding done while he is sleeping. Germany has decent parental leave, so my partner and I are both not working the first two months of his life.

Thanks! Our son is a bit less than a month old. The wife, our son, and https://omnikee.github.io/ are three different projects 😂

I’m taking care of a newborn and doing some FOSS work, so that project has been deprioritized for now 😅

I am administering several other docker servers and a k8s cluster from the command line, so I’m well aware what I’m missing 😀 - in this case, I was hoping for a higher wife approval factor, which is at least partially there.

Thanks for the portainer on unraid tip. I set up portainer itself yesterday but will have to get around to migrating the 30 or so already deployed containers to it.

Since it doesn’t come installed by default on a fresh system, my guess would be that you won’t break anything fundamental, but this is pure speculation.

Yeah, I’m currently running unraid on it because I wanted a hands-off maintenance experience.

While it’s nice to get started, I’m really missing even intermediate Docker features such as support for compose files (so that there is some grouping of main services with the database instance that supports it, etc). Still, it’s been working reliably for the year that I’ve had it.

Edit: I have tried the Docker Compose Manger plugin but didn’t find the experience an improvement because of the way the YAML editing works

Is keeping the servers where they currently are (or with a friend) an option? Then you could just VPN into it from abroad.

If that isn’t an option, I’m currently running a homebuilt NAS off an Intel N100 Mini-ITX mainboard and I’m impressed with how many services it can run simultaneously, including Quick Sync Video for hardware transcoding.

I think the Google as an identity provider example is misleading. The more common use case will be medium to small companies where several admins/developers need to login to various servers and where manually adding and revoking keys across these servers will be cumbersome.

As the other commenter said, in those cases, the organization would also deploy its own IDP.

The mirrorlist is a configuration file listing servers that updates can get pulled in from.

When a package update is installed that contains a configuration file, it will not overwrite the old file but be installed with a pacnew extension so that you can merge the files (like you did). It will keep complaining at you until you remove the pacnew file, which is fine to do after you have merged successfully.

The graphical issues are probably due to something else that happened during the update.

The pre mixed spices list their contents and it’s not that hard to come up with something similar by just using the individual ingredients.

Here is an exported result list from Kagi that should be accessible without an account.

deleted by creator

OK, so cases where you control both ends of the communication. Thanks for the clarification.

I’m a developer and would appreciate you going into more specifics about which certificates you suggest pinning.

I have been using it for the last 3 months to expose services from my home internet (plex, wireguard, etc.) through a VPS and I’m pretty happy with it. It’s relatively simple to set up, I haven’t had any outages so far, and it’s nice that it supports UDP port forwarding as well as TCP (for wireguard).

You could go even further and use hard links. That way, you can have two paths pointing to the same data on the partition, with the space getting cleaned up only after all references to it are removed.

As another German, I can confirm that the “first e in mesmer” way is how Germans would pronounce it. See for example 11seconds into this German video also officially from SUSE’s YouTube channel.

I’m surprised that the post does not mention switching to Firefox or any other privacy tool other than their privacy badger, e.g. no mention of uBlock Origin.