• 3 Posts
  • 17 Comments
Joined 1 year ago
cake
Cake day: June 9th, 2023

help-circle


  • Not really. A session token has a lot more entropy and is far harder to crack than a user’s password. Session tokens shouldn’t last forever but that’s why rolling tokens are a thing. You should use a valid token to periodically refresh the token for a new one, and expire the previous one.

    It’s less secure to repeatedly sign users out and force them to request new session tokens by re-transmitting their password to the server. You want to reduce the amount of times you have passwords going over the wire (even if encrypted) and being stored in the server’s memory.



  • No, there’s no legal requirements to say the pledge or anything. I’ve never seen it done outside of schools, it’s just a weird tradition that has been carried on.

    In my high school nobody in my classes actually said it, but one of the teachers or the student council president would say it over the intercom (we didn’t even stand for it, usually just went back to our work while they talked).

    As a younger child in elementary school I remember we were expected to say it, and I do remember a couple kids getting yelled at for not saying it (by the teacher, I don’t think there was any formal punishment). I know some Muslim children would say the whole thing and leave out the “under God” part.

    I never paid much attention to it until I got older and realized how weird it was. I’m hoping it goes away eventually.




  • I was a big Ubuntu Server fanboy until relatively recently. A couple years ago I shifted all my infrastructure into Docker, I don’t run anything on my host machines anymore besides the Docker daemon, a few random cron jobs, and a sendmail configuration.

    Because of that, I’m switching to Alpine Linux on all my servers. I realized the only thing my machines do is operate as Docker hosts, so why should I carry around the weight of a fully fledged Ubuntu Server install? Alpine’s package repo is very good and you can install all the utilities you want (ZFS, SMBD, Btop, etc.) with a single command. It’s also a lot easier to maintain my host because there’s a lot less to break between versions and less packages to update.


  • I started watching his channel back when he did the turn signal video a few years ago. I was skeptical at first because I had seen his videos pop up in my recommended a few times and wasn’t interested in them, but after giving it a chance I love his content and watch most of his videos all the way through.

    The only videos I haven’t watched in their entirety are the ones on subjects I’m already pretty familiar with. It’s hard to sit through 40 minutes of information you already know, but they’re excellent for learning about new topics.


  • Yeah, James Cameron has been to the Titanic and back 33 times. And to the Mariana Trench, and who knows where else. It’s not impossible to do it safely, but that requires spending money on the correct materials, listening to your engineers, cross checking with third party engineers, and not rushing things. Carbon fiber is a stupid material for a sub hull, using different materials with different expansion and contraction rates for your pressure vessel is a stupid decision, not having a way for the passengers to self-rescue is stupid, using a wireless controller without (multiple) hardwired backups is stupid.

    The entire thing reeks of a CEO who doesn’t want to take the time to do things properly in fear of investors losing interest. And I get that fear, I work for a small company as well (not building submarines) and you do have to move quickly with a lot of things. But you DON’T rush things when human safety is a factor.

    That sub should have been remotely operated dozens of times and gone through multiple iterations before they ever let a living creature inside it. It should have been x-rayed between every dive to find microfractures in the brittle carbon fiber hull. Multiple prototypes should have been built and extensively tested to find flaws in the design or assembly process.







  • This doesn’t pertain to your comment in particular, but it’s the first time I’ve realized a pretty significant issue with lemmy. I’m browsing from kbin, but when I click your link, it loads the page on your instance rather than loading the content in my instance.

    This is something we need to figure out, it shouldn’t be too complicated for instances to rewrite links and open the content “locally”. If I want to interact with the post you linked, I have to copy it, paste it into my instance’s search bar, find the same post, and then open it.

    That’s a pretty far cry from the convenience of just clicking a link.


  • This is inevitable if feddit is going to become mainstream. People have a herd mentality, if Lemmy is going to become popular there will always be a handful of instances that are much more popular than the others. These popular instances will need to scale (both vertically and horizontally) while the smaller instances will probably keep getting by with a single server. This is the same way email providers work, half the people I know use gmail, and most of the others use another large provider like yahoo or hotmail. It’s just the way this is going to have to work. People want to join an instance with their friends, even if they’re all federated together. They want to know that the instance they sign up for has peer approval and it’s already a tried and trusted one.


  • Do I get to see every post in every instance?
    Do I get to see all the comments?
    Do others get to see all of my posts irrespective of their instance?
    Can I see and interact with all users irrespective of their instance?
    Yes

    Can I browse Lemmy if my instance is overloaded?
    You can browse, but you can only vote, post, and comment from your home instance.

    If not, can I seamlessly move to a different instance?
    Not as far as I know, but I’m very new to the fediverse as well. Your account is tied to your instance, but there is nothing preventing you from having accounts on multiple instances. You can even choose the same username! Usernames are @username

    For example, I’m @Technoguyfication, but I also have a mastodon account @Technoguyfication. I can browse Lemmy/Kbin/Mastodon/etc. from any of my accounts, but anything I post or comment will be from the account I’m using at the time.