Skip Navigation

A_norny_mousse

@ A_norny_mousse @feddit.org

Posts

10
Comments

735
Joined

9 mo. ago

`archive.today` and `archive.ph` (also `.is`, `.md`, `.fo`, `.li`, `.vn`) could be Russian assets.

6h ago

A Gripping Finale
Jump
A_norny_mousse @feddit.org 6h ago
I heard WW3 will be a major plot element in the next season.

6h ago

It's weird looking back at life, and seeing all the paths I didn't go down

Jump

A_norny_mousse @feddit.org 6h ago

tbf, dried figs are still very good.

8h ago

Whats going on in YSK?

Jump

A_norny_mousse @feddit.org 8h ago

The only non-lemmy.world account: Melon Husk™@sh.itjust.worksBanned in some community because: Widely reported as a likely unmarked bot using an LLM to generate engagement bait(Profile not deleted)

telokic, sededor, pali, Yecoh, vanes, henaw2, kogito @lemmy.world: gone

All post sorta normal news stories as "YSK".

As others probably pointed out already, this is likely somebody playing with LLM bots (unmarked). Good riddance. Not sure about the first one though.

12h ago

Whats going on in YSK?

Jump

A_norny_mousse @feddit.org 12h ago

Are the posts still up? Can you link them?

13h ago

A Gripping Finale

Jump

A_norny_mousse @feddit.org 13h ago

Just like yesterday. And the day before that. And all last week. Well, ever since January. 2021? No, I meant '25, but it could be just as well.

13h ago

why are they pushing kpop demon hunters so badly? Who makes money off this new group?

Jump

A_norny_mousse @feddit.org 13h ago

I asked three 5-year-old girls what they were playing. They answered K-pop demon hunters. Each of them had a different garish hair color (represented by colorful beanies). That's about all I know about K-Pop Demon Hunters.

14h ago

It's weird looking back at life, and seeing all the paths I didn't go down

Jump

A_norny_mousse @feddit.org 14h ago

Welcome to the rest of your life. There'll be a lot more of this.

Well, son, a funny thing about regret isThat it's better to regret something you have doneThan to regret something you haven't done.And by the way, if you see your mom this weekendWould you be sure and tell her...

1d ago

How long after starting Vitamin D supplements should you notice results?

Jump

A_norny_mousse @feddit.org 1d ago

Here in the dark North I take - during winter only - 50µg daily. I never take it before going to sleep, but tbh I have no idea if it would even make a difference. Sometimes I feel a bit of an effect - like eating something rich in Vitamin C after a day without vitamins. But all in all, I don't think this alone will improve your mood.

1d ago

Spicy Electric Holiday Snake

Jump

A_norny_mousse @feddit.org 1d ago

1d ago

Spicy Electric Holiday Snake

Jump

A_norny_mousse @feddit.org 1d ago

I hesitate to explain.

1d ago

Spicy Electric Holiday Snake

Jump

A_norny_mousse @feddit.org 1d ago

I had to check if this really is what OP describes. Yes, it is:

Argh! Order a deathtrap from AliExpress!(I got an electric shock from one of these once - hand made by my landlord - and tbf I'm still alive, but really, don't)

1d ago

Anubis is awesome and I want to talk about it

Jump

A_norny_mousse @feddit.org 1d ago

If crowdsec works for you thats great but also its a corporate product

It's also fully FLOSS with dozens of contributors (not to speak of the community-driven blocklists). If they make money with it, great.

not exactly a pure self hosted solution.

Why? I host it, I run it. It's even in Debian Stable repos, but I choose their own more up-to-date ones.

Allow me to expand on the problem I was having. It wasnt just that I was getting a knock or two, its that I was getting 40 knocks every few seconds scraping every page and searching for a bunch that didnt exist that would allow exploit points in unsecured production vps systems.

Again, a properly set up WAF will deal with this pronto
You should not have exploit points in unsecured production systems, full stop.

On a computational level the constant network activity of bytes from webpage, zip files and images downloaded from scrapers pollutes traffic. Anubis stops this by trapping them in a landing page that transmits very little information from the server side.

And instead you leave the computations to your clients. Which becomes a problem on slow hardware.
Again, with a properly set up WAF there's no "traffic pollution" or "downloading of zip files".

Anubis uses a weighted priority which grades how legit a browser client is.

And apart from the user agent and a few other responses, all of which are easily spoofed, this means "do some javascript stuff on the local client" (there's a link to an article here somewhere that explains this well) which will eat resources on the client's machine, which becomes a real pita on e.g. smartphones.

Also, I use one of those less-than-legit, weird and non-regular browsers, and I am being punished by tools like this.

All the self hosters in my internet circle started adopting anubis so I wanted to try it. Anubis was relatively plug and play with prebuilt packages

edit: I feel like this part of OP's argument needs to be pointed out, it explains so much:

All the self hosters in my internet circle started adopting anubis so I wanted to try it. Anubis was relatively plug and play with prebuilt packages

2d ago

debian trixie dns config rant

Jump

A_norny_mousse @feddit.org 2d ago

IMO this is largely Debian-specific: this distro seems to hold backward comaptibility in very high regard, so any problem is bound to have a multitude of solutions. In addition, the Debian Wiki is not as well maintained as you-know-whose.

I see nothing untoward here.

Except maybe that last sentence, what "s" are you talking about (fwiw, the man page that comes with an installed package should™ be the ultimate authority)?

2d ago

Me a master memer

Jump

A_norny_mousse @feddit.org 2d ago

I guess it would.

OTOH it's always one of the first things I disable on my phone. That being mandatory would piss me off.

In most laptop web cams, the little LEDs are part of the hardware/firmware modules.

2d ago

Anubis is awesome and I want to talk about it

Jump

A_norny_mousse @feddit.org 2d ago

At the time of commenting, this post is 8h old. I read all the top comments, many of them critical of Anubis.

I run a small website and don't have problems with bots. Of course I know what a DDOS is - maybe that's the only use case where something like Anubis would help, instead of the strictly server-side solution I deploy?

I use CrowdSec (it seems to work with caddy btw). It took a little setting up, but it does the job.(I think it's quite similar to fail2ban in what it does, plus community-updated blocklists)

Am I missing something here? Why wouldn't that be enough? Why do I need to heckle my visitors?

Despite all that I still had a problem with bots knocking on my ports spamming my logs.

By the time Anubis gets to work, the knocking already happened so I don't really understand this argument.

If the system is set up to reject a certain type of requests, these are microsecond transactions of no (DDOS exception) harm.

2d ago

Anubis is awesome and I want to talk about it

Jump

A_norny_mousse @feddit.org 2d ago

it's mentioned in this article

2d ago

Me a master memer

Jump

A_norny_mousse @feddit.org 2d ago

That was my first thought. And how many people have done this already? It's way too easy to take pictures of people while pretending to just be on your phone. They should introduce a little red LED when the camera is on, at the very least.

4d ago

Why do I always have "dreams" that give me anxiety (aka: nightmares)? Why do I never just get to re-live my happy memories in my dreams? Wtf brain?!? This is outrageous! It's unfair!

Jump

A_norny_mousse @feddit.org 4d ago

There was (early 1900s) a cartoon series about a guy having weird dreams every time they ate a grilled (?) cheese sandwhich before going to sleep.

6d ago

What are some of the worst code you have seen in a production environment?

Jump

A_norny_mousse @feddit.org 6d ago

Disclaimer: this is not really about code, but about using IT in my non-IT workplace and I realized this just yesterday. A rant.

I work in the social sector. Our boss seems to have slipped into position sideways (they did not do our work for a significant amount of time before).

I got zero onboarding when I started working there; everything I know about the organisational ins and outs I learned by asking my colleagues.

The boss seems to actively want to not inform me of things, i.e. even if I ask about something they reply in the most cursory manner or immediately refer me to somebody else. I have no idea why they do it, my guess is that they sense that they're woefully inadequate for the job, plus me being much older triggers insecurities?

For example, when I could not log into an app to see my future shifts, I asked the boss about it first but they immediately refered me to tech support. Calling them, after a while we found out that the boss had mistyped my name. Then I could log in.

Last week I was sick and waited til Sunday noon to check this week's shifts - but again I couldn't log in. The boss answered neither phone nor email. Fair enough I guess, on a sunday. Thankfully tech support was working and after a long while we found out that the app for checking my shifts only allows log-ins from within the workplace network, not the open web.

I almost missed my monday shift because of that. Boss calls me, enraged. I explained the situation. They clearly did not know that the app only allows log-ins from within the workplace network.

All my coleagues tentatively/silently agree that this boss is useless. How do we keep the workplace running, and why is it me who is left in the dark? Turns out they have a Whatsapp group. I don't use Whatsapp. They asked me repeatedly and urgently to join.