Maybe neither Democrats or Republicans are to blame, but instead it’s the wealthy capitalists who have been using their growing money and influence to force both political parties into supporting a genocide.
Plenty of CEOs of major US companies have shown their support for Israel, but very few have even acknowledge Palestine. The rest of us are just peasants living under the lie that our votes actually could meaningfully change this.
You’re asking this question on Lemmy? Where have you been?
I can understand the convenience of these algorithms, but they always have the same subtly undermining goal: to make people addicted. The fact that TikTok’s algorithm is so good at this is worrying to me even if it doesn’t have an overt bias. It’s also why I think people are having such crazy reactions to the pending ban, even the thought of withdrawal is too much.
I think the problem is that people aren’t hooked to the short video format of TikTok, which there are already many alternatives for, but they are hooked to the algorithm that feeds them endless personalized content with simple guidance (show me more/less like this).
It’s possible to create curated and algorithm-like feeds on Bluesky, but they don’t allow for easy personalization in the same way.
Traefik basically has certbot built in so when you configure a new hostname on a service it automatically handles requesting and refreshing the cert for you. It can either request individual certificates for each hostname or a wildcard certificate (*.yourdomain.com) that covers all subdomains.
The neat trick is that in Docker you configure Traefik by adding Docker tags to the other containers you want to proxy. When you start up a container, Traefik automatically reads the config from the tags, does any necessary setup, then viola it’s ready to go!
Basically the Cloudflare tunnel client connects from the computer running your services (or proxy) out to Cloudflare’s edge servers and your DNS hostname is set to the IP of one of Cloudflare’s edge servers. Cloudflare acts like a reverse proxy by sending incoming SSL requests for your hostname to your tunnel client through their own network. The DNS record doesn’t expose your public IP and the Cloudflare tunnel client easily works behind firewalls, NAT, and doesn’t need a static IP because it connects outbound to Cloudflare’s network.
The biggest limitation is that this only works for SSL traffic because it can be routed by hostname in the SNI without needing a client on the client side. They do offer tunnels for other connections, but that requires their client running on both sides so it’s more like a traditional VPN again.
I’d add that Traefik works even better with Docker because you tag your other containers that have web ports and Traefik picks that up from Docker and terminates the SSL connection for them. You don’t even have to worry about setting up SSL on every individual service, Traefik will take care of that even for services that don’t implement SSL.
It is possible to get wildcard certificates from LetsEnrcypt which doesn’t give anyone information on which subdomains are valid as your reverse proxy would handle that. Still arguably security through obscurity, but it does make it substantially harder for anyone who can’t intercept traffic between the client and server.
The biggest reason to use VPN is that some ISPs may take issue with you running a web server over a residential service when they see incoming HTTP requests to your IP. If you don’t want to require VPN, then Cloudflare tunnels are perfect for this and they also solve the need for dynamic DNS if you want to use static domain because your domain points to the Cloudflare edge servers and they route it to you wherever your tunnel endpoint is running.
Past that, Traefik is a great reverse proxy that can manage getting LetsEnrcypt SSL certificates for you even with wildcard domains and would still work fine with dynamic DNS.
Anyone capable and willing to fight fires in the Los Angeles area should be working with the proper authorities to maximize their efforts. This guy is asking for people to not do that and to benefit him instead.
There are thousands of other people in LA who don’t have “any amount of money” to pay to save their burning homes. I have sympathy for all of them and I’m sure they would all wish the same, but someone thinking they deserve better than everyone else just because they have wealth is immoral just on the face of it, no matter how “good” of a person they are otherwise.
In fact, I would argue the poorer people’s homes should be a priority because they would have a higher portion of their net worth tied up in their home and losing it could ruin them financially. By his own admission, this guy has “any amount of money” to rebuild his home too.
I mean to be fair, it’s a struggle between terms like “expert” or “senior” being too ambiguous and a time interval of experience being a poor indicator of actual proficiency. The corporate world doesn’t care though and ties the two together as a general rule because middle management isn’t smart enough to tell the difference. Thus, it boils down to “we’re hiring a senior level, it takes X years to reach that at our company, thus we expect someone to have that many years of experience at any other company doing a job similar to what we do”. Some HR peon then words it like “you need X years of experience using [exact technologies we expect applicant to use]”.
To tie this back to the OP: Most (?) people understand this is what is happening in basically all job postings where they list years of required experience to match their expected proficiency (i.e. I’m as good as someone who has been doing this for X years), but there are people who interpret this literally and think that if they have X-0.1 years of experience in that exact thing that they will be automatically rejected because it said X is required and they do not have X.
Yeah, don’t ask me my opinion of HR. Biggest boot lickers in the entire universe, change my mind.
As someone who has applied to a lot of jobs, I wish more job posters thought like you. It would take me 1 minute to find you a job posting for an IT position where they ask for a minimum number of years using a technology that hasn’t even existed for that many years.
I think this happens because some manager says “we want an expert in this technology” but then the job poster slaps some arbitrary number on that like “oh 5-10 years should be enough for an expert” with no awareness that it’s a brand new technology.
Oh I don’t think it would change his mind, it would be for my own amusement. I doubt even Jesus Christ reincarnated could change his sad existence.
“Have you ever done something good that didn’t have any benefit for yourself?”
The answer is obviously no, but it would be fun to dismantle his ego.
I don’t think there is any way to have a genuine “open forum” amongst complete strangers. There have always been human troll farms pushing narratives using sock puppet accounts, AI is just enabling it to reach new scales.
I actually am for echo chambers when it comes to social media, but one in which you only follow people you know or trust and ignore complete strangers and to make sure you get news and critical information from OUTSIDE social media, again with institutions you trust.
Well from personal experience with a small website the biggest things you have to deal with are web crawlers trying to vacuum up every last ounce of data they can find and web crawlers trying to find obvious backdoors like trying default WordPress logins (even if you’re not running WordPress). Make sure your software is properly configured and up to date and you’re safe. Some isolation is still a good idea but don’t lose sleep on which one because they’re all still overkill in this case.
On the other hand if you’re running a service that would be actively targeted by a large government enforcement agency or some other very wealthy and highly motivated entity, then complete physical isolation would be the only acceptable answer but with even more protocols to prevent contamination or identification as there have been attacks demonstrated that could infiltrate even air-gapped environments and that’s assuming you could hide it well enough for them not to just come physically compromise it (without you even knowing).
Keep in mind if you want to use any of these technologies because you want to learn them or just think they’re neat, then please do! I suspect a lot of people with these types of home setups are doing it mostly for that reason and not because it is absolutely necessary for security purposes.
I just run Docker and my router maps ports to it. Container isolation and a basic firewall is more than enough for me.
Like are we talking what’s good enough security for hosting an anime waifu tier list blog or good enough security for a billion dollar corporation?
I’ve been moving over to Fastmail. Easy to use, tons of features, great price. 👍
Also quick tip regardless of which provider you end up on: Register a domain name for yourself and use it for your email address. This way if you want to change email providers again in the future or even host it yourself, you can take your domain name and addresses with you.