- 5 Posts
- 421 Comments
27·4 days agoSetting aside the specifics of the case, I do think that from a UI standpoint, cars either need to support being left in park without the climate control eventually cutting off or be so extremely clear that this will happen that it would be extremely difficult for a user to miss, as this is a legitimate example of a “fail-deadly” feature.
IIRC from reading comments from people who have slept in their car and very much want the ability to leave the climate control system active, at least some Toyota models do support leaving the climate control active for extended periods of time, but the car needs to be in “Ready” mode. It was not immediately obvious to users that this was the case.
3·4 days agoDo you want the router to also be 10" rack-mountable? That seems like it’d be a big input into the hardware you get.
Are you looking for specific values in some field in this table, or substrings in that field?
If specific values, I’d probably import the CSV file into a database with an column indexed on the value you care about.
I’m not familiar enough with Cloudflare’s error messages — or deployment with Cloudflare — to know what exact behavior that corresponds to, but I’d guess that most likely it can open a TCP connection to port 443 on what it thinks is your server, but it’s not getting HTTPS on that port or your server isn’t configured to serve up the right certificate for that hostname or the web server software running on it is otherwise broken. Might be some sort of intervening firewall.
I don’t know where your actual server is, may not even be accessible to me. But if you have a Linux machine that can talk to it directly – including, perhaps, the server itself – you should be able to see what certificate it’s handing back via:
$ openssl s_client -showcerts -servername akaris.space IP-address-of-actual-server:443That’ll try to establish a TLS connection, will send the specified server name so that if you’re using vhosting on the server, it knows which site to return, and then will tell you what certificate the web server used. Would probably be my first diagnostic step if I thought that there was a problem with the TLS handshake on a machine I was running.
That might provide enough information to you to let you resolve the issue yourself.
Beyond that, trying to provide much more information probably isn’t possible without more information about how your server is set up and what actually is working. You can censor IP addresses if you want to keep that private.
I assume that it’s legal to ride a gasoline-fueled moped in the bike lane. Does this make everyone happy?
If it honestly doesn’t permit the User password to be reset, is there a “factory reset the whole BIOS” option?
Gotcha, thanks!
I’m assuming that it’s some sort of component from the air conditioner, but damned if I know what it is. Looks like power plugs on it, and someone else mentioned “caps”, so maybe a capacitor, though I wasn’t aware that there was some kind of plug standard for large removable capacitors.
kagis
Yeah, this capacitor looks similar.
EDIT: Apparently air conditioners can use large capacitors:
https://www.amazon.com/Capacitor-Conditioner-Multi-Purpose-Capacitor-5-Warranty/dp/B092ZQ3Y3N
Capacitor for Air Conditioner 5 uf MFD 370 or 440 Volt VAC, Multi-Purpose Round Capacitor for AC Motor Run or Fan Motor Start or Condenser Straight
EDIT2: Oh, I bet I know what it’s for, given the “Fan Motor Start” and what I assume is a misspelled “Condenser Start” text on the Amazon listing. Some hardware will draw a lot of juice when starting up. Laser printers are prone to this, for example. The references above are to mechanical things, moving components, and maybe one need extra power to overcome static friction, to get the parts in motion initially; once moving, they face (lesser) kinetic friction. One option is to just draw a ton of power from the line, but then that increases the peak power demands of a device. Another option, gentler on whatever circuit or external power source is providing the power, is to charge a capacitor for a bit and that’ll let you create a big surge of available power for a moment without having to have higher peak demands on the external power source. Adds to device cost, but limits its peak draw.
I’m sorry, you are correct. The syntax and interface mirrors docker, and one can run ollama in Docker, so I’d thought that it was a thin wrapper around Docker, but I just went to check, and you are right — it’s not running in Docker by default. Sorry, folks! Guess now I’ve got one more thing to look into getting inside a container myself.
While I don’t think that llama.cpp is specifically a special risk, I think that running generative AI software in a container is probably a good idea. It’s a rapidly-moving field with a lot of people contributing a lot of code that very quickly gets run on a lot of systems by a lot of people. There’s been malware that’s shown up in extensions for (for example) ComfyUI. And the software really doesn’t need to poke around at outside data.
Also, because the software has to touch the GPU, it needs a certain amount of outside access. Containerizing that takes some extra effort.
https://old.reddit.com/r/comfyui/comments/1hjnf8s/psa_please_secure_your_comfyui_instance/
ComfyUI users has been hit time and time again with malware from custom nodes or their dependencies. If you’re just using the vanilla nodes, or nodes you’ve personally developed yourself or vet yourself every update, then you’re fine. But you’re probably using custom nodes. They’re the great thing about ComfyUI, but also its great security weakness.
Half a year ago the LLMVISION node was found to contain an info stealer. Just this month the ultralytics library, used in custom nodes like the Impact nodes, was compromised, and a cryptominer was shipped to thousands of users.
Granted, the developers have been doing their best to try to help all involved by spreading awareness of the malware and by setting up an automated scanner to inform users if they’ve been affected, but what’s better than knowing how to get rid of the malware is not getting the malware at all. ’
Why Containerization is a solution
So what can you do to secure ComfyUI, which has a main selling point of being able to use nodes with arbitrary code in them? I propose a band-aid solution that, I think, isn’t horribly difficult to implement that significantly reduces your attack surface for malicious nodes or their dependencies: containerization.
Ollama means sticking llama.cpp in a Docker container, and that is, I think, a positive thing.
If there were a close analog to ollama, like some software package that could take a given LLM model and run in podman or Docker or something, I think that that’d be great. But I think that putting the software in a container is probably a good move relative to running it uncontainerized.
7·26 days agoHmm.
Maybe they’re trying to do LLM-generated articles and are screwing up?
Problem is, some of the text doesn’t seem like something that an AI would come up with. I mean, I can get minor errors, but describing an entire nonexistent init system without some kind of directive in that direction?
checks
It’s dated June 17, so it’s not an April Fool’s Day article.
EDIT: I was gonna say that Linux Journal has been around for a while, and I’ve seen material from them over the years, so they should be reputable. It does look like they were purchased a couple years ago…but by Slashdot, of all places.
https://en.wikipedia.org/wiki/Linux_Journal
Linux Journal (LJ) is an American monthly technology magazine originally published by Specialized System Consultants, Inc. (SSC) in Seattle, Washington since 1994.[1] In December 2006 the publisher changed to Belltown Media, Inc. in Houston, Texas. Since 2017, the publisher was Linux Journal, LLC. located in Denver, Colorado. The magazine focused specifically on Linux, allowing the content to be a highly specialized source of information for open source enthusiasts.[2] The magazine was published from March 1994 to August 2019, over 25 years,[3][4] before being bought by Slashdot Media in 2020.[5]
I wouldn’t expect Slashdot to be putting out incorrect material either.
shrugs
Maybe the site was compromised and someone decided to put up a joke article?
If you only care about folding Markdown, as in your animation, I’m sure that there are Markdown-specific editors that do that.
If you want folding across a wide variety of languages, then I think that your choices are going to be more-limited, since those editors need to be able to parse those languages. Vim and Emacs are kinda the Big Two general-purpose editors, and they’re gonna have the widest support.
EDIT: For specifically programming languages, a number of IDEs can probably do it.
Here’s Eclipse, for example.
EDIT2:
https://en.wikipedia.org/wiki/Comparison_of_text_editors
This has a “text folding” and “code folding” column.
The last time I used a commercial VPS, I’m pretty sure it used VNC to provide console access.
The VNC software I linked to above appears to support TLS. If TLS isn’t sufficient transport security, then most Internet-using software is going to be in trouble.
I’m not sure what you mean by subjective.
I haven’t looked at the VNC protocol for a while, but I don’t think that it imposes any terrible inefficiencies. A couple of decades back, I needed to implement something quick-and-dirty similar to VNC, and went with rendering window contents and handling dragging of windows locally, which I don’t believe that VNC can do (or didn’t then) but IIRC VNC has a tile cache, which, if intelligently used, should avoid most traffic. Dunno if it can deal well with efficiently rendering visual effects.
VNC is dead.
How so?
There are a number of software packages in Debian that implement VNC. To grab one random example, the last commit to their git repo was last month.
If OP is specifically wanting commercial support, they do mention two companies that provide services.
https://www.freerdp.com/support
FreeRDP itself is a community driven open source project. However there are some people and companies that do offer all sorts of commercial support around FreeRDP:
- David Fort - Hardening Consulting - Contact
- Thincast Technologies GmbH - Contact
FreeRDP doesn’t seem to be soliciting donations, though.
10·1 month agoPieFed is an entirely different software package that’s compatible with Lemmy, can federate with it.
Lemmy is written in Rust, Mbin in PHP, PieFed in Python, and Sublinks — not sure if that’s going to go anywhere — in Java.
-
lemmy.world is an example Lemmy instance.
-
fedia.io is an example Mbin instance.
-
piefed.social is an example PieFed instance.
-
demo.sublinks.org is an example Sublinks instance.
-
Speaking for myself, while I’m not really happy about some of the political baggage associated with the lemmy dev team, and additionally would be interested in participating in discussion about non-lemmy server alternatives, I don’t really want to jump into something named quite as adversarially as “cancel_lemmy”.
That’s not to say that there isn’t potentially demand for and interest in this. It just crosses the line into getting more political on the matter than I’d like to be. But I would like to point out that it may be that there are other people who feel the same way, and might exclude some users who would otherwise participate.
EDIT: I’d also point out that while it’s not specifically directed to discussion of the Lemmy software package, !MeanwhileOnGrad@sh.itjust.works has a fair bit of discussion among people who are unhappy about the political side of the lemmy.ml, lemmygrad.ml, and hexbear.net instances and want to discuss that.
I suppose that pretty much covers the full gamut.
EDIT: Here’s the Linux distro family tree:
https://github.com/FabioLolix/LinuxTimeline/releases
It lists 19 still-living Arch-based distros. Disregarding category-based recommendations and looking only at explicitly-named recommendations, as of this writing, you’ve explicitly been recommended 7 so far, or over a third of what exist. :-)