Last time I was stung by a wasp I was just standing on the street. I wasn’t even moving. I was standing for about 30 minutes waiting when suddenly a wasp came, stung me on the neck and went away flying.

It was a “fuck you in particular” with qll the letters.

When they have good names they get stolen.

Try took up about gemini protocol.

Yeah. Layoffs started with svb bankruptcy. They run out of free investor money and now they are extremely pressured to cut expenses. AI is just the lamest excuse for investors

It’s great for solo roleplaying.

I mean. Not great. But it’s something you can interact with in a way that’s not possible without other people. So that’s something.

It’s a fair point.

I’ve had diverse success using llm for coding.

For simple things and basic questions it has worked. For anything complex. It has been a complete failure.

But I’ve never used a paid tool, most of the time I just use self hosted LLMs. But, to be honest, I don’t think the paid tools are that much better.

But if someone knows how to use it better. And assumes responsibility for checking the code, I’m ok with it.

It’s just a tool like many others, it can be usedfor good or for bad.

I think Pixelfed can sit nicely behind a reverse proxy, to reduce exposure.

I don’t know if there are prebuilt scenarios for pixelfed in crowdsec or fail2ban but it shouldn’t be so hard to at least write something to prevent bruteforce.

I’m in the process of building a monitoring system with grafana stack.

Right now I have monitoring panels for some common metrics and logs. I am yet to set up alerts.

The idea being that if something goes wrong some metric will grow up unexpectedly, for instance network traffic. And I would get a notification.

What I’m still considering is what would I consider abnormal behavior, so I could set up the thresholds.

What do you want to expose, something static or dynamic?

It would be a service you wrote or some stablish project?

I would recommend running whichever service you want to expose through a reverse proxy, traefik or caddy. That way you have some sort of “chocking point” where you can control what’s going and it’s already handling some security for you.

The service should be kept updated.

Then you need a ips (intrusion prevention system). Most famous are fail2ban or crowdsec. You feed the ips the service logs and the reverse proxy logs, and ban ips that try to do something strange. I use crowdsec with a bunch of scenarios and their block lists.

At the end you should only have a couple of ports open to the internet. Usually 80 and 443, and whichever port you use for the vpn, i recommend wireguard. So people should only connect to you via 80 or 443 and those ports should be binded to the reverse proxy. Everything else should never be able to enter your network.

If you have all that and keep everything updated the attack surface becomes really small. You’ll get spam bots trying to probe for vulnerabilities but if you keep everything updated they won’t find anything.

Depending on how many people you want to access your service you could also do some aggressive geoblocking, to reduce the number of bot attacks.

The biggest risk here would be a vulnerability on the reverse proxy or the service you use. Keep an eye out for cve and update things regularly. If a vulnerability allows for remote code execution, then mitigation becomes almost impossible besides a good backup plan. If your vpn fails on you you are also fucked. But wireguard is pretty well secured. Bot scans shouldn’t even be able to know you have wg because pings and connections attempts fail silently without proper authentication.

I’m sorry Dave, I’m afraid I can’t allow you to do that.

O2 was poisonous for that algae.

I just want a good adaptation of Dragonlance. I had dreamed for decades over that.

The animation movie wasn’t even that bad.

Cs2 solo queue is a more pleasant interaction than my neighbors

I suppose it’s due many people not seeing things as black or white, but as a variety of grays.

Then there’s the student who plays wanthunder and leaks a classified F-47 detailed blueprint onto the paper.

What stops a bot to just run an android emulator to scan any prompted qr?

This would only track if we read the small letter of the proposal. That this only work on android devices which have verified identify signed within their account. Meaning that android would require id verification, aka upload your id to google.

If I understand it correctly it would be something that certain websites chose to add.

If a website add this new captcha you wont be able to access the website without a verified android (and I suppose apple too) device.

The device with google play would be use as a way to verify, no matter the device used to browse that website.

I has nothing to do with the version number itself.

It has to do with the functionality that version includes.

Meaning thar there will be websites that would ask for you to scan a qr in order to access them. And that qr scan could only be done from google play services after that version.

https://www.ecdc.europa.eu/en/publications-data/hantavirus-associated-cluster-illness-cruise-ship-ecdc-assessment-and

“Person-to-person transmission of ANDV has only been documented following close and prolonged contact.”

ECDC in this particular case. I’m quickly looking for quotes on my phone. But I doubt WHO have a different response. As the current academic knowledge of the virus is just that. The most studied case was of the Argentinian chilean epidemic when it was though that all contagions had close and intimate contact.

If the flight attendant case is positive then we should reevaluate our knowledge on the virus.

The black plague was kind of deadly.

No, you said, and the WHO for that case, that it was “very complicated and required extended intimacy”. If the case is positive it would mean that person to person contagion of this particular strand of virus is way easier than expected.

I don’t read that, not that you can say me what to read, you don’t have the ability to control what I chose to read, sorry. It was just the first result when googling the news.