WireGuard works great for that.

Not sure if Voyager exposes such a setting (probably?), but on Tesseract I’d do something like this:

Voyager for Lemmy, at least for me, pushes political content like crazy.

No content is being pushed to anyone, Lemmy’s algorithms are very simple. It’s just there’s a lot of it.

You can unsubscribe from or block the politics and news communities, especially worldnews, and it should get rid of a lot of it. I find the experience to be better when subscribing to the stuff you want rather than remove the stuff you don’t want.

This. They even provide the cover image to use. If they don’t want embedding they could just block the request.

But they don’t want to. They want to sell the cake and eat it too.

BlueSky is its own thing with its own federated protocol called ATproto. They have an explanation in their docs on how it works, different features. There’s a bridge between the two as well, a bit janky but effective.

And also do it now because it’s likely about to get a whole lot more difficult to access to services soon.

Ah I see. I wasn’t using those as job suggestions but rather examples of jobs that are considered “loser” jobs and use those to drive the point that they’re important too, and there’s nothing wrong with ending up with those for your whole life. A job’s purpose is to give you money. Trying to comfort OP by removing the “loser” label and not focus as much on “well you could go flip burgers” because that just doesn’t help the emotional side of the situation.

I wish her to aspire to do a little more than those, but even assuming she’s as dumb as she claims to be, there’s still options, some granted less good than others, but just as important to society. I do think she’s got more potential than she thinks though, she reminds me a bit of my wife when I met her and now she’s competing with me as DevOps/SRE.

As another example: I’m autistic, I struggle with a lot of things. I make frequent use of DoorDash, I also hire cleaners every now and then to clean, and handymen to repair stuff in the house I just can’t deal with on my own. All of those jobs, people shit on continuously, and me too because I can’t manage some quite basic tasks. But using those services let me focus on what I’m good at, which is keeping thousands of computers happy. I make a fair bit of money which gets shared with all those that support me in being a productive member of society: cooks, waiters, delivery drivers, cleaners, trades. It’s good for the economy, it’s good for society. Those people deserve respect for their somewhat hidden contributions. Not having those people would ultimately make me fail, that would drag my employer with it, other companies wouldn’t have the software they need to operate.

Every one that contributes to society is important and valueble, whether people recognize it or not.

Yeah that’s an intentionally extreme example. I’ve also seen garbage truck drivers being used in that context. The point is more that we need people on all tiers of jobs, even the literal shit ones. We need truck drivers, we need train drivers, we need people to pick up crops, we need people to take the trash out, we need people to maintain the sewers, we need people to empty out sceptic tanks. They’re critical infrastructure, and one shouldn’t feel bad because they ended up being a garbage truck driver. If you want a cozy repeated job and come home at 5 to your kids and family, that’s perfectly acceptable.

We put way too much emphasis on “success” and its connection to highly educated and high paying jobs.

IMO the fact that fastfood jobs are considered temporary bootstrap jobs that you’re expected to be exploited to hell is bullshit and an indication of the absolutely broken moral compass of the corporate world. We could do without fast food, but that doesn’t mean we should pay them them minimum wage. Everyone deserves a livable wage no matter what they do.

I wouldn’t exclude lower IQ as that major of a problem. Sure maybe it kind of excludes you from being an engineer or a lawyer or a doctor and these kinds of jobs. But there’s plenty of low education jobs around, and there’s no shame in that. If everyone was engineers and lawyers we’d have major problems keeping shops and fastfood open. My dad didn’t finish school and raised me no problem, and lives fine. He might not be good at math or writing, but it’s plenty for woodworking and being a handyman.

As others have already pointed out, you’re articulate and sound smarter than a bunch of people I’ve seen on Lemmy. I mean hell, you found your way into Lemmy, a platform that’s still fairly niche and filled with nerds. You could have gone to Reddit but you came to the fediverse.

Everyone have their strengths and things they’re good at. Finding what you like to do is a good start. Some people inherently take artistic paths, and art has nothing to do with intelligence. What you need to do is figure out what you like to do that’s pleasant and satisfying for you to do, and get out of your head that you have to go to higher education.

Also worth noting, you mentioned ADHD. If you’re not diagnosed for it or treated for it, in itself that can significantly lower your IQ scores especially if not accounting for that. When I had my ADHD assessment, they spent time measuring exactly how much my cognitive performance declines under conditions harsh for ADHD. I swear I struggled to figure out how to take the bus after that because I was so fried, was very glad I was too lazy to take the car that day. They noted, initially being well rested I performed really well then my performance tanked the moment they started hammering the ADHD. It’s also important to understand IQ measures only one thing: intelligence. It doesn’t measure empathy, communication, art, or anything else. That might limit you for intellectual jobs, but you can still be great a people jobs. You could be HR, you could be sales, you could be support. Some of the best artists I know failed school hard.

Stop being jealous and ashamed. Those that shame you can go to hell, all they do is make you think you’re worthless and inferior to them. Find your own path.

Yeah it’ll depend on how good your coreboot implementation is. AFAIK it’s pretty good on Chromebooks because Google whereas a corebooted ThinkPad might have some downsides to it.

The slowdowns I would attribute to likely bad power management, because ultimately the code runs on the CPU with no involvement with the BIOS unless you call into it, which should be very little.

Looking up the article seems to confirm:

The main reason it seems for the Dasharo firmware offering lower performance at times was the Core i5 12400 being tested never exceeded a maximum peak frequency of 4.0GHz while the proprietary BIOS successfully hit the 4.4GHz maximum turbo frequency of the i5-12400. Meanwhile the Dasharo firmware never led to the i5-12400 clocking down to 600MHz on all cores as a minimum frequency during idle but there was a ~974MHz.

I’d expect System76 laptops to have a smaller performance gap if any since it’s a first-party implementation and it’s in their interest for that stuff to work properly. But I don’t have coreboot computers so I can’t validate, that’s all assumptions.

That said for a 5% performance loss, I’d say it counts as viable. My games VM has a similar hit vs native. I’ve been gaming on Linux well before Proton and Steam and have taken much larger performance hits before just to avoid closing all my work to reboot for break time games.

You just put both in the server_name line and you’re good to go.

Yes dual GPU. I set that up like 6 years ago, so its use changed over time. It used to be Windows but now it’s another Linux VM.

The reason I still use it is it serves as a second seat and is very convenient at that. The GPU’s output is connected to the TV, so the TV gets its own dedicated and independent OS. So my wife can use it when I’m not. When the VM isn’t running I use the card as a render offload, so games get the full power of the better card as well.

I also use it for toying with macOS and Windows because both of those are basically unusable without some form of 3D acceleration. For Windows I use Looking Glass which makes it feel pretty native performance. I don’t play games in it anymore but I still need to run Visual Studio to build the Windows exes for some projects.

This week I also used the second card to test out stuff on Bazzite because one if my friends finally made the switch and I need to be able to test things out in it as I have no fucking clue how uBlue works.

The BIOS does a lot less than you’d expect, it doesn’t really have an impact on gaming performance. For what it’s worth, I’ve been gaming in a VM for years, and it uses the TianoCore/OVMF/EDK2 firmware, and no issues. Once Linux is booted, it doesn’t really matter all that much. You’re not even allowed to use firmware services after the OS is booted, it’s only meant for bootloaders or simple applications. As long as all the hardware is initialized and configured properly it shouldn’t matter.

I think a part of it is that english is just the default language and strongly leans american already, so there’s just no demand for a USA instance and people just use the popular or thematic ones for that content. There’s no advantage in laws to prefer US hosting.

The country ones make sense because they’re also a different language, like jlai.lu in french, and the feddits for European languages.

Guarantee there will be questions of cost of setup, maintenance, and risks.

And time moderating it, especially if they run their own. At least with Twitter/Facebook/YouTube, you get a lot of moderation for free whether you agree with it or not.

And if they use another instance, there’s other liability questions about the particular instance to choose. If they’re gonna represent an official city account, you’d expect some cybersecurity certifications to be a requirement and all kinds of stuff, even if it’s a free service. The instance admins interfering, possibly steering opinions during city elections, etc.

Nobody cares about decentralized social networks, the technology, or how terrible the other outlets are. For a municipality, you may want to focus on maintaining multiple channels of communications and ways to reach and engage the most users. You could then fold the fediverse into it as one more channel. Something they should keep an eye on. They’ll need a way to post the same content to all those channels with the least effort. Something easy that a trained intern or clerk can do.

In this case IMO it might even be better to use something like Wordpress with the ActivityPub plugin, or alternatives to that. I imagine a city mostly posts announcements and stuff, so a blog that serves as both an official website and you can follow and interact with it from the comfort of your preferred social service sounds a lot more appealing than just another social media without that many users. Can even use more plugins to post to Facebook and Twitter as well, all from one place. Given the age of the board, they’re also more likely to know and care about Threads and Bluesky compatibility just because they have more users, and bureaucratic decisions are based on numbers. A nice graph showing if they join the fediverse they capture all the users fleeing Twitter by supporting AP and AT.

It’s nicknamed the autohell tools for a reason.

It’s neat but most of its functionality is completely useless to most people. The autotools are so old I think they even predate Linux itself, so it’s designed for portability between UNIXes of the time, so it checks the compiler’s capabilities and supported features and tries to find paths. That also wildly predate package managers, so they were the official way to install things so there was also a need to make sure to check for dependencies, find dependencies, and all that stuff. Nowadays you might as well just want to write a PKGBUILD if you want to install it, or a Dockerfile. Just no need to check for 99% of the stuff the autotools check. Everything it checks for has probably been standard compiler features for at least the last decade, and the package manager can ensure you have the build dependencies present.

Ultimately you eventually end up generating a Makefile via M4 macros through that whole process, so the Makefiles that get generated look as good as any other generated Makefiles from the likes of CMake and Meson. So you might as well just go for your hand written Makefile, and use a better tool when it’s time to generate a Makefile.

(If only c++ build systems caught up to Golang lol)

At least it’s not node_modules

The problem isn’t even where the software is officially based, it can become a problem for individual contributors too.

PGP for example used to be problematic because US exports control on encryption used to forbid exporting systems capable of strong encryption because the US wanted to be able to break it when it’s used by others. Sending the tarball of the PGP software by an american to the soviets at the time would have been considered treason against the US, let alone letting them contribute to it. Heck, sharing 3D printable gun models with a foreign country can probably be considered supplying weapons like they’re real guns. So even if Linux was based in a more neutral country not subject to US sanctions, the sanctions would make it illegal to use or contribute to it anyway.

As much as we’d love to believe in the FOSS utopia that transcends nationality, the reality is we all live in real countries with laws that restrict what we can do. Ultimately the Linux maintainers had to do what’s best for the majority of the community, which mostly lives in NATO countries honoring the sanctions against Russia and China.

Those kinds of problems aren’t particularly new (PGP comes to mind as an example back when you couldn’t export it out of the US), but it’s a reminder that a lot of open-source comes from the US and Europe and is subject to western nation’s will. The US is also apparently thinks China is “stealing” RISC-V.

To me that goes against the spirit of open-source, where where you come from and who you are shouldn’t matter, because the code is by the people for the people and no money is exchanged. It’s already out there in the open, it’s not like it will stop the enemy from using the code. What’s also silly about this is if the those people were contributing anonymously under a fake or generic name, nothing would have happened.

The Internet got ruined when Facebook normalized/enforced using your real identity online.

With Docker, the internal network is just a bridge interface. The reason most firewall rules don’t apply is a combination of:

• Containers have their own namespace including network namespace, so each container have a blank iptables just for them.
• For container communication, that goes through the FORWARD table, not the INPUT/OUTPUT ones.
• Docker adds its own rules to ensure that this works as expected.

The only thing that should be affected by the host firewall is the proxy service Docker uses to listen on a port on the host and send it to the container.

When using Docker, each container acts like an independent machine, and your host gets configured to act as a router. You can firewall Docker containers, the rules just need to be in the right place to work.

The sandboxing is almost always better because it’s an extra layer.

Even if you gain root inside the container, you’re not necessarily even root on the host. So you have to exploit some software that has a known vulnerable library, trigger that in that single application that uses this particular library version, root or escape the container, and then root the host too.

The most likely outcome is it messes up your home folder and anything your user have access to, but more likely less.

Also, something with a known vulnerability doesn’t mean it’s triggerable. If you use say, a zip library and only use it to decompress your own assets, then it doesn’t matter what bugs it has, it will only ever decompress that one known good zip file. It’s only a problem if untrusted files gets involved that you can trick the user in causing them to be opened and trigger the exploit.

It’s not ideal to have outdated dependencies, but the sandboxing helps a lot, and the fact only a few apps have known vulnerable libraries further reduces the attack surface. You start having to chain a lot of exploits to do anything meaningful, and at that point you target those kind of efforts to bigger more valuable targets.