Buyvm.net has decent prices, I think you should be able to just upload a standard windows ISO and give it a whirl via VNC assuming you're on a powerful enough VM
Just had a service not work in systemd so no problem I'll write my own entry into the systemd services
... and I've imploded everything 😆 back to the drawing board
More or less Amythest defaults + Mostr for fediverse bridging.
Though mostr is removed from my global relay since the unfiltered activity pub firehouse has a lot if kooky individuals.
#asknostr what's your favorite #tech conspiracy theories?
I've been binging some icebergs lately, but nobody's made a tech conspiracies #iceberg to my knowledge so I thought I would try to make one. If you've got your own favorite conspiracy theory ideas I could use help filling mine out.
Draft Image:
Draft explanations/cheat sheet:
(Rentry is like pastebin but supports markdown)
Github pages maybe?
I'm a bit more positive, honestly AT and Nostr are somewhat similar except with "crawler" layer instead of local clients. If they actually open it up to federalization/decentralization, and especially if it's bridged to here and activity pub, it could be a great thing for everyone.
A bit of a fear of mine that the titan m2 TPM on my phone plus a short password could be counteracted and that the long pword on a dumb encrypted drive on my 🐧 PC is the only long game.
I know the article covers a highly specific exploit on an old device, and I really only have encryption to prevent a stolen device from being accessed by a non-tech savvy thief, but still food for thought.
#technology #cybersecurity #encryption #tpm
I think there's still a silver lining, I'm sure the second it's opened up (at the protocol level not registrations) it'll be bridged in. Given I'm on Nostr replying to ActivityPub, I think more protocols that interact with each other brings a lot of value across the board and if some people prefer AT (for the protocol's technical side or just because of BlueSky) it won't lead to fragmentation like in a centralized platform.
Somebody threw away my plastic bag earlier today I've been using to bring food to work. Might not be there right now, but I'm still a New Yorker at heart and plastic bags are to hot of a commodity to just throw somebody else's out without asking. 😆
My philosophy on that is more or less wanting one big open ecosystem. I mean I'm replying on Nostr to you on ActivityPub/Mastodon, and I'm sure once Bluesky is opened up (at the protocol level, not just registration) there'll be the same there too.
I'm sure most individuals on all three also want a little community of their own, either on specific relays/PDSs/instances or just following/followers of similar interests.
It appears #bluesky is now open for public registration. I guess that means my big blog post I finally finished a week ago is already out of date. 😟
It's good news to see though. I'm sure somebody is going to bridge it here on Nostr or to ActivityPub and thatnks to Mostr (Nostr <> ActivityPub) we'll have three interconnected protocols playing nicely together.
If you want to read about my thoughts on BlueSky and the #AT protocol my slightly out of date blog post us probably still worth reading.
https://nate.mecca1.net/posts/2024-01-30_microblogging-protocols/
It has an interesting implementation, such as splitting servers into PDSs and Crawlers, or Nostr style cryptographic accounts on ActivityPub style single servers.
Forgot to mentioned, they also said they're opening it up to federalization. So while it's all still effectively centralized, presumably it won't be for long.
It appears #bluesky is now open for public registration. I guess that means my big blog post I finally finished a week ago is already out of date. 😟
It's good news to see though. I'm sure somebody is going to bridge it here on Nostr or to ActivityPub and thatnks to Mostr (Nostr <> ActivityPub) we'll have three interconnected protocols playing nicely together.
If you want to read about my thoughts on BlueSky and the #AT protocol my slightly out of date blog post us probably still worth reading.
https://nate.mecca1.net/posts/2024-01-30_microblogging-protocols/
It has an interesting implementation, such as splitting servers into PDSs and Crawlers, or Nostr style cryptographic accounts on ActivityPub style single servers.
https://snyk.io/jp/blog/leaky-vessels-docker-runc-container-breakout-vulnerabilities/
This is well above my pay grade, but for the smart people: there's a possible set of four exploits that can get out of a docker container.
#security #docker
Safelinks are a fragile foundation for publishing
https://shkspr.mobi/blog/2024/02/safelinks-are-a-fragile-foundation-for-publishing/
Microsoft loves you and wants to protect you. So every time you receive an email with a link in it, Microsoft Outlook helpfully rewrites it so that it goes through their "safelinks" system.
Safelinks allow your administrator, or someone at Microsoft, to stop you visiting a link which is malicious or suspicious. Rather than going to example.com, your link now goes to safelinks.protection.outlook.com/?url=example.com.
Hurrah! If you accidentally click on a naughty link you won't cause chaos and ructions.
Except, there's a tiny problem. People like to copy and paste links that they receive. Someone sends an email which says "here's the link to that report you asked for" which then gets copied into a document or a web page.
For example, I was reading this official document from the UK's Department of Health and Social Care. Slap bang in the middle is a link to another report:
That forces everyone who visits that link to go through Microsoft's proxy. That might protect users if a link later becomes suspicious. But, more likely, it will be used in analytics to further profile users who click on links. It also undermines a user's ability to see the final destination of a link unless they can manually URl-decode content in their head.
It appears that every large organisation which uses Microsoft is prone to this failure. Lots of UK Government departments publish content with safelinks:
The US Military too:
It's all over Twitter:
And there are hundreds of academic works infested:
Look, I get why people do this. They copy a link from an email, paste it in, click it, and it works. No one writes raw HTML by hand, nor should they have to. Our WYSIWYG tools work really well and hide all the mumbo-jumbo. Copy editors look at text; not hypertext. It's only nerds like me who hover over a link before clicking on it.
Perhaps I should stop worrying? Perhaps it is OK that Microsoft intercepts the clicks from people all around the world? Perhaps they can competently run a proxy which detects and blocks inappropriate content? Perhaps they won't ever abuse that facility?
Here's my prediction. In the next five or so years, Microsoft is going to accidentally shut off *.safelinks.protection.outlook.com and a million copy-and-pasted links across the web are going to break.
Think I'm over-reacting? A decade ago, Microsoft got rid of their MS Tag product and, shortly after, all their proxy links were shut off. Similarly, other proxies like McAfee have shut down with little warning.
Or maybe Microsoft's sub-domains will be hijacked?
Either way, if you work in digital publishing, please make sure that your links point directly to the content that you want; not to Microsoft's safelinks service.
https://shkspr.mobi/blog/2024/02/safelinks-are-a-fragile-foundation-for-publishing/
#microsoft #privacy #web
Seen that one or twice myself, haven't shared on yet but I'm sure I'm bound to at some point.
If you're experimenting around with browsers my 2c would be to also give LibreWolf a try (fork of Firefox). But the important thing is that you're getting the most value from your software regardless of what's trendy or rccomended by random internet users.
A Startup Allegedly ‘Hacked the World.’ Then Came the Censorship—and Now the Backlash
By Wired Security
https://www.wired.com/story/appin-training-centers-lawsuits-censorship/
#news #tech
note10qdue4dfy9uc0xxuh94rg8yx747l363s3qg3zn5hzw2zxewq7u8q8lu9s0
So I thought I would also throw my hat into the ring in the debate here. I do disagree on my expected outcome of Nostr but that's more my interpretations of where/what I expect to be in the future. Things like limited discoverability (no algorithms), a broad list of clients - many incomplete, and the need to filter out spam or curate is going to be any decentralized social media protocol's burden to bear. They can be improved, and criticizing them is valid, but that's kinda what I signed up for when I chose to enter the wild west of any non-centralized platform.
Things like data and processing power requirements handled by clients are still considerably under streaming HD video, so I can get they're inefficient but I feel like in the world of our bloated web it's not really noticeable in most cases.
The IP thing is a fair point, but it sort of is what it is. You can proxy your IP, but anywhere you go on the internet it'll be available to any server you're communicating with. Somebody shares a link in a twitter DM and they got your IP same as if the DM you an image on Nostr. Honestly Nostr users are probably safer than the average Twitter user from that sort of stuff because we're all at least somewhat tech savvy. Which brings me to what I think is the biggest hurdle for Nostr.
I can't see 'raw' Nostr getting popular with your average Joe, period. Key pairs and user chosen servers are a bit to far beyond the fray of what you can expect somebody to familiarize themselves with. I can pretty much guarantee 99% of the world will never know what a Nostr relay is. That said, with it's openness I can imagine it has a chance to continue to grow.
It's already the case now, but especially when Ditto (by Soapbox/Alex Gleason) is finished we can be a part of the activity pub network, and if AT is ever opened up I'm sure we'll be a part of that too. Throw in content like RSS piped in, and that solves the problem of a lack of content and allows us to both simultaneously be in our own little corner and chatting with 'normies' on threads as if we were also a threads user at the same time.
Not to mention there's always a chance to have a "Threads" on Nostr, something that has a easy to join interface that hides private keys and such, but still allows users to interact with other Nostr users.
TLDR: I'm personally bullish on Nostr because it's very interwoven with the decentralized/federated space as a whole and doesn't need to take over the world to succeed IMO.
Sorry for the very long post. Basically summarized a previous blog post of mine and wanted to get my whole philosophy on it condensed.