y8

# Example how you can "patch" Matodon running in docker swarm by exploiting "config mounts" 
# to avoid mounting files from local system
services:
  web:
    # original configuration
    # ...
    configs:
      - source: mastodon-remove-char-limit
        target: /mastodon/config/initializers/4_char_limit.rb

timothyham

A Short IPv6 Guide for Home IPv4 Admins

This guide is for homelab admins who understand IPv4s well but find setting up IPv6 hard or annoying because things work differently. In some ways, managing an IPv6 network can be simpler than IPv4, one just needs to learn some new concepts and discard some old ones.

Let’s begin.

First of all, there are some concepts that one must unlearn from ipv4:

Concept 1

flaviovs

Iptables(8) TARPIT is a useful security mechanism that can slow down or stop attacks on a network. If everyone used TARPIT to block attackers, in theory their resources would be exhausted as their connection attempts would be delayed, which would discouraged people from attempting unauthorized access. Here's a brief description of how TARPIT works:

To achieve this tar pit state, iptables accepts the incoming TCP/IP connection and then switches to a zero-byte window. This forces the attacker's system to stop sending data, rather like the effect of pressing Ctrl-S on a terminal. Any attempts by the attacker to close the connection are ignored, so the connection remains active and typically times out after only 12–24 minutes. This consumes resources on the attacker's system but not

travisbrown

samuelcolvin

const log_el = document.getElementById('log')

function log(...messages) {
  console.log(...messages)
  log_el.innerText += '\n' + messages.map(m => JSON.stringify(m, null, 2)).join(' ')
}

function error(message) {
  console.error(message)
  log_el.innerText += '\n' + message

csarn

Usage

on system that should be backed up

• put "restrict_commands.sh" in /usr/local/bin and make it executable
• install ts, lzop and optionally mbuffer

useradd zfsbackup --create-home --system
mkdir /home/zfsbackup/.ssh
zfs allow -u zfsbackup send,hold tank/dataset
echo 'restrict,command="restrict_commands.sh" ssh-ed25519 ...' > /home/zfsbackup/.ssh/authorized_keys

derhuerst

Geekbench 6

product	notes	price (incl. VAT)	dedic.?	cores	RAM	SSD	Yabs	Geekbench ST	Geekbench MT	Geekbench version	operating system	date of benchmark
Hetzner CPX11		4,58€/m	no	2	2GB	40GB	-	1476/1496	2714/2732	Geekbench 6.3.0 Build 603408 (rosedale-main-build bca065a7d9)	Ubuntu 22.04	2024-07-02
Hetzner CPX21		8,39€/m	no	3	4GB	80GB	-	1484/1474	3862/3792	Geekbench 6.3.0 Build 603408 (rosedale-main-build bca065a7d9)	Ubuntu 22.04	2024-07-02
Hetzner CPX22	no IPv4

tnwei

import subprocess
from pathlib import Path
import os

import click
from livereload import Server

@click.command()
@click.argument("pathsource", default=".", type=Path)
@click.option("-o", "--outputdir", default="_build/html", type=Path, show_default=True)

cnlohr

Did you just check out / clone a repository and forget --recursive / --recurse-submodules? Well, do this:

git submodule update --init --recursive --remote

For information about why this nugget was lost and burried in another stack exchange article, see this: https://meta.stackoverflow.com/questions/400424/how-can-i-request-that-a-question-merge-be-reversed

Deliquescence

:root {
  --custom-accent-color: white;
}

/* Hide "Close Multiple Tabs" menu */
#context_closeTabOptions {
  display: none !important;
}