“Die rechtliche Einordnung des US-Einsatzes ist komplex. Dazu nehmen wir uns Zeit”

“Der mutmaßliche Einbruch bei meinem Nachbarn und seine angebliche Entführung sind komplex. Ich habe das zwar alles auf Video aber bis zur gerichtlichen Einordnung gilt natürlich auch hier die Unschuldsvermutung. Dazu nehmen wir uns Zeit.”

Ja nee ist klar… Echt kompliziert das ganze. Wieder so ein Tag wo man nicht so viel fressen kann wie man kotzen möchte. Die Reaktionen der anderen Länder und der EU sind genau so schlimm, keiner lässt es sich nehmen zu sagen wie schlimm denn der Maduro war und wie gut das der weg ist. Kaum ein Wort über den offenen Völkerrechtsbruch.

Außer in dem einen Tagesschau-Artikel gestern war ein schöner Seitenhieb in etwa “so und so verurteilte die Menschenrechtsverletzungen (der Maduro-Regierung, Anm. der Redaktion)…”. Da musste ich schon kurz lachen.

There are quite a lot of packages running it through wine, on AUR, as snap/flatpak, and probably more I didn’t see in my cursory search. So the question is does this exploit work on wine I guess.

Many popular projects written in Rust, including the UUtils core utils rewrite, are MIT licensed as Rust is. There have been people that purposely confuse things by saying that “the Rust community” is undermining the GPL.

How would that ever be a problem in any case? I mean I’m not that versed in licensing stuff, but MIT explicitly allows sublicensing, so if in doubt just slap a GPL-sticker on the MIT code and you are good, no?

Bash shell uses readline for this, which I would guess is the namesake of PSReadLine:

https://wiki.archlinux.org/title/Readline
https://man.archlinux.org/man/readline.3#DEFAULT_KEY_BINDINGS

a low latency kernel (whatever that means. I’ll get there to figure it out eventually)

It’s a kernel with real-time process scheduling enabled by default.

In normal kernels a process can theoretically block all other processes from running for up to several seconds, which is obviously bad for time sensitive things like audio recordings or controlling a CNC-machine for example.

In real-time scheduling all processes are guaranteed time slices in more regular intervals. This is good for time sensitive things like audio recording, but since there is some scheduling overhead it’s bad for single resource intensive processes or process trees like video games.

You can read more about the difference between a real time and low latency kernel here: https://help.ubuntu.com/community/UbuntuStudio/RealTimeKernel

Meh, essentially it’s just writing “Telecommunicationsourcesurveillance” as a single word without the spaces to indicate it’s a singular thing being referred to (in this case the concept of directly listening on the source device before encryption happens). Might seem weird I guess, but you get used to it pretty quickly.

https://de.wikipedia.org/wiki/Telekommunikationsüberwachung#Quellen-Telekommunikationsüberwachung

It means “telecommunication source surveillance”.

I see you there random Krita user! Shill baby, shill!

Video Source on Bluesky

Tortoisegit is God awful, stuck in 1999.

If it works don’t fix it. Not that it’s my go-to.

you just indicated you enjoy reading man pages

I have indicated that I do it, not that I enjoy it. But yeah, I prefer it to skimming 20 verbose blog posts and outdated Stackoverflow questions to find one that is actually related to my specific use case. And often enough the search results will be online versions of the man pages anyway. Not quite sure why you are so hostile about it, I just said “read the docs” basically.

A ton, like the ones integrated in many editors/IDEs, GitHub Desktop, the one with the little turtle icon, forgot its name… Using gitk all the time. Don’t get me wrong I have nothing against a GUI, just saying I had a much better learning experience with git once I started using the CLI and man pages instead of a GUI and random tutorials for them. It’s just a lot more accessible and better documented in my experience.

Just my 2¢ but disagree on this one. Where GUIs are usually powerful but inflexible, the CLI is both powerful and flexible. And getting into trouble usually means you have a print on the console that tells you exactly what happened and what concept or command to look up.

Matter of opinion and goals I guess, but if you want to understand git as a tool I recommend learning the CLI.

To those who missed the small disclaimer in the post, 1.0 is not properly released yet. RC4 is out, actual 1.0 release should be “sometime [this] week” (barring new bugs and regressions). See: https://blog.freecad.org/2024/11/14/freecad-1-0-release-candidate-4-is-out/

Edit: Release is out now: https://blog.freecad.org/2024/11/19/freecad-version-1-0-released/

can’t see how this can possibly be a good thing, you know it will mean funding with conditions.

Well, the things they are funding will get funded? How is that a bad thing?!

The conditions range from very broad, like “fix bugs” (curl), over somewhat specific like “improve cross-platform compatibility and the Linux RNG” (Wireguard), to very specific like “create a test-suite and drive development on the Fediverse account migration functionality” (ActivityPub).

You can see more for yourself at https://www.sovereign.tech/tech

All of these seem to be rather tame conditions that are just there to ensure the funds get used in the way they were intended to be used. And I don’t really see how that gives the STF any sort of direct control over these projects, while it gives those projects resources to achieve more than they might have otherwise. There are no long-term funding models that would enable implicit control over these projects.

android auto

First I heard of this, but since it seems to be just some software that runs on the hardware of car manufacturers it seems rather unlikely. But very theoretically possible, if the car manufacturer was using default process scheduling in a CPU constrained machine and now switches to real-time scheduling in an update. But that was possible for years before this news, the code has just been mainlined to the default kernel now. If the car manufacturer cared about that they would probably have done it already with a patched kernel.

Oh yeah, can’t use the same IP range as your LAN, that will lead to problems. :D Glad it’s fixed.

Out of curiosity, does forwarding work now without the output (-o) command in PostUp?

Like I said in another thread on this post, I’m pretty sure that’s because they are forwarding input but not output in the PostUp rules. Setting a /32 in AllowedIPs works fine for me.

What are you trying to say? That reply also shows AllowedIPs set to a /32 on the server side.

I don’t think that’s what the setting does. Anyway, I have them set to a /32 IP in my server config and it works nonetheless. I get full access to the /24 behind the server from the client.

You have ALL traffic being routed over Wireguard here.

Please correct me if I’m wrong, but isn’t it the other way around? All Wireguard traffic is forwarded to the local interface.

I think the problem might be your PostUp/PostDown lines have an in-interface (-i) but are missing an out-interface (-o) for the forwarding. Try this:

PostUp   = iptables -A FORWARD -i %i -j ACCEPT; iptables -A FORWARD -o %i -j ACCEPT; iptables -t nat -A POSTROUTING -o ens3 -j MASQUERADE
PostDown = iptables -D FORWARD -i %i -j ACCEPT; iptables -D FORWARD -o %i -j ACCEPT; iptables -t nat -D POSTROUTING -o ens3 -j MASQUERADE