InEnduringGrowStrong

Speaking from experience?
That seems rough.

That was supposed to be ‘address’ as in email address, not sure how autocorrect figured that one.

Yes and no… say if you gave the email address lemmyworldthingy@sgarcnlsdomain.com when signin up and you start receiving garbage on it, you just delete the alias and move on.
The trick is that you can have several aliases go into the same inbox so you only have to check one place, but each thing is given its own IP making it easier to identify and filter culprits.

Buying your own domain.
You can then use whatever provider, or host your email service… but at least you don’t need to change addresses when switching anymore.

Interesting.
I’m not doing anything special that wasn’t in one of the popular tutorials and I thought that’s how it was supposed to work, although it might very well be a “bug” how it behaves right now.

I don’t know enough about this, but the drivers are blacklisted on the host at boot, yet the console is still displayed through the GPU’s HDMI at that time which might depend on the specific GPU (a vega64 in my case).

The host doesn’t have a graphical desktop environment, just the shell.

I passthrough a GPU (no iGPU on this mobo).
It only hijacks the GPU when I start the VM, for which I haven’t configured autostart.
Before the VM is started it’s showing the host prompt. It doesn’t return to the prompt if the VM is shutdown or crashed, but a reboot would, hence not autostarting that VM.
If it got borked too much, putting a temporary GPU might be easier.

Also, don’t break your ssh.
Pretty easy with PKI auth.

“eh, that’s a problem for future me”, sais previous me, the asshole.

This, but bottom right also includes past me.

Indeed

Edit the sudoers file.

## user is allowed to execute halt and reboot 
whateverusername ALL=NOPASSWD: /sbin/halt, sbin/reboot, /sbin/poweroff

Yea but I didn’t realize the vaultwarden project didn’t also release client software.
I had looked into running my own vaultwarden, but without open source clients it’s maybe a bit moot. Although I guess the web interface can be considered a client, OS or browser integration is a convenient feature.

Vaultwarden ?

Edit: Nvm, that’s just the server part

I hear ya.
I get 1-6 meetings in the same time slot, people don’t care to check so I don’t care to show.
I decide which meetings are important for actually moving stuff forward and screw the rest.

There’s only ever one guy who complained to my boss…
I didn’t show up for a meeting for a Friday 7pm, invite sent at like 4:58pm the same day for some inane and absolutely not urgent subject.
I saw that invite come in, chuckled, closed my laptop, went home and ignored it.

Later that night, the guy went nuts and CC’d everyone’s bosses because he had wasted the full hour and obviously no one showed up to his meeting “even though I made sure to check everyone’s calendar and everyone was available and you’re all unprofessional”.

I don’t do emails notifications on phones as a rule unless you wanna pay my rate 24/7, but I had forgotten to do my time sheet so I was logged in doing that…

I dabble in a bit of passive aggressiveness in the face of corporate bullshit, so I finished my timesheet and hit propose new time… Sunday 3:21 am…
“Checked your calendar and it was available. Sorry for the inconvenience.”
Closed my laptop and fucked off.

The guy went nuclear over several emails.
Sent a quick email to my boss “Just a heads-up, I think I angered someone by not attending their 7pm meeting they sent at 4:58pm and proposing an equally ridiculous time”

Never heard from the guy again and the next week he wasn’t in the company AD anymore.

Probably went full tilt cookie monster in the coke jar or something.

Pfff, there’s barely any double-booking in that calendar.

Source:
I sacrifice myself to the useless meeting altar so that others can focus on actual work in peace.

The problem is there’s likely not a universal solution that’s guaranteed to clean everything in every case.

Cleaning specific logs/configs is much easier when you know what you’re dealing with.
Something like anonymizing a Cisco router config is easy enough because it folllows a known format that you can parse and clean.
Building a tool to anonymize some random logs from a specific software is one thing, anonymizing all logs from any software is unlikely.
Either way, it should always be double-checked and tailored to what’s being logged.

It depends a lot on what the application is logging to begin with.
If a project prints passwords in logs, consider to just GTFO as it’s terrible security practice.
There might also be sensitive info that’s not coming from a static thing like your username, but from variable data such as IP addresses, gps coordinates, or whatever thing gets logged.
Meaning a simple find&replace might be insufficient.

When possible, I tend to replace the info I remove with a short name of what I replaced out as it’s easier to understand context when it’s not all ********** or truncated.
example:

proxy_container_1     | <redacted_client1_ip> - - [17/Aug/2024:12:39:06 +0000] "GET /u/<redacted_local_user2> HTTP/1.1" 200 963 "-" "Lemmy/0.19.4; +<redacted_remote_instance3_fqdn>"

keeping the same placeholders for subsequent substitutions helps because if everything is the same, then you don’t know what’s what anymore.
(this single line would be easy enough either way, but if you have a bunch and can’t tell client1 from client50 apart anymore that can hinder troubleshooting.

regular expressions are useful in doing that, but something that works on a specific set of logs might miss sensitive info in another.

I’m sure people have made tools to help with that, possibly with regex patterns for common stuff, but even with that, you’d need to doublecheck the output to be 100% sure.

It helps a lot when whatever app doesn’t log too much sensitive info to begin with, but that’s usually out of your hands as a user.

USB 3 micro B