solardirus

joined 1 year ago
sorted by: new top controversial old
FSF announces Librephone project in c/linux@lemmy.ml
[–] solardirus@slrpnk.net 1 points 7 months ago

Good for now *

Tiny Tiny RSS is dead in c/selfhosted@lemmy.world
[–] solardirus@slrpnk.net 1 points 7 months ago

Well no shit, I was just wondering. Damn tho wtf?

Tiny Tiny RSS is dead in c/selfhosted@lemmy.world
[–] solardirus@slrpnk.net 2 points 7 months ago (2 children)

Is the owner a tankie? (stalin justifier) I thought they were just communists, many of whom I know actually hate stalin.

GTK ported to Android — here we gooooo! in c/linux@programming.dev
[–] solardirus@slrpnk.net 1 points 10 months ago* (last edited 10 months ago)

It's actually not that hard. Most of these bots are using a predictable scheme of headless browsers with no js or minimal js rendering to scrape the web page. Fully deployed browser instances are demonstrably harder to scale and basically impossible to detect without behavioral pattern detection or sophisticated captchas that also cause friction to users.

The problem with bots has never rested solely on detectability. It's about:

A. How much you inconvenience the user to detect them

B. Impacting good or acceptable bots like archival, curl, custom search tools, and loads of other totally benign use cases.

GTK ported to Android — here we gooooo! in c/linux@programming.dev
[–] solardirus@slrpnk.net 1 points 10 months ago* (last edited 10 months ago)

It certainly is not negligble compared to static site delivery which can breezily be cached compared to on-the-fly tarpits. Even traditional static sites are getting their asses kicked sometimes by these bots. And yoy want to make that worse by having the server generate text with markov chains for each request? The point for most is reducing the sheer bandwidth and cpu cycles being eating up by these bots hitting every endpoint.

Many of these bots are designed to stop hitting endpoints when they return codes that signal they've flattened it.

Tarpits only make sense from the perspective of someone trying to cause monetary harm to an otherwise uncaring VC funded mob with nigh endless amounts of cache to burn. Chances are your middling attempt at causing them friction isn't going to, alone, actually get them to leave you.

Meanwhile you burn significant amounts of resources and traffic is still stalled for normal users. This is not the kind of method a server operator actually wanting a dependable service is deploying to try to get up and running gain. You want the bots to hit nothing even slightly expensive (read: preferably something minimal you can cache or mostly cache) and to never come back.

A compromise between these two things is what Anubis is doing. It inflicts maximum pain (on those attempting to bypass it - otheriwse it just fails) for minimal cost by creating a small seed (more trivial than even a markov chain -- it's literally just an sha256) that a client then has to solve a challenge based on. It's nice, but certainly not my preference: I like go-away because it leverages browser apis these headless agents dont use (and subsequnetly let's js-less browsers work) in this kind of field of problems. Then, if you have a record of known misbehavers (their ip ranges, etc), or some other scheme to keeo track of failed challeneges, you hit them with fake server down errors.

Markov chains and slow loading sites are costing you material just to cost them more material.

GTK ported to Android — here we gooooo! in c/linux@programming.dev
[–] solardirus@slrpnk.net 4 points 10 months ago (4 children)

Tarpits suck. Not worth the implementation or overhead. Instead the better strat is to pretend the server is down with a 503 code or that the url is onvalid with a 404 code so the bots stop clinging to your content.

Also we already have non-PoW captchas that dont require javascript. See: go-away for these implemwntations

I'm about to give up my organic balcony gardening experiment. This is a cry for help. in c/balconygardening@slrpnk.net
[–] solardirus@slrpnk.net 0 points 10 months ago

The top photo's wasp comes off as a yellow jacket to me. They are notoriously aggressive compared to milder species like mud daubers and paper wasps. So if that's the look of the waso that stung ya, I'm completely unsurprised.

For reference we tend to get quite a few paper wasps in our garden, and they are so mild that they will fly right by us without giving a damn.

Though, to be clear, a lot of wasp aggresssion is dependent on the temperment of their queen. You might need to remove the nest.

Why no central script repository? in c/linux@programming.dev
[–] solardirus@slrpnk.net 2 points 10 months ago

There is no such thing. Every "generic, terminal-based installer" is in reaity a script that was intentionally made to target many multiple distributions.

And do you know what most of them do...? Use the inbuilt package manager of your distro.

That and set up some systemd services and PATHs, sometimes.

You're such a fucking goober.

systemd has been a complete, utter, unmitigated success in c/linux@lemmy.ml
[–] solardirus@slrpnk.net 2 points 10 months ago* (last edited 10 months ago)

I dont think this is a reasomable counterpoint because the target audience in question would also vastly prefer shit as simple as an mspaint illustration or a dithered irl image.

Also, it is quite feasible to find royalty free images, and I have no idea where you're getting the impression it is not. There are a host of images that provide licensing metadata. Google image search and co. can find these. It's simply a matter of verifying the license authenticity.

It's just fundementally stupid.

Wayback: A Wayland replacement for the whole X11 server in c/linux@lemmy.ml
[–] solardirus@slrpnk.net 26 points 11 months ago (3 children)

Thank god. Now if all goes well people can stop talking about that really buggy and awful fork.

Xlibre, a new fork of the X.org X11 server, announced in c/linux@programming.dev
[–] solardirus@slrpnk.net 1 points 11 months ago* (last edited 11 months ago)

If I had a nickel for every time someone ignored me just to say something I directly address...

You are pretty blatantly referencing X11 Forwarding / Network Transparency.

I can't reasonably assume you actually read anything I say, but to briefly reiterate:

Checkout Waypipe. Here's a direct quote from the README:

Waypipe is a proxy for Wayland clients. It forwards Wayland messages and serializes changes to shared memory buffers over a single socket. This makes application forwarding similar to ssh -X feasible.

Have you tried this? What is disatisfactory about it? And if all else fails, is there really ANY problem with simply using VNC/etc? What real-world problem do you have that is uniquely solved with this?

Xlibre, a new fork of the X.org X11 server, announced in c/linux@programming.dev
[–] solardirus@slrpnk.net 1 points 11 months ago (2 children)

What? I've gotten RDP, VNC, and SPICE working fine on Wayland. And if you need app-level displays then waypipe worked fine the last time I used it. I've been running Proxmox containers with Wayland just fine, too.

Any particular use case that benefits from what Xorg was uniquely capable of networking-wise (network transparency, afaik?) of is quite niche and development effort twoards that end has always reflected that!

I've not been able to find the git or project repo/writeup of "Wayland on Wires". Though i do vaguely feel like I saw it somewhere.

But I suppose me and my ongoing computer science degree and shared family hobby of IT simply hasn't reached Real Linux User levels yet. I must sharpen my Bash Blade for another 1000 years...

Since that's the case, I suppose I must defer to your Infinitely Endless Wisdom as a True Linux User. I beg of thee, answer my Most Piteous Questions...:

  1. What do you use Xorg's networking functionality for?
  2. What is ""real"" Linux work?
  3. Why can't you use Wayland for that?
  4. Have you heard of Waypipe? Have you used it?
view more: next ›