Fuck em, but also a few measurements, plastic prototypes, and 1 shapeways order and you could have a custom stainless socket wrench bit to fit these. I’ve printed a custom shaped utility box key in 17-4 for less than $50.

Hopefully forgefed (based on activity pub) helps with this - in theory you could use your codeberg account to open issues on repos hosted on other instances. I believe forgejo is working on implementing it.

There’s already an issue open for it: https://github.com/immich-app/immich/issues/1713

Be sure to thumbs it up!

If you search for pfsense alias script, you’ll find some examples on updating aliases from a script, so you’ll only need to write the part that gets the hostnames. Since it sounds like the hostnames are unpredictable, it might be hard as the only way to get them on the fly is to listen for what hostnames are being resolved by clients on the LAN, probably by hooking into unbound or whatever. If you can share what the service is it would make it easier to determine if there’s a shortcut, like the example I gave where all the subdomains are always in the same CIDR and if one of the hostnames is predictable (or if the subdomains are always in the same CIDR as the main domain for example, then you can have the script just look up the main domain’s cidr). Another possibly easier alternative would be to find an API that lets you search the certificate transparency logs for the main domain which would reveal all subdomains that have SSL certificates. You could then just load all those subdomains into the alias and let pfsense look up the IPs.

I would investigate whether the IPs of each subdomain follow a pattern of a particular CIDR or unique ASN because reacting to DNS lookups in realtime will probably mean some lag between first request and the routing being updated, compared to a solution that’s able to proactively route all relevant CIDRs or all CIDRs assigned to an ASN.

I think the way people do it is by making a script that gets the hostnames and updates the alias, then just schedule it in pfsense. I’ve also seen ASN based routing using a script, but that’ll only work on large services that use their own AS. If the service is large enough, they might predictably use IPs from the same CIDR, so if you spend some time collecting the relevant IPs, you might find that even when the hostnames are new and random, they always go to the same pool of IPs, that’s the lazy way I did selective routing to GitHub since it was always the same subnet.

They used nagarjuna cement

https://youtu.be/95-KgsbjZ_s

Aiui, back-feeding uncurated slop is a real problem. But curated slop is fine. So they can either curate slop or scrape websites, which is almost free. So even though synthetic training data is fine, they still prefer to scrape websites because it’s easier / cheaper / free.

If it was only a small daily fee then it would be perfect for trading seedlings but you have to reserve a booth for the whole season (the fee is about $300 btw) and you have to pay a fine ($50) if you’re late setting up your booth or don’t give 48hrs notice that you won’t be at your reserved booth any of the days it runs.

You also apparently need a sales tax license to participate.

In other words, like I said our farmers market is only for businesses. If you go stand in the corner and trade seedlings then you’ll probably get kicked out

Our local farmers market unfortunately only really allows vendors and requires an application process (and a sales tax license) - ie you can’t just hang out and trade seedlings and stuff with people without paying a booth fee (of ~$300) so it’s really only for people running a business. There’s also a fine for every day you’re late to your booth so it’s not feasible to pay for a space if you’re not going to show up and sell stuff all season long.

You also can’t apply for a booth later than like 4 months before the season (applications are closed in like Dec) so it’s really not geared towards someone who isn’t selling lots of product.

Yeah I thought odometer fraud was like a serious thing, I wonder if it applies here.

deleted by creator

I’m saying that if your home server (mastodon.social in your example) is outside of Turkey, then there is less reason for them to comply in the first place because they only risk the mastodon.social server being blocked in Turkey. That one is a bad example because they’re one of the largest and they might have a bunch of users in Turkey, so if you want to be extra safe, you’d want to pick a server that isn’t so big so that they are less likely to care about complying with some other county that they might not have any users from.

If the server you use is based inside the country that has a problem with your content, then you’d be screwed - though all the other servers will still mirror and cache your content for a bit even if you get taken down.

The resiliency lies in the fact that you can choose to register in a country that is politically friendly towards your posts or if your home country is friendly but you want to avoid being taken down, you can self host a single user instance and refuse any requests from other countries.

Edit: Now that I think about it, there’s also the fact that as long as the account itself isn’t limited by their home server, the content in question would be accessible through the federated copies, so if the home server isn’t within Turkey / jurisdiction and doesn’t take down the account, the country trying to take down the content would need to send takedown requests or request to geofence the content to each individual server on the entire fediverse - since the home server would be freely federating it to every server with users who follow the content, otherwise they would need to block every fediverse server and every new one every day that more pop up.

The difference is that if your home server is outside of Turkey then you can tell them to kick rocks. Bluesky probably complies because they don’t want to be blocked from Turkey. In a truly decentralized system like activitypub, only the server hosting the account / content in question risks being blocked, which means almost nothing the closer you get to a single account instance. Meanwhile every other server not in Turkey would not notice a difference.

Edit: this was under the assumption that they took it down completely, but it looks like they only geofenced it. Regardless, if they are pressured enough they would be capable of completing hiding an account worldwide, which isn’t possible with activitypub without the legal alignment of every instance’s country since bluesky on the other hand has sole control of the only relay.

I use a .dev and it just works with letsencrypt. I don’t do anything special with wildcards, I just let traefik request a cert for every subdomain I use and it works. I use the tls challenge which works on port 443, so I don’t think HSTS or port 80 matters, but I still forwarded port 80 it so I can serve an http->https redirect since stuff like curl and probably other tools might not know about HSTS.

I think we’ll have to agree to disagree then, I don’t think that is at all the obvious interpretation and I don’t think everyone needs to clarify where they live when talking about it to “avoid the issue”.

Imo if people making assumptions about others living in the US annoys you then you should find it more annoying when someone assumes where you live AND assumes you intended to be presumptuous about it.

Is it wrong to want to talk about the place you live in without telling people where you live? Should everyone be required to state the place they live in any time they talk about it? I don’t really see what the problem is with speaking about your place of residence without revealing where you live. I don’t get how not mentioning where you live means you assume everyone knows. Maybe you not knowing is intentional.

While I think it’s annoying when people assume others live in the US, I think it’s even more annoying to both assume people who don’t mention where they live must live in the US and also assume they intended you to know that they live in the US.

Doesn’t “as a city” just tell you who the “we” refers to? As in “we, the people of our city, need x”? That’s how I understand it.

It’s all good! For some reason your comment still shows up in my inbox in Sync so I didn’t realize

Gotcha thanks for the info! It looks like I would be fine with ocis or opencloud, but since my main use case and pain points are with document editing which is collabora, it probably wouldn’t change much besides simplifying the docker setup (I had to make a gross pile of nginx config stuff pieced together from many forum help posts to get the nextcloud fpm container to work smoothly). But it already works so unless it breaks there’s little incentive for me to change.

talking like your city is the default and everyone knows which one you’re talking about.

Does this mean that everyone must always specify the geographic area they are from when they talk about it lest they risk being accused of assuming everyone knows? I often say that “we need public transit in my city” and it never once crossed my mind that other people would know or assume what city I’m referring to.

I still don’t see how saying that you want x or y in your country is equivalent to talking like your community is the default.

I would totally agree if the statement was “we need x in my country and you all should vote for it” because that would be assuming everyone reading is able to participate and therefore lives there. But that’s far from what the statement was, which made no assumptions and didn’t even mention a country. All they said was that they want something in their country.