Fail2ban allows you set different actions for different infringements, as well as multiple ones. So in addition to being put in a "local" jail, the offending IP also gets added to the cloudflare rules (? Is that what its called?) via their API. It's a premade action called "cloudflare-token-multi"
smiletolerantly
joined 1 year ago
A high-quality laptop without any branding.
I'm currently using a 9-year-old, woefully underpowered laptop made by Xiaomi. Full aluminium unibody, and NO logo. Not printed on, not etched in, not glistening only in the right light. NO LOGO.
I'm not a billboard. I'm not responsible for your brand recognition. Ironically though, far more people have come up to me and asked "hey, what laptop is that" than ever would have cared if there was a logo on it.
It also just looks and feels fantastic, all-aluminium-no-logo just looks so sleek.
So yeah. I will not be upgrading until I find another laptop of the same build quality, with no logo. Tuxedo has that option for most of their laptops, but for some reason not for their only current full-aluminium body -.-
Oh, and don't come at me with stickers.
I switched a couple of months ago, from SwiftKey. Had been using that for ever, long before Microsoft bought it.
NGL, the transition was a bit rough, and the first month my error rate spiked. All good now though, plus Futo has a bunch of super useful features SK never had. Overall, very happy.
We expose about a dozen services to the open web. Haven't bothered with something like Authentik yet, just strong passwords.
We use a solid OPNSense Firewall config with rather fine-grained permissions to allow/forbid traffic to the respective VMs, between the VMs, between VMs and the NAS, and so on.
We also have a wireguard tunnel to home for all the services that don't need to be available on the internet publicly. That one also allows access to the management interface of the firewall.
In OPNSense, you get quite good logging capabilities, should you suspect someone is trying to gain access, you'll be able to read it from there.
I am also considering setting up Prometheus and Grafana for all our services, which could point out some anomalies, though that would not be the main usecase.
Lastly, I also have a server at a hoster for some stuff that is not practical to host at home. The hoster provided a very rudimentary firewall, so I'm using that to only open necessary ports, and then Fail2Ban to insta-ban IPs for a week on the first offense. Have also set it up so they get banned on Cloudflare's side, so before another malicious request ever reaches me.
Have not had any issues, ever.
Why tho? Over here they don't need refrigeration, keep longer, and are still salmonella-free. Really unproblematic to eat them raw as well.
Hab mich jetzt nur durchgeklickt um die Frage zu sehen, bin echt enttäuscht!
Yep, though it's currently just a portfolio site I link to in applications.
Plus also some selfhosting (jitsi, personal mailserver + webmail and contacts+calendar), though most other stuff is on a second domain and pointed at my home.
No. I am not saying that to put man and machine in two boxes. I am saying that because it is a huge difference, and yes, a practical one.
An LLM can talk about a topic for however long you wish, but it does not know what it is talking about, it has no understanding or concept of the topic. And that shines through the instance you hit a spot where training data was lacking and it starts hallucinating. LLMs have "read" an unimaginable amount of texts on computer science, and yet as soon as I ask something that is niche, it spouts bullshit. Not it's fault, it's not lying; it's just doing what it always does, putting statistically likely token after statistically liken token, only in this case, the training data was insufficient.
But it does not understand or know that either; it just keeps talking. I go "that is absolutely not right, remember that <....> is <...,>" and whether or not what I said was true, it will go "Yes, you are right! I see now, ".
There's no ghost in the machine. Just fancy text prediction.
Yeah, with seniors it's even more clear how little LMs can help.
I feel you on the AI tools being pushed thing. My company is too small to have a dedicated team for something like that, buuuut... As of last week, we're wasting resources on an internal server hosting Deepseek on absurd hardware. Like, far more capable than our prod server.
Oh, an we pride ourselves on being soooo environmentally friendly 😊🎉
Makes me feel warm around the heart to hear that it's not just me 🫠
Even with LMs supposedly specialising in the areas that I am knowledgable (but by no means an expert) in, it's the same. Drill down even slightly beyond surface-level, and it's either plain wrong, or halucinated when not immediately disprovable.
And why wouldn't it be? These things do not possess knowledge, they possess the ability to generate texts about things we'd like them to be knowledgable in, and that is a crucial difference.
Who knows?
Unless a piece of software is open source, you cannot know.