Yes, Google has miss reported my websites in the past, all of which were valid, but the person I’m replying to seemed to assume no-SSL is a requirement of the feature, and he doesn’t understand that a wrong/missing SSL is indistinguishable from a Phishing attack, and that the SSL error page is the one that warns you about phishing (with reason).

It is for pull requests. A user makes a change to the documentation, they want to be able to see the changes on a web page.

So? What that has to do with SSL certificates? Do you think GitHub loses SSL when viewing PRs?

If you don’t have them on the open web, developers and pull request authors can’t see the previews.

You can have them in the open, but without SSL you can’t be sure what you’re accessing, i.e. it’s trivial to make a malicious site to take it’s place an MitM whoever tries to access the real one.

The issue they had was being marked as phishing, not the SSL certificate warning page.

Yes, a website without SSL is very likely a phishing attack, it means someone might be impersonating the real website and so it shouldn’t be trusted. Even if by a fluke of chance you hit the right site, all of your communication with it is unencrypted, so anyone in the path can see it clearly.

While YUNO is a great way to get started, I strongly encourage you to understand basic concepts, like docker, and maybe try to run something outside of it for fun. While not even remotely the same thing since YUNO is just the OS and “app store”, you would be very similarly tied to that ecosystem the same way you are to Google now. Not to mean that YUNO would have any control over your stuff, but you would be dependent on them for what you can self host.

Controllers I’ve had (all of which should work on Linux easily, some with minor adjustments needed) in the order I think you should consider them:

• 8BitDo Ultimate 2 Wireless
• PS5 Controller
• Xbox One controller
• PS4 controller
• PS3 controller
• Xbox 360 controller (only connects through dongle)
• Steam Controller (doesn’t have d-pad)

Most controllers should work wired, but I haven’t tested any of them like that because I like my controllers wireless.

In a world where I am limited by hours in a day and how many engineers I have on staff? A bug that nobody knows about is not a bug.

But people know about it, so much that they are reporting it, you don’t know about it, but everyone else does.

That is obviously playing with fire

Exactly, without the report you wouldn’t know what type of bug it is that affects people.

“linux users are smarter and make better bug reports and also have bigger dicks”

No one claimed any such thing, have you actually read the article? He claims Linux users are just more used to making bug reports, so they keep doing that on games the same way they would on any other piece of software. It’s about the mentality than intelligence, most people experience a bug, curse/laugh and carry on. Let me ask you, have you ever reported a bug in a game you played? I’m sure you’ve experienced many, but have you ever actually reported one?

But I think it DOES ignore the reality that adding actual support for a new platform does drastically increase the testing and build/deployment overheads which are usually the realest of costs anyway.

That is true, which is why the majority of games released for Linux are indie, since only indie developers have the necessary funds to carry such big overhead… But being serious, yes, there’s some overhead in setting a Linux build, but it’s usually one of the easiest to make, most games are already doing Windows/Xbox/Playstation/Switch adding an extra pipeline there should be much simpler than you’d expect.

Fix things as they come up" really is the best of both worlds.

How would you know things came up without bug reports?

Its not burying your head in the sand.

It is, just because people haven’t reported it doesn’t mean they haven’t experienced it. Maybe 90% of the people experienced that bug, but only the ones on Linux reported it. It had to be a very big number so that statistically less than 6% of the population experienced it enough to report it. Think about it, what are the chances someone specifically would get a generalized bug? If it’s 1% the chance that that 1% happens to be within the 6% of Linux users is very slim, for that to happen 400 times it’s inconceivable, those bugs were widespread, just not reported.

If it is isolated or people just don’t care? Then… it kind of doesn’t actually matter.

Again, you’re making an assumption, the bugs were probably not isolated, and we don’t know what they were so maybe they were big deals, just unreported big deals.

You scan the forums and optimally have community managers/PR people to do the same to keep an eye out for “This was weird?” style comments but you mostly focus on the stuff that naturally rises to the top or that you identify as an issue.

So you’re saying getting a bug with reproducible steps is worse than having to hire people to search the internet for posts and then pay engineers money to try to reproduce, so that you can finally have the same thing you would have gotten for free? Dude, sometimes people say “the game crashed, piece of shit” and that’s all the info you get in a forum, whereas a bug report is more akin to “When talking to NPC X the game crashed, here’s the stack trace, here’s my save file right before, I’ve confirmed that going and talking to X immediately triggers the issue”, but you do you, hire a community manager full time to read posts in case someone says the “the game crashed”, then pay a QA to sit on their hands until such report comes and then spend months to try to reproduce the issue, to finally get the same bug report that some random person would have given you for free.

The more bug reports you have? That is engineer time spent assessing what is and isn’t a priority.

No, engineers fix the bugs, project managers asses whether a bug is or isn’t a priority, or you thought their job was just to guide you through scrum practices?

And the sad reality is that it is a LOT easier to say “we have our five thousandth number one priority” rather than to say something doesn’t matter.

All you have to say is “your bug has been reported, we will look into it”.

Ok, so, there are multiple things you should be aware.

First of all you’ve set that DNS to be 10.0.0.41, that range of IPs is reserved for lan, similar to 192.168.0.41 would be. Only people in the same local network as you might be able to access it.

Also, usually your home router doesn’t use the 10.x.x.x range, but some ISPs might do it in their internal network, which means your router doesn’t get an internet IP, instead your ISP router does and it shares the same external IP with different houses, so you would need to use something like https://www.whatsmyip.org/ to know what your external IP is.

But there’s more, since you don’t control that router putting that external IP in the DNS won’t work either.

You need to do something more complicated, I recommend you read on cloud flare tunnels for example.

And one final piece of advice, don’t share your urls with randoms on the internet, security by obscurity is not security and all, but publicly advertising your url is asking for trouble, even without doing that you will see several attempts of logging into your servers constantly.

I don’t think you’ll find a replacement because the distinguishing feature for CS is that it’s a service game that you can play online with other people, any game that is not a service game will not be the same, because the single player campaign will be finite and playing against bots gets boring very fast. But that’s okay, as far as service based gaming goes CS is not bad, it doesn’t require payment and at least last time I checked the micro transactions were all cosmetics so no pay to win either.

On paper I should love Authelia, I’m a sucker for y’all configured services, I can write a couple of files on my Ansible and boom, everything works… However I never had much luck setting Authelia up, Authentik on the other hand was very painless (albeit) manual (via UI) configuration. I don’t do anything crazy, so any of them would work for me though, I just failed on setting Authelia and tried Authentik and had had no reason to change.

What problem are you having? Docker is very straightforward, just copy the compose file and run a command.

Kodi is a graphical app, like Firefox, so you won’t use docker for it.

I have Jellyfin running for years too and it has never broken for me, I use Linuxserver image, so maybe they delay the updates a bit?.. Now, Immich has broken so many times that nowadays is the only docker I don’t keep at latest (and I know using latest is a bad practice, I understand the reasons, but the convenience of not worrying about the versions beats all that for me)

Can anyone who owns an 8bitdo Ultimate 2 Wireless confirm if the back paddles and L4/R4 buttons are now remapable on Steam?

There was a post from Valve a while back, you can now remap the back pedals via Steam, so they’re now recognized as a different input button instead of having to use their software to mapping it to one of the existing buttons. At least that’s my understanding, I don’t own any 8bitdo, and this was the reason I never bought one, so that might change in the near future.

Configuration is much easier, e.g. this is the full config you need to expose nextcloud on nextcloud.example.com (assuming caddy can reach nextcloud using the hostname nextcloud)

nextcloud.example.com {
        reverse_proxy nextcloud
}

Comparing that to ngnix configs that need a template for each different service (although to be fair they’re mostly the same).

My point is that of those 120 probably 110 have never been compromised nor forced you to change the password due to expiration policies. The remaining 10 are the ones that require some mental gymnastics, so while the problem exists it’s not as serious as it sounds. I probably have more than 120 identities using this method since I’ve been using it for years, and I don’t think I ever had to use the counter, it’s a matter of being consistent in how you think about websites, for example if you know how you refer to a site slugify it and use that for the field, so you would use spotify, netflix, amazon-prime.

Yeah, it’s probably a legal thing, rreading-glasses is just metadata for books, completely legal, but readarr legality is less clear, so maybe they’re trying to prevent issues.

Also I didn’t understand what is rreading-glasses and why you need it

Say you want to grab a book by Isaac Asimov, you type the name of the book in readarr search bar, readarr contacts a metadata provider to show you cover images, author, date, etc. Then when you select the book readarr uses that metadata to search for downloads and ensure you’re getting the correct book and not another random book with the same name.

The problem is that readarr uses a closed source API for it’s metadata, and it’s constantly offline, which makes it impossible to use readarr. Luckily they allow you to customize the URL for the API, and rreading-glasses is an open source implementation of that API that you can use as a drop in replacement.

Yup, but most of that is easily solvable by being consistent, e.g. always use lowercase and your email (even if it’s not the login for that site). But yes, you need to know to be consistent so it’s a good point to make.

I noticed that my Ansible playbook failed to do a docker pull on readarr, I just commented it and was going to investigate further today. This sucks, especially because rreading-glasses did in fact completely solve the issue they’re facing. Not sure why they didn’t consider migrating to it officially, it’s only a config change.

It’s strange how I never see this mentioned anywhere, but there’s a way to get unique secure passwords for every site/app without needing to store them anywhere. It’s called LessPass, and essentially generates passwords based on 3 fields (site, username, master password) and works relatively well, because the advantages are quite obvious I’ll list the potential downsides:

• If one password is compromised or needs changing for whatever reason you need to increase a counter and need to remember which counter for which site (this is less problematic than it sounds, except in places that have a password policy that forces you to change your password periodically)
• Android can store the master password and use fingerprint to input it, but in PC you always have to type your master password which can get annoying.
• You need to change your passwords to this new format, which can take a while, and years down the line you’re trying to login somewhere and don’t remember if you’ve already migrated it or not.