Pup Biru

+1 davinci… it’s incredible what you get in the free version, and the studio version is getting more and more worth the money in a value add way rather than a need it way

to really hammer home this “many ways to hide”: the PDF is kinda just like a container… it contains other things like images (the patterns for example)… these patterns are probably vector graphics (made up of lines rather than pixels)… this means you can magnify them basically infinitely… and they can contain transparent lines and all sorts of things. they could easily embed that same text in the SVG image, at tiny scale (less than a pixel at 100% scale), and make it transparent… no PDF editor is going to touch the image data: it simply doesn’t really understand it to that degree - it’s an image; not a PDF after all… so that information will remain even after you’ve removed all visible/reasonable marks

this is just 1 example of practically infinite places it could be - and remember, this text is just lines in an image! it’s not like you can ctrl+f for the text necessarily… you’d have to go through every image manually and inspect every single line, and even then there are no guarantees (perhaps they encoded that information like morse code in bumps in some lines that are only barely visible at 1000% magnification)

in global shipping, closeness actually doesn’t make things necessarily more eco friendly: when you have 100 ships full of cargo heading from china to the US, they’ve got to return too… either they return full of something, or nothing

i’m not sure how it all works out in this case, but slowly moving things from the US to asia is practically free, in pretty much all regards

which they handled about as well as you can: prompt and clear notification without trying to pass the buck

the potential of a data breach is just a fact of life with any SAAS product - bugs happen… and it’s exactly the SAAS part of the product that makes the invites/login/aggregation of servers so smooth

there are some admin endpoints that are authenticated using any local IP, but the method they use allows spoofing the IP so those endpoints become accessible essentially without authentication

there were some other issues to do with unauthenticated enumeration and playback of content i believe too

i’m not likely to wrangle installing and maintaining wireguard on my mums cheap smart tv

and if that’s the solution, as i said you get plex local playback so that’s free still anyway

my main issues

• jellyfin has known security vulnerabilities and shouldn’t be run on a public network. that means everyone using your server remotely needs to be on a VPN… and then you may as well use plex because it’s “local” so the remote streaming thing doesn’t apply
• swiftfin (which i need for apple tv) doesn’t support media segments

the thing that everyone always glosses over is that jellyfin should not be run on a public network. it has known security vulnerabilities… that includes VPN remote proxy, so now you have to have external users on your actual VPN, and if that’s the case then plex will work fine because it’s “local”, and has a lot more features

(and my main issue: media segments don’t work on swiftfin)

the good guys are people defending their country from military incursion

in this particular case (or rather ukraine, poland, estonia), in every conceivable situation, russia are the bad guys and nato are absolutely the good guys

has nato done some disagreeable shit in the past? sure! absolutely! there’s your grey: nato aren’t always the cut and dry good guys… but in this case… cut and dry: russia can fuck right off and nato is a force for good

absolutely this

CSP is also a possibility, but really you’re talking about an internal attack on your own infrastructure: either by infra teams on your production or devs on your infrastructure (or an external malicious actor able to deploy code)… i think that’s just so unlikely that it’s not worthy of concern unless you’re something like a bank

bonus points: check out the *arr stack and don’t worry about manually downloading content ever again

we have meaningless standards for a lot of things… just ask someone on the spectrum what they think of social norms and they’ll have a huge list of things that don’t make any logical sense that people just do

i’m not saying it’s right, but it’s just something that humans do

it’s the same kind of statement as saying that, for example, politicians should wear suits… we tend to have expectations that everyone is dressed to a similar level for the context they’re in. in public, that expectation tends to include a shirt of some kind. shirtless is a similar level of “should have to” as arriving at work or a party dressed too casually

imo in this case the offence wouldn’t be the “a bit rude” part: nobody likely got fired for speaking another language before the rule… the offence would be breaking company policy/rules

PLA is pretty brittle AFAIK. these need to be squeezed, so i’m not sure it’d do… perhaps they could add something to it? but whether that additive would also be compostable… it’d certainly make it non-recyclable

the UN is a place for diplomacy at all costs: nothing more. any action that comes from the UN is simply a secondary outcome of facilitating talk between countries

it’s not meant to have teeth - it’s meant to facilitate agreement, and avoid misunderstanding

if you want it to be permanent you’ll probably want to mount via /etc/fstab (this is the list of things that are mounted every boot, so it’ll persist after a reboot)

that said, i’d guess it’ll be in /mnt

looks like jellyfin is running as the user “oriol”. does that sound right?

assuming you have your files mounted somewhere locally that jellyfin can access, their file permissions will need to allow access to that user

you should be able to find the user jellyfin is running as with:

ps aux | grep jellyfin

the first column is the user name or ID

you’re looking for a line something like this

biru       13576  0.1  9.6 281378280 3170688 ?   Ssl  Jul09  85:05 /usr/bin/jellyfin --ffmpeg=/usr/lib/jellyfin-ffmpeg/ffmpeg

no matter who wins the territory, ukraine has won in the long term

or rather, everyone loses i guess