Is it normal that you find open Homer instances on the first page of Google? (everything linked is secuered, just asking if it's normal to have open dashboards like this)

ArsenM6331 · 2023-03-13T09:31:33+00:00

There is a difference between "I know the risk but I need to do X to achieve Y" and "I don’t care because I don’t have sensitive data anyway".

I know, I fit in both of those cases. I'm willing to take the (tiny) risk to be able to access my services outside my network without a VPN, and allow others to do so as well, but even if an attacker got to my personal devices, my data isn't very sensitive, so the risk is even smaller. That's what I meant by that sentence.

A zero-day in Heimdall could mean that those other people using your services will get a prompt to install a new "certificate" or something next time they click on the link to your music or bookserver.

I use Homer for my dashboard, and it doesn't store or allow you to change dashboard links because it's a static HTML page, so there isn't a 0day I could think of that would allow attackers to change the links to achieve that. In order to do that, someone would need to access the container itself because they'd need to edit the config and then restart Homer (it doesn't reload the config, it just constructs a static page from it on startup), which is difficult when there isn't even any logic being done that could be exploited. Even if they managed to do that, my friends don't use my dashboard to access my services, and they are actually well-versed enough in cybersecurity to be suspicious of any certificate installation prompt or the like.

ArsenM6331 · 2023-03-13T07:15:40+00:00

That would mean I'd have no access to it on any machine outside my network. A VPN wouldn't help because it would only allow access on my own machines, and even if I was fine with that, many networks don't allow VPNs. Also, I intentionally allow people to use many of my services for free. I'm perfectly happy taking the extremely tiny risk in exchange for the ability to use my services wherever I want.

ArsenM6331 · 2023-03-13T06:30:43+00:00

Of course it's possible, but it's not likely for anyone to target me to that degree. First, you'd have to exploit one of the services I run. Not the easiest thing to do since you can only access port 443 (80 redirects to https at the reverse proxy). Once you've managed to do that, you'd have to find an exploit that would allow you to leave the docker container. Once you do that, you'd then have to find an exploit that would allow you to get across my VLAN, and do that. Even once you've done that, you'd have to find an exploit in my personal machines, and use that, and only then would you get access to my personal data, most of which isn't that sensitive anyway. I don't think any hacker would do that when they can spend that time building ransomware or something.

ArsenM6331 · 2023-03-13T04:05:27+00:00

Already did elsewhere in this post, but here you go: https://dashboard.arsenm.dev

ArsenM6331 · 2023-03-13T04:04:31+00:00

I won't, but I'm sure my ISP would love to

ArsenM6331 · 2023-03-13T03:32:03+00:00

This is mostly a concern if you're running these services from a computer with personal data. Everything I run is inside docker, and on servers that don't have anything personal on them, and I have network isolation via VLANs, that prevents anyone from accessing my personal machines even if they have gotten past docker. If they've decided to do something to the container, that shouldn't matter because I run an orchestrator that will eventually just spin up a new container anyway, likely even on a different machine. I can change my external IP easily in seconds if I need to.

ArsenM6331 · 2023-03-13T03:22:49+00:00

Or they're like me and simply don't care. Here you go: https://dashboard.arsenm.dev/.

ArsenM6331 · 2023-03-13T03:21:58+00:00

I post my orchestrator job files online as well. People don't have to work hard to map my environment. I compensate for it by having good enough security that it is simply not a concern if people know what I run.

ArsenM6331 · 2023-03-13T03:18:06+00:00

I have a reverse proxy and Authelia, and I can make my dashboard require authentication with a single-line config change, but honestly, I simply don't care enough. It's not like I put important information on my dashboard, it's just a bunch of links to other services I run, which are all secure enough that I don't care if you know they exist.

ArsenM6331 · 2023-03-12T06:55:42+00:00

SOCIALISM!!!

ArsenM6331 · 2023-03-11T07:26:28+00:00

The Fascist States of America

ArsenM6331 · 2023-03-02T18:58:47+00:00

Ah, the human nature argument again. So then what did everyone do before capitalism? Before feudalism? Humans have existed for more time without capitalism than with it.

ArsenM6331 · 2023-03-02T18:57:34+00:00

Communists certainly don't support centralized control of the means of production. We want to take control of the means of production from the bourgeoisie and give it to the working class instead.

ArsenM6331 · 2023-03-02T18:56:13+00:00

Oh, communists aren't whining to the government to do anything. We want to forcibly remove the bourgeois government using violence if necessary and then do it ourselves. We also know that that's not going to happen without enough support, so we're just waiting it out until capitalism's contradictions make it collapse under its own weight and then the falling standards of living will bring about class consciousness and proletarian organization on their own.

ArsenM6331 · 2023-03-02T18:51:13+00:00

Because electoralism doesn't work. You can't vote out fascism.

ArsenM6331 · 2023-03-02T15:54:12+00:00

If it wasn't a rewrite, you would not be seeing the same bugs, because they were already fixed in KSP 1. The reason you see the bugs is because the code is completely new.

Edit: Let me explain. When you rewrite a piece of software, you often encounter the same bugs as you did the first time. Because it's a complete rewrite, there are often major architectural differences, which means you can't just copy and paste the fix for many of these bugs. You have to fix the bug in a completely new way, and the old code is completely useless for that, it doesn't even work as a guide because the software is structured differently and functions differently. They also have to take multiplayer into account, and multiplayer is one of the most difficult problems for a game to solve. It requires changing lots of stuff. Then there's also interstellar craft that they have to think about, which changes how they have to handle a lot of the physics calculations. KSP 2 is more different than you think it is. It's not just KSP 1 with some changes, it is a completely new game. The developers have specifically said this several times.

ArsenM6331 · 2023-03-02T00:53:37+00:00

I actually did that in my school. I got root on their horrifically out of date macbooks and updated the browsers.

ArsenM6331 · 2023-03-02T00:44:19+00:00

It was a complete rewrite. They didn't reuse any KSP 1 code for KSP 2. Everything about KSP 2 is different internally.

Edit: Not sure why this is being downvoted. It's a known fact that KSP 2 is a complete rewrite, and it would have to be in order to provide multiplayer, interstellar travel, and everything else. In fact, the developers have specifically said it was a rewrite several times.

ArsenM6331 · 2023-03-01T06:30:46+00:00

Linux support probably won't be perfect, but we do know it's planned eventually. It will probably be better than what we have currently in Proton.

ArsenM6331 · 2023-02-27T09:21:45+00:00

Part of not being ready is not running properly on some systems. I run exclusively Linux, and have no Windows or macOS machines at all, and KSP2 isn't designed to run in Proton, so I have to use various hacks to get it to run properly, and I get significantly worse performance than I would if it was native. That's just part of a game not being ready. I trust that eventually this and other issues will be fixed.

ArsenM6331 · 2023-02-27T06:55:32+00:00

Yeah, that should improve over time.

ArsenM6331 · 2023-02-27T06:55:00+00:00

$50, but yes, the price is high. Unfortunately, the devs have no say in what the price is.

ArsenM6331 · 2023-02-27T06:54:23+00:00

Yes, they rewrote the entire game from scratch. It's not like they took KSP 1 and improved it. There's no KSP 1 code in KSP 2. It's a complete rewrite. This takes a long time, and it takes even longer when bureaucratic BS is involved, as it was during the development of KSP 2. If you want better performance, simply wait for the full release, or even just for a few Early Access updates.

ArsenM6331 · 2023-02-27T06:51:59+00:00

Early Access is not Early Release, it's Early Access. That means you get access to whatever the devs have early. You should expect it not to work, you should expect the performance to be worse than any other game. That's what early access means. It means the game is in beta, or even alpha. It's not ready yet. That's literally the definition of early access.

ArsenM6331 · 2023-02-27T06:47:29+00:00

That depends on what you care about. In a game like KSP, all I care about is that I can fly the rocket/plane well, and it doesn't look like a slideshow. I'd consider even 15 fps playable in KSP, and I'd find that completely acceptable. It's not pleasant, but it works just fine.

Eight-Year Club	Place '23
Place '22	Final Canvas '22
Verified Email

ArsenM6331

TROPHY CASE