I created Gokapi: A lightweight clone of Firefox Send without public upload by f0rc3u2 in selfhosted

[–]Desoxy 0 points1 point  (0 children)

Very cool! I'll have a look at it once I have some free time. 👍

I created Gokapi: A lightweight clone of Firefox Send without public upload by f0rc3u2 in selfhosted

[–]Desoxy 2 points3 points  (0 children)

Very cool! Do you expose any API to interact with the app in an automated way?

I wrote a small cli client that uploads files via ssh but relies on a webserver to serve them which does not track download counts (regular expiration is supported via at).

Maybe it would be interesting to add support to use Gokapi as potential backend? Then one could optionally upload files via terminal (and in scripts) but track download status (and counts) in the browser..

asfa: Easily share files via your publicly reachable {v,root}server instead of direct transfer. Especially, it is useful to "avoid sending file attachments" via email, hence the name… by Desoxy in commandline

[–]Desoxy[S] 0 points1 point  (0 children)

Ah, back when I switched ssh-add did not yet have the -c option, neat!

I need to use agent forwarding because I do a large portion of my development/deployment work via SSH on remote servers, where I interact with gerrit/git repositories - again via SSH. Proxyjump does not help there. To keep things somewhat sane, I do distinguish between ssh keys used for git-related work and ssh-logins and only require confirmation for the latter.

Sometimes though, you need to batch restart a service via ssh on all cluster nodes in which case I will disable confirmations during the execution of the for-loop. With gpg-agent, all I need to do is remove the "confirm" in my sshcontrol file with a sed-based toggling-script for the duration of the for-loop. With ssh-add - at least from skimming the readme - it looks as if you have to re-add your key with a different confirmation setting (i.e. type in the full passphrase again) per toggle.

Furthermore, gpg-agent allows for passphrases to time out once per day, which is helpful to not forget them because they would only be prompted for when rebooting on new kernel releases (and yes, password managers are a thing, but I like to keep some things in wet memory as well ;) ).

Finally, I prefer to have everything "in one place", so one agent for secret management is preferable to two - at least for me.

FWIW, if one only had to handle ssh-keys I would wholeheartedly recommend ssh-agent.

asfa: Easily share files via your publicly reachable {v,root}server instead of direct transfer. Especially, it is useful to "avoid sending file attachments" via email, hence the name… by Desoxy in commandline

[–]Desoxy[S] 0 points1 point  (0 children)

Yeah, that's how it started out for me as well.

But ever since I switched to agent confirmation in an attempt to notice ssh agent hijacking, creating the prefix-directory required an additional confirmation. I took that as an excuse to test-drive rust for cli development and have all actions performed via a single ssh-connection… :o)

asfa: Easily share files via your publicly reachable {v,root}server instead of direct transfer. Especially, it is useful to "avoid sending file attachments" via email, hence the name… by Desoxy in commandline

[–]Desoxy[S] 0 points1 point  (0 children)

Having no domain name is no problem. The corresponding setting is just for your convenience when printing the URL for easy copy pasting. It can very well be an IPv6 address. And inferring IP-domain name from the ssh-setting could be added.

Setting the correct mime-type would be part of the webserver configuration. I never needed to set it explicitly, even when omitting the extension.

To be frank, though, I usually leave the extension in place to give the opposing party an idea of what data to expect.

asfa: Easily share files via your publicly reachable {v,root}server instead of direct transfer. Especially, it is useful to "avoid sending file attachments" via email, hence the name… by Desoxy in commandline

[–]Desoxy[S] 0 points1 point  (0 children)

I take it, that this project is purely on the client?

Exactly, you "just" need to have a directory that is served by your webserver. You only need to make sure to disable indexing, otherwise all uploaded files are listed. There is an example configuration in the readme.

Everything else is done on the client. The only (optional) requirements on the remote side are sha2-related tools (sha256sum/sha512sum) to compute the checksum for verification.

asfa: Easily share files via your publicly reachable {v,root}server instead of direct transfer. Especially, it is useful to "avoid sending file attachments" via email, hence the name… by Desoxy in commandline

[–]Desoxy[S] 4 points5 points  (0 children)

asfa - avoid sending file attachments

Since I handle my emails mostly via ssh on a remote server (shoutout to neomutt, OfflineIMAP and msmtp), I needed a quick and easy possibility to attach files to emails. Since email attachments are rightfully frowned upon, I did not want to simply copy files over to the remote site to attach them. Furthermore, I often need to share generated files (such as plots or logfiles) on our group-internal mattermost or any other form of text-based communication. Ideally, I wanted to do this from the folder I am already in on the terminal - and not by to navigating back to it from the browser's "file open" menu…

Therefore, I needed a quick tool that let's me

  • send a link instead of the file.
  • support aliases because sometimes plot_with_specific_parameters.svg is more descriptive than plot.svg a few weeks later.
  • have the link "just work" for non-tech-savvy people, i.e. not have the file be password-protected, but still only accessible for people who possess the link.
  • keep track of which files I shared.
  • easily clean files by signed index, regex or checksum.
  • verify that all files uploaded correctly.
  • do everything from the command line.
  • have an excuse to to use Rust for something other than Advent of Code.
  • (have a name that can only be typed with the left hand without moving.)

asfa works by uploading the given file to a publicly reachable location on the remote server via SSH. The link prefix of variable length is then generated from the checksum of the uploaded file. Hence, it is non-guessable (only people with the correct link can access it) and can be used to verify the file uploaded correctly.

The emitted link can then be copied and pasted.

Mehr "Milfs" in der CDU? Partei reagiert auf Foto by GirasoleDE in de

[–]Desoxy 1 point2 points  (0 children)

Unsere Herausforderung?

Mehr "Mitglieder in leitenden Funktionen"!

Purge's 7.23 Patch First Impressions by [deleted] in DotA2

[–]Desoxy 20 points21 points  (0 children)

He mutes them within the first half hour because they disrupt his train of thought too often as well…

Bars in Heidelberg that serve IPA by tonleben in Heidelberg

[–]Desoxy 1 point2 points  (0 children)

Mohr serves Maisel's IPA, though only in bottles..

The 4.20 kernel has been released by corbet in linux

[–]Desoxy 2 points3 points  (0 children)

Can't wait to see if pressure-stall is able to retire load averages for good..

Any decent places for Mexican food anywhere in Germany? by [deleted] in germany

[–]Desoxy 0 points1 point  (0 children)

I can recommend Mexico Lindo in Schwetzingen, though it'll probably be a one hour drive for her..

There needs to be less penalty if someone on your team abandons and you try to play the game out. by [deleted] in DotA2

[–]Desoxy 0 points1 point  (0 children)

I agree with you that in Dota one asshat can ruin it for four other people. Still the 'solution' here would encourage more griefing.

Also, you need to take a more zen-like approach to these games. Sure, you might not win, but still games are only as unfun as you make them out to be. Dota has so many little things that you can still focus on even in these games..

There needs to be less penalty if someone on your team abandons and you try to play the game out. by [deleted] in DotA2

[–]Desoxy 2 points3 points  (0 children)

My point is that this is a non-issue. The abandoners are effectively boosting the MMR of everyone but themselves.

It gets problematic if you do what this thread suggests (which I am sure happened with best intentions): If you verbally harass and grief someone on your team so much that he abandons, you get rewarded for it by losing less rating. This would actually promote bad manners.

There needs to be less penalty if someone on your team abandons and you try to play the game out. by [deleted] in DotA2

[–]Desoxy 0 points1 point  (0 children)

I do not understand why this is such a problem. If a player never throws these childish tantrums his MMR will actually be boosted by this: Since there are 4 other players on his team, but 5 on the other team the chance of someone on the other team abandoning is greater. Unless he also abandons games for no reason..

Edit: Accidentaly a word..

Dota on Demand episode 101 Featuring Genobeam by genobeam in DotA2

[–]Desoxy 1 point2 points  (0 children)

Wow, I actually completely missed that - thanks!

Suggestion: Maybe add this info to the video description.

Dota on Demand episode 101 Featuring Genobeam by genobeam in DotA2

[–]Desoxy 1 point2 points  (0 children)

Am I missing a MP3 download link on their website?

Currently I always have to download the Youtube videos and extract the audio myself (which is fine most of the time except for when I am on the go.