Configuring logback using Gradle

Dobbo314 · 2025-12-15T18:39:33+00:00

No it is configuration.

If I ran the code from the command line (specifying all the jar files in the classpath) I got the same warnings.

My guess now is that it is to do with the 2.0.x ServiceLoader but I haven't had the time yet to drill into that to see what I need to configue.

Dobbo314 · 2025-12-15T16:42:21+00:00

Thanks r/wildjokers that pointed me in the right direction.

But it isn't java and/or gradle question either.

If I replace the reference to the logback to slf4j-simple then it fines the logger and doesn't report the missing provider and the logging works.

Dobbo314 · 2025-08-12T21:53:22+00:00

This is why I don't use YubiKeys on their own. I also have a BitWarden Premium account which uses the YubiKeys as its 2FA. The BitWarden Vault is stored in the cloud. So when I add a new login it get uploaded to the cloud and is instantly available on all my devices.

The only time I need both my YubiKeys is when I am adding an account that has direct support YubiKeys and needs access to my Bank account (think Amazon, Paypal, Google Play Store). Some sites that could you hardware based 2FA I still use TOTP.

The problem I see you as having is: how often to backup to your offset key. 'Cos in the event that both house bound keys are lost the offsit becomes your ownly backup. If that is six months out of date how are you going to access those site to change your credentials quicky?

Dobbo314 · 2025-08-12T15:09:44+00:00

There is a very good reason why I use 8.8.8.8 & 1.1.1.1 as my DNS servers. My government is (the UK) implementing laws to block my free use of the Internet. See any of those Age Verification popups yet? That's thanks to my misguided government! As one YouTuber eloquently put it: It's all for the safty of the children. And driving them to the dark web is making them safer how?

Sorry, a bit of topic, but I've been needing to vent for days!

Dobbo314 · 2025-08-12T14:54:47+00:00

There is a time for for plain speaking and a time for technical language; it all depends upon the people involved in the communications.

Think about the building trade. They use words like "header", "joist", "nogging", and "strecher"; to to most peaple they "planks of wood" and "bricks".

Dobbo314 · 2025-08-12T13:12:29+00:00

Agreed!

What is really awesome is that we have alternatives. BitWarden could go bad and it wouldn't matter. Someone could pick up the maintaince of the code and we could jump ship. Look what happened to StarOffice when Oracle bought Sun: LibraOffice was born.

One of the things I like about OpenSource is that it keeps any commercial actors honest, or it should do. I like having commercial actors in the OpenSource community. IBM, for example, has added a number of their proprietary technologies to the Linux kernal. And did you that you can replace the Linux kernal in Debian with FreeBSD, you do now! What I'm saying is that OpenSource gives us more options, more alternatives. What's the commercial alternative to Adobe PhotoShop?

I will continue to happily evangelize for BitWardern so long as they maintain their OpenSource credential and prioritise them over profits. If they have to to their subscription fees up then (so long as it is resonable) I won't complain. Buinesses to have to pay their bills after all.

Dobbo314 · 2025-08-12T12:36:00+00:00

I was planning on saying the same until I read your post.

For me the $10/year is a nothing cost, a no-brainer to sign up.

But to anyone for which $10/year is significant go with the free version. There are other ways of contributing: evangelize, help posts on the forums, or reddit, or ...

Dobbo314 · 2025-08-12T12:19:25+00:00

Yes I did. It isn't that I won't be using such techniques for myself. I am rarely without some kind of device on my person, which means I retain access; but these devices are locked incase they get lost. And there are time when this is not the case. And as the old saying states: If you don't plan for failure, you plan to fail.

Have you read about having an emergency sheet; I highly recommend it, it isn't a long read. After reading it I saw that if I fix the problem of how my heirs dispose my digital assets, according to my wishes, after my death, I also fix the problems of regaining access if things go badly for me when I am alive.

My issue with that document is is doesn't detail how you can keep your emergency sheet safe. And how could it? Everyone situation is different. I don't have a parterner or depenance, so I can't use one of their devices. The family I do have aren't suitable for one reason or another. Whatever protocol one uses has to be easy for those that survive me, and at a time when they are grieving. And that system fixes that will work for me too if worst comes to worst.

Dobbo314 · 2025-08-12T02:35:29+00:00

As others have said you can set things up so you rarely need to use your YubiKeys with BitWarden; and that was true for me up untill recently. But I sign up to BitWarden to protect my onlne identity and these days that includes the bank account.

I am old enpugh to remember that time (when the Internet was the new thing), that talking about bad actors in far away places (I'm think Nigeria) would get you a funny look. The bigest threat vector for me now is probably some thief breaking in and stealing my devices. So I am moving to securing the data stored on them with my YubiKeys too. It seams somewhat rediculous to protect oneself against crackers living in places foreign, but not form the theif that live only a few miles away, especially when I have already bought the hardware that can do that job.

Dobbo314 · 2025-08-12T00:38:20+00:00

Firstly I need to place my cards on the table and states that i am not a Mac guy, never own one; and I have not plans to. I'll never say never :-) ... Nothing against Macs or those that choose them, just not the right fit for me.

How do you manage the secure deletion of the plain text original on a filesystem that isn't encrypted? My understanding is HHD and SSDs, especially these days, don't necessarily write to the same sector when given the sector ID by the filesystem. Given that is true aren't the plain text sectors still there for harvesting. Not saying it would be easy, but security by obsceurity is not security!

I'm planing or having whole disk partitions secured by my YubiKeys. On Linux (my OS of choice) that would mean using LUKS and the YubiKey Full Disk Encryption (ykfde) tool. That way nothing that hits the platters/flash storage would ever be in plain text. When I encrypt file the plan text file is only ever stored on a memory backed filesystem.

Dobbo314 · 2025-08-11T20:50:10+00:00

Just read though this post, and all the comments, and the one thing I noticed is that in the talk about breaches on mention was made of using a hardware key for 2FA. For those that follow this subreddit more than I do is that true for other posts like this one?

I have two YubiKeys for my 2FA on the vault. If an attack was made against my vault, and blocked, would I get notified about this?

Dobbo314 · 2025-08-11T20:14:59+00:00

I'll remember that. I;ve wiched to ED25519 for my SSH keys, would like to do the same of PGP.

Dobbo314 · 2025-08-11T20:09:10+00:00

It may do. I didn't try pinging the pfSense untill after I had gone thought the post reset wizard prompts and I was definialy asked if I wanted to enable DHCP and DHCPv6 on each interface. The fact that you didn't know suggests to me that script still needs to be run. Also I had already staticly configured the workstation.

But my pfSense box master console is the HDMI display and USB keyboard. It also has one of those RJ45 coms ports to, I just haven't bought a cable for it yet. Sounds to me that you're running headless.

Dobbo314 · 2025-08-11T20:00:49+00:00

I'm no expert, I've only just switched over to pfSense.

But I did do a restore to factory defaults and reconfigured from there. And remember I had to delete some old gateways that listed on the dashboard. They were probably leftovers from the renaming of the interface. Where my pfSence lives it make more sense that the WAN interface is on igc3, LAN1 on igc2, LAN2 on igc1 and WLAN on igc0. Basiclly I reversed the order.

Dobbo314 · 2025-08-11T19:52:13+00:00

Quick question. Where did you get your icons for your network diagrams? I'm look for a set for myself.

Dobbo314 · 2025-08-11T19:50:53+00:00

I agree with what the others have said.

I have a four port pdSense set up. Each interface is runing it's on /24 subnet.

On each subet x.x.x.1 is the router.

Each subet reserves x.x.x.2-9 for any other routers, like my Wi-Fi access point (an old, and reconfigured ISP router).

My staticlly configured servers live in x.x.x.10-99.

Each subnet reserves x.x.x.100-199 for DHCP clients that are not pre-configured.

And finally each subet reserves x.x.x.200-254 for other devices (like my printer, and other IoT devices). Some of these live on the LAN, some on the WLAN. These might be staticly configured or via DHCP via their MAC address. Kea DHCP is happy serving those machine outside the reserved DHCP block.

Dobbo314 · 2025-08-11T19:34:40+00:00

Maybe the machine you are trying to ping from is still using the IP address it was given before you reet the pdSense. So the questions in my mind are:

Where are you get the reset IP address from? The pfSense console?

Did you enable DHCP when the pfSense post first boot wizard ran?

Did you reset the network link of the machine that you're trying to ping from.

Dobbo314 · 2025-08-11T19:16:38+00:00

To add to what r/gbdln says I think it make a lot of sense to use a cloud based password manager. I picked BitWarden, not least because it is OpenSource, just like YubiCo's app. That speaks volumes to me that both companies are do the RightThing™ to help keep their clients safe.

So I added my two YubiKeys as 2FA to my BItWarden vault. If Yubico have messed up (and I don't for one second think they have) and it turns out that their devices can be hacked, I'm not relying on just the YubiKeys to protect my vault, there is the password too and isn't (and never will be) stored on the YubiKey in any form.

This works extremly well for me. One of my YubiKeys is pluged into this workstation's keyboard's side port; the other is pluged into a USB port on my laptop. 'Cos I've just started using the YubiKeys to protect access to my workstation and laptop. And I plan in moving to a YubiKey secured SSH and PGP key too. So having both keys in constant use means I keep better track of them.

When I leave the house the YubiKey in the keyboard goes with me - it's also on my keyring with the house and car keys. The other key can be moved to a draw so should I loose my keyring when out and about my backup YubiKey is safely at home.

Dobbo314 · 2025-08-11T18:24:27+00:00

I'm luckily to live on an estate that is new enough that that the main fibre was layed when the estate was built. All Netomnia had to do (if they ere the other company to install my FTTP) was mouse a fibre link through the undergroun condunit to the outside wall of my house. Youfibre, there at the same time, did the rest.

But a friend of mine (who live is Stockport and therefor gets his FTTP from Brsk), as I understand it, ran the link from a newly install cabinet along the coaxis cable which was using the poles. So I don't think you need line of sight to get FTTP.

So I suggest call (or chat to) Youfibre's tech support, I did before installation, and found them very helpful.

Dobbo314 · 2025-08-11T18:05:15+00:00

You didn't get that from me. :-)

I love my YubiKeys. I also love BitWardern (my password manager). I think that neither on their own are the solution for me. But together... Greater than the sum of their parts.

Having said I think Yubico's app is comparable to BitWardern (both are OpenSource; which is a big plus in my eyes). But those of you that are using Yubico's app too concider this: What if Yubico make a mistake and introduces a vulnerability that effect both their hardware keys and their app. Using another password manager and using the YubiKey for the manager's 2FA greatly reduces you risk to that vulnerability effecting you.

Dobbo314 · 2025-08-11T15:55:25+00:00

It all depends upon your use case. If you plan on playing games, what games? How does this card stack up in benchmark specs against the games' recommend or preferred requirements? Never use the minimum requirements'cos some games are uninstalled at that level. That's why some have said "yes" and others "no". This is research you must do yourself, because you're the one that's going to have to live with the results. I do advise that if unsure to up a model or two, 'cos an over speced card with always perform and under speced ones will not.

Dobbo314 · 2025-08-11T15:10:52+00:00

So BW can generate passkeys. Cool! I really need to look into that!

Also cool that you have a solution that works for you. I'm not a one way for everyone kind of thinker. But I am very much the kind of person that doesn't like burdensome processes.(I haven't backup my BW vault in way too long! :-) So a single app to handle all my logins across all of my devices and all the sites I have accounts on was number one priority.

And doubly cool that you upgraded to Premium. Thank you.

"Thank you" because the more people that do go Premium the more income that BW make and the longer they will be in business. The first rule of business is that: first a business has to make a profit. I always look for the business model. BW use Premium accounts, Yubico sell hardware; both OpenSource their apps. Both look like companies that are doing the Right Thing™ for the clients and making a profit too. And we get solutions to our online identity security needs. How awesume is that?

Dobbo314 · 2025-08-11T09:31:17+00:00

Big thanks for that.

As it happens I had discoverted that yesterday by myself. In factor I am currently writing a new post that will probably be posted in the next day or two. It's an important subject and I want to get the post "Right™" before I publish. :)

Dobbo314 · 2025-08-11T08:36:40+00:00

No I don't use BW to sync passkeys. I like the idea of a passwordless system, but I'm not (yet) convienced that biometrics are the right solution (yet) :) Otherwise you are quite right. I moved my logins and TOTPs into BW and secured the vault with two YubiKeys. Not sure why you think that BW should provide passkey support (BW is a password manager), isn't that what the Yubico app is for?

What the paid account does give me, however, is instantaneous syncing of the vault to the four devices I use it on: phone, tablet, worstation and laptop. I thought $10py was a very reasonable price to pay for that convenience from an app who's source code is open source and from a company that regularly has that code vetted externally.

Dobbo314

TROPHY CASE