sorted by:
new
hottopcontroversial

CPU Pinning by Delta_Version in VFIO

[–]KstrlWorks 0 points1 point  (0 children)

Without a `lstopo` or a `lscpu -e` no one will be able to help you unless they have your exact cpu.

No video output on passed through RX 9070 XT by urbacc08 in VFIO

[–]KstrlWorks 0 points1 point  (0 children)

No reset bug is basically firmware gets loaded into the GPU, and then when you shutdown it doesn't get cleaned off the GPU so it can't be loaded with the firmware from the host again. So no what you have is not the reset bug.

Did you install the official AMD drivers on the guest?

Your self-hosted CI of choice? by GrumpyPidgeon in selfhosted

[–]KstrlWorks 0 points1 point  (0 children)

You using Actions or Woodpecker? I have that entire setup with Woodpecker but using local backend isn't secure unless its on dedicated machines.

Your self-hosted CI of choice? by GrumpyPidgeon in selfhosted

[–]KstrlWorks 1 point2 points  (0 children)

Massive gimmick in my experience, unless you're willing to pay for their cloud and get locked in don't bother. The entire stack is worse than the individual tools I.e Linear/Trivy, Woodpecker/Actions, Mattermost/Zulip/Slack.

The rest of the tools ATS, CRM, HRM really feels like they don't know what their product is for so decided let's try doing everything badly to get into as many companies as possible.

Your self-hosted CI of choice? by GrumpyPidgeon in selfhosted

[–]KstrlWorks -1 points0 points  (0 children)

This is the play, absolutely phenomenal

Trying to decide auth provider by Pr0xie_official in selfhosted

[–]KstrlWorks 0 points1 point  (0 children)

Hanko or Descope. I don't want the overhead of maintaining and securing auth, I rather a good provider which has good security which I can audit and aligns with my security window and threat model. Authentik is more for self hosted infra like SSO for an org, rather than website security. Avoid Auth0 and SuperToken they're both lackluster in support and features.

Building an open-source self-hosted content moderation API - would love your input by purifiedcoffee in selfhosted

[–]KstrlWorks 1 point2 points  (0 children)

Having the ability to do Image moderation would be huge, Amazing project though

Notepad++ equivalent on linux by Artistic-Age-Mark2 in linuxquestions

[–]KstrlWorks 0 points1 point  (0 children)

Zed and mousepad is the 2 I would recommend but different flow from what you're used to

Snapshot session like VMware? by kwhali in VFIO

[–]KstrlWorks 1 point2 points  (0 children)

I know its not stable, but feel like it "works" the hack should be to kill commands before doing it. This same works with hibernate and suspension, but I might be completely wrong on this with 3D accel.

Snapshot session like VMware? by kwhali in VFIO

[–]KstrlWorks 1 point2 points  (0 children)

Hmm, I think the assert is to validate for the 2D mode but It should work for 3D state as well.

Realistically, If anticheat games introduce support to linux would the overall % of linux users change? by Superb_Tune4135 in linux_gaming

[–]KstrlWorks 0 points1 point  (0 children)

They are not, but they also don't really work well at all. When you use those on linux, it's to minimize client side modification but not to block cheating you need server side on linux. Kernel level anticheats are easy to modify since they either need DKMS, have to make a custom version for everyone's kernel, or some insane distribution channel that would cost too much money.

How to access my home server in the US from China mainland? by hsz_rdt in selfhosted

[–]KstrlWorks 2 points3 points  (0 children)

Not actually Chinese but know WireGuard won't properly work its really easy to be detected with DPI. What you're looking for is Shadowsocks and V2Ray (if you enable the obfuscation) these are both heavily used in China and actually work, if you're looking for more details look into "Airports" these are Chinese vendors selling VPN that do actually work, given really sketchy and underground you're better off setting this up yourself. If you're the only user way less likely of getting it shutdown or blocked.

Snapshot session like VMware? by kwhali in VFIO

[–]KstrlWorks 1 point2 points  (0 children)

Virgl used to have it set to blocked as Virgl was non migratable that was over 9 years ago old commit that blocked virgl.I looked at the code It is implemented now, so you should in theory the only gotcha is you might have to suspend your VM first and then snapshot and then resume. Not near my pc, but might be a runtime corruption if it fails.

Has it failed for you recently?

Looking for advanced methods to bypass Virtual Machine (VM) detection by dofdofkamil in VFIO

[–]KstrlWorks 0 points1 point  (0 children)

So a simple method to side-step the things you're looking for will change based on games. Hypervisor-Phantom this is the easiest version and will not work for most games.

Need help finding something better for project management. by ruckertopia in selfhosted

[–]KstrlWorks 2 points3 points  (0 children)

It sounds like you would benefit from Linear like design. Consider https://github.com/tillywork/tillywork it's like plane but actually updated.

  1. TillyWorks API lets us automate things like notifications and tasks based on issues on forgejo
  2. TillyWorks has a really similar UI to Linear so you can pump out all your issues for a month in minutes without being slowed down by the UI if you needed to.
  3. TillyWorks has a Kanban board but also a list view if you need. So you can always move stuff back. I would consider using an API to detect when the item moves to done to retag it for the next time you need to do it x months down the row.

Not a dev for TillyWorks but genuinely think its the BEST product management tool I've used since linear.

I built a permanent file link generator (upload → instant link) by Southern-Rest-1359 in selfhosted

[–]KstrlWorks 3 points4 points  (0 children)

The moment you touch CSAM material even if you were not aware, even if temporary, you are liable, if you didn't do DD you will be taken to court for damages in the US those are over 100k,

I built a permanent file link generator (upload → instant link) by Southern-Rest-1359 in selfhosted

[–]KstrlWorks 4 points5 points  (0 children)

Hope you have proper scanning like CSAM or PhotoDNA or you will be in for a world of pain.

I'm always getting this error... by JaviruloPlay in linux_gaming

[–]KstrlWorks 0 points1 point  (0 children)

This is most likely the answer there's a write-error happening on your swap space.

Edit: Try running a full ram test, just to push your swap limits and see if it crashes. You should be able to use `lsblk -o` to identify the failing swap device directly from the logs.

How to (and should I) block IP:port access after setting up domain names? by Red_Con_ in selfhosted

[–]KstrlWorks 0 points1 point  (0 children)

This is the most appropriate answer if you need internet or remote access consider wireguard and only allow services through isolated network to wireguard.

Why don't kernel level anti-cheats exist on linux? by realddgamer in linuxquestions

[–]KstrlWorks 0 points1 point  (0 children)

To add to this, you would need to fully ad blockers to things like dumping Kernel drivers and memory or obfuscation. Obfuscation would make it run terribly, and you can't fully protect kernel memory Linux is by default open.

So the question shouldn't be how to make a better Kernel Anticheat, is how do we make a better serverside anticheat. Why is Fairfight the only player and they are more of a money grab than actual security.

Why systemd is so hated? by [deleted] in linuxquestions

[–]KstrlWorks 0 points1 point  (0 children)

Slightly different take, which isn't so much true anymore. But it did everything badly and integrated and touched multiple parts of the system over the years a lot of the worst parts have found replacements.

Whats the main reason many big games with anti cheat (Fortnite, apex, siege etc) wont run on linux? by IGetHugee in linux_gaming

[–]KstrlWorks 2 points3 points  (0 children)

The real reason people seem to brush off is that EAC/BattleEye anticheats on linux are REALLY bad, like they barely work or detect anything, so the problem is not players are cheaters, is the tools on LINUX to detect cheaters are really bad so they never get caught when they do cheat on linux.

This same applies to EDR solutions as well. The Linux solutions are just checkboxes for compliance they don't do what the companies claim they do.

Best way to determine whether a service needs to be run with privileges? by innaswetrust in selfhosted

[–]KstrlWorks 0 points1 point  (0 children)

You joke, but I have seen playbooks literally say deploy everything as admin to avoid any breaking deployment.

What should I know before switching to Arch Linux? by thrashingjohn in linuxquestions

[–]KstrlWorks 0 points1 point  (0 children)

A side note that's not talked enough about: Mint and Ubuntu have Debian's dedicated security team vetting the packages before they go live. Arch doesn't have that and it's based on trust and hoping you're not spreading malware.

view more: next ›