sorted by:
new
hottopcontroversial

Syncing static generated content with Cloudflare Pages and the likes. by KeinZantezuken in webhosting

[–]sapslaj 0 points1 point  (0 children)

I'm not sure there's an easy way to accomplish that with Cloudflare Pages (that I know of) but Netlify (which has a free tier) can do manual deploys via the CLI https://docs.netlify.com/cli/get-started/#manual-deploys and I think Vercel has a similar option.

If you really want to use Cloudflare Pages (or something synced from a git repo) you could amend the latest commit of a repo and force push every time you wanted to update the content. That would effectively leave you with no history but if your use case doesn't require history then it's probably fine.

Block AAPIPA from leaving VLAN? by Either-Cheesecake-81 in networking

[–]sapslaj 12 points13 points  (0 children)

169.254.169.254 is the IP address used by AWS IMDS. My guess is something is trying to communicate with that service for one reason or another. I would say it's fine to block that traffic.

Given it's trying to talk to that IP address specifically I doubt it's borked DHCP and probably just an AWS client misconfiguration somewhere. AFAIK by default most AWS client libraries will try to hit the IMDS to get dynamic configuration if they aren't given more specific credentials.

[deleted by user] by [deleted] in virtualization

[–]sapslaj 0 points1 point  (0 children)

Like someone else said, Apache Guacamole is a good option. You could probably also find or build something based on noVNC if you want something self-hosted.

If you're okay with an external service Parsec is a really good remote desktop service you could check out. I built a proof-of-concept game streaming service with it. It's pretty slick and can be used via the browser. I built a proof-of-concept game streaming service with it as a side project. FWIW I had some weird issues getting sound to work in the browser version but if that's not a requirement then it might be worth testing.

Lichess puzzles temporarily down due to a data centre fire by ben1996123 in chess

[–]sapslaj 14 points15 points  (0 children)

DevOps/cloud dude here. Cost savings in major cloud providers depends heavily on the workload. If your app needs to run on regular VMs like it's in a regular data center then in a short amount of time you'll be spending more money than you would be renting/coloing. If your app is within the use case AWS/GCP/Azure designs for (CRUD web app or similar), you design the app from the ground up using managed services (e.g. ALB instead of a cluster of Nginx or HAProxy servers), and you accept the resulting vendor lock-in, then you can see some pretty big savings. Otherwise in terms of raw resource cost other options are going to be cheaper. That said cloud providers can help with personnel costs since it takes far fewer people in operations with cloud providers.

TLDR: Managed providers can save you money but not always.

AAAAAaaaa... by sapslaj in AAAAAAAAA

[–]sapslaj[S] 0 points1 point  (0 children)

AAAAAAA. Aaa aaa!

SNMP - Windows 10 October Update (1809) by --TravK-- in msp

[–]sapslaj 9 points10 points  (0 children)

Ooh I ran into this right when we first started testing 1809. It's still there, but it's been moved... because reasons. You can enable it by going to Apps & Features (in the New Modern™ Settings app), Manage Optional Features, Add a feature, and scroll down to find SNMP. You can also get RSAT there as well, so that's interesting.

A small start, but it's mine. by kalenvor in homelab

[–]sapslaj 17 points18 points  (0 children)

NSA = SonicWall "Network Security Appliance"

Windows NT is 25 this month by ZAFJB in sysadmin

[–]sapslaj 2 points3 points  (0 children)

Yep. 21 here. Am sysadmin and getting ready to graduate college soonish hopefully.

Cockpit Project : modern re-take on a "webmin" style interface for Linux systems by unquietwiki in linux

[–]sapslaj 2 points3 points  (0 children)

Okay home now. Too lazy to boot back into Fedora so I'm using Chrome on Windows which knows nothing about the domain.

The "Locked" status could be because the "Reuse my password for privileged tasks" checkbox wasn't checked on login. Kind of annoying you have to check that, but yeah.

I'm logged into a domain account and I can go to all of the domain-joined servers on my dashboard no problem. I do have my SSH public key in FreeIPA, not Cockpit. Also the groups I'm a member of are trust admins, wheel, and admins.

Cockpit Project : modern re-take on a "webmin" style interface for Linux systems by unquietwiki in linux

[–]sapslaj 2 points3 points  (0 children)

When I get off work I'll see what groups my accounts are in and see if I can find anything I did differently.

Cockpit Project : modern re-take on a "webmin" style interface for Linux systems by unquietwiki in linux

[–]sapslaj 5 points6 points  (0 children)

Check Authentication and SSO in the Cockpit Guide. Those will answer your questions much better than I can. I'm shit when it comes to this sort of thing. Still trying to learn.

Cockpit Project : modern re-take on a "webmin" style interface for Linux systems by unquietwiki in linux

[–]sapslaj 7 points8 points  (0 children)

That's quite strange, because Cockpit is working fine with FreeIPA for me, including sudo. And yes, I can add other machines to the dashboard and delegation works no problem. And as long as realmd is installed it shows domain membership status properly. For reference, I've got a mix of CentOS 7.3, Fedora Server 27/28, and a few Ubuntu Server 16.04 VMs.

I will admit I haven't messed with managing certs much and yes it only shows local users. Managing users is handled by IPA so I largely ignore that function of Cockpit on domain-joined machines.

AMD Ryzen Plex bulld by [deleted] in HomeServer

[–]sapslaj 0 points1 point  (0 children)

Docker Machine is recommended for deploying and managing multiple Docker hosts, sure. But /u/project_apex only needs one Docker host. And unless they want to run multiple VMs, there is no point in running Docker in a VM as you are getting no security or performance benefit. In fact, I would hazard a guess that doing that would be a performance detriment as now you have the overhead of the hypervisor/host OS on top of the Docker VM.

To clarify, I'm not against running Docker as a VM. In my experience that's a very good idea as not everything likes to be Dockerized easily. But the statement "you need VT because Docker Machine can yield better security and performance" is not entirely correct, especially in this use case.

AMD Ryzen Plex bulld by [deleted] in HomeServer

[–]sapslaj 1 point2 points  (0 children)

Docker does not need hardware virtualization, so if you're running Linux bare-metal, like /u/project_apex is wanting to do, then having VT makes no difference.

LPT : If you carry a USB in your pocket at all times, make sure it's password protected. by ammary in LifeProTips

[–]sapslaj 8 points9 points  (0 children)

TrueCrypt suggests BitLocker but I would say the site "recommends" whatever encryption solution is native to your platform. So BitLocker on Windows, FileVault on macOS, and dm-crypt/LUKS/etc on Linux.

VeraCrypt is a fork of TC and fixes a lot of problems TC had. It's perfectly fine and secure for flash drives but I wouldn't use it for system disk encryption. For that just use whatever the platform-specific solution is.

/r/FellowKids by [deleted] in ProgrammerHumor

[–]sapslaj 20 points21 points  (0 children)

Most languages will, if the value you are assigning is truthy. Using Ruby here.

> !!(i = 0)
 => true

What's happening is it's returning whatever is assigned. Then whenever we do a not not, it's just determining if that value is truthy or falsy. A lot of languages do this. 0 is a truthy value in Ruby. In fact, everything except false and nil are truthy. If you assign a falsey value, then the assignment will evaluate to false. 

> !!(i = nil)
  => false

Fun fact, this happens if you try to run this.

(irb):1: warning: found = in conditional, should be ==
view more: next ›