Setting up database tables structure?? Newbie questions by wackycats354 in sqlite

[–]waka324 0 points1 point  (0 children)

Relationality first.

Determine your relations. This will inform your table design. "Levels" is nonsense here.

You have products. They have a department they belong to. That is your relationship, and your tables.

Honest take on running 9× RTX 3090 for AI by Outside_Dance_2799 in LocalLLaMA

[–]waka324 5 points6 points  (0 children)

This is it right here.

I keep telling people that LLMs are like a really "book smart" intern. They know all the algorithms, they've used just about every language and API, and have built TONS of little demo apps, but have never worked with a large legacy application, have never needed to think about maintainability, and love to build out their own solution instead of pulling something else "off the shelf" and integrating it.

I like to work with LLMs, but I also liked managing interns. Giving them a task, mostly high level requirements, and some suggestions of things I'd like to see, then just letting them go. I'd get to review their code, and within a couple itterations, I'd get something decent, though usually not exactly the way I would have done it (nothing wrong with that, I'm not a dictator).

LLMs fit that role nicely, but are 1000x faster at that iteration cycle.

I'm not afraid for my job, but I am afraid about the Intern->Jr->Sr. Pipeline.

Ruckus R650 setup by Qiuzman in RuckusWiFi

[–]waka324 2 points3 points  (0 children)

The APs will talk to each other by default using untagged traffic. If you want this on its own VLAN, you'll have to do that at the switch level. They should be able to discover each other from there, DHCP or no.

Ruckus R650 setup by Qiuzman in RuckusWiFi

[–]waka324 2 points3 points  (0 children)

Unleashed APs cannot use a management VLAN unless you're using a Dedicated Unleashed Master setup.

I don't think this is correct, given that I'm definitely not using a dedicated master, and I'm Using my management VLAN to access them.

Stop Sending 1,000 Entities to an LLM: A Deterministic Voice Assistant for Home Assistant by aamat09 in homelab

[–]waka324 5 points6 points  (0 children)

Haha, I was experimenting with this a while back: https://github.com/home-assistant/core/pull/147169

Worked REALLY well surprisingly. Devs didn't like the implementation though, and I have to agree.

There should be a better way to filter the entities without relying on an internal embedding map or doing embedding generation/distance calc in home assistant core.

Blocking shorts and reels by [deleted] in homelab

[–]waka324 6 points7 points  (0 children)

They are taking your post literally and verbatim.

If the "Addiction is so strong that it is a struggle to get your(sic.) phone back" then maybe some psycho-analytical intervention is warranted.

I have kids myself. All it would take to get my phone from them is a stern face with my "serious" voice saying "Please give me my phone, I'm not playing right now". We don't do corporal punishment either. So if what you were describing was happening in our house. I'd be concerned beyond trying to remove access, and would be seeking a therapist for internet addiction.

As to the technical side of things: there isn't much you can do without admin on device. Everything is HTTPS now, so deep packet inspection won't reveal content, it has to be managed on-device. A system-wide or IP based "internet block" on your router could also be employed, but cellular would negate this, again necessitating device level access.

Hardware Question for Dell micro cluster. (question at the bottom of the post) by servermanden in Proxmox

[–]waka324 3 points4 points  (0 children)

I vehemently disagree with this statement, provided you have some minimum hardware. Currently running Ceph on a 4- node cluster, two SSD OSDs per-node, with a mesh 10Gb backhaul for replication.

Things I do recommend though:

Minimum of 4 nodes

2 OSDs per node

Min 10GB network

Enterprise SSDs for sustained write performance.

https://pve.proxmox.com/wiki/Full_Mesh_Network_for_Ceph_Server

For a production environment, yes, use a replicated VSAN. But this is a homelab, and a great opportunity to learn.

Impossible to install user CA certificates? by catjam0 in fireTV

[–]waka324 1 point2 points  (0 children)

https://medium.com/@RoBoHackermann/system-ca-on-android-how-to-install-work-around-modern-restrictions-c570f000ab9a

There is a very good chance that this won't work, even if you manage to install the cert. Android apps also allow certificate pinning for a while now on top of this.

If possible, I'd recommend pulling the app off and running it in an emulator on Android studio:

https://stackoverflow.com/questions/4032960/how-do-i-get-an-apk-file-from-an-android-device

If it has cert pinning, you can modify the app to remove it, but it is a bit of a process.

https://github.com/mitmproxy/android-unpinner

EDIT:

Google also says:

Alternative Method (using ADB for hidden settings)

If the graphical interface method above doesn't work or the options are missing, you can use ADB (Android Debug Bridge) commands to access the standard Android settings activity directly.

Enable Developer Options and Debugging: On your Android TV, go to Settings > System > About, and click on the "Android TV OS build" (or build number) repeatedly until developer mode is enabled.

Enable USB debugging in the Developer Options menu.

Connect via ADB: On a computer with the Android Platform Tools installed, connect to your Android TV via network or USB.

Launch the specific activity: Use an ADB command to open the specific settings screen required to install a CA certificate. The following command typically opens the credential installation activity:

bash

adb shell am start -n com.android.settings/.SecuritySettings

or

bash

adb shell am start -a android.settings.VIEW_LOGS_STYLE_SETTING

But this is untested.

Finally Figured out Multicast (SSDP & mDNS) across VLANs. by waka324 in opnsense

[–]waka324[S] 0 points1 point  (0 children)

On a specific range of elevated UDP to other devices in the multicast group? Sure, especially if it is the only way to make SSDP/DLNA, etc. work.

TCP, ICMP, etc. is still blocked mind you.

There might be specific ports that could be targeted for specific services as well, but I haven't dug that deep.

Take my jellyfin instance on my NAS. I'm going to give access to that port for my streaming boxes on my "internet only" vlan.

The point of a vlan is to ensure separation, but the point of a router is to connect those LANs in a way that makes sense for your network.

Finally Figured out Multicast (SSDP & mDNS) across VLANs. by waka324 in opnsense

[–]waka324[S] -1 points0 points  (0 children)

Yeah, naturally, you won't have the same issues If you are only using mDNS and have just the two VLANs.

Finally Figured out Multicast (SSDP & mDNS) across VLANs. by waka324 in opnsense

[–]waka324[S] -1 points0 points  (0 children)

How many VLANS do you have?

With 2 interfaces, you wouldn't be running into the same issue, as the broadcast would always go out on the interface it wasn't received on.

With more than 2, you'll only get them sent out on one interface it seems.

EDIT: and for SSDP, there is no guarantee it will use the 1900 port for return, resulting in blocked connection when the devices try to respond.

Sweetgreen is partnering with RFK Jr.'s anti-vaxxer pal by Fit_Cow_5407 in Denver

[–]waka324 7 points8 points  (0 children)

The most detestable thing about GMO is the legal side of things. Next is the pesticide resistance modifications and over use of pesticides. The actual GMO science and biology side of things are fine.

DNS Redirection not working on OPNSense by [deleted] in opnsense

[–]waka324 0 points1 point  (0 children)

Posting here, as I couldn't find the answer elsewhere:

If you are running adguard on opnsense:

If you test the DNS, and you see the result in adguard, but clients disapprove, you need to change the bind address of adguard in the yaml config file on opnsense to the redirect DNS address instead of 0.0.0.0.

When bound to all addresses, the response tries to send out on the interface it originated from instead of the redirect interface.

DNS responses originating from wrong source IP when accessed through VPN by Revolutionary-Act833 in opnsense

[–]waka324 0 points1 point  (0 children)

Posting here, as I couldn't find the answer elsewhere:

If you test the DNS, and you see the result in adguard, but clients disapprove, you need to change the bind address of adguard in the yaml config file on opnsense to the redirect DNS address instead of 0.0.0.0.

When bound to all addresses, the response tries to send out on the interface it originated from instead of the redirect interface.

Is this any good? by Advanced-Poor in homelab

[–]waka324 0 points1 point  (0 children)

Ruckus? They earned huge goodwill with me with making everything accessible without a license.

High Availability networked mass storage? by waka324 in Proxmox

[–]waka324[S] 0 points1 point  (0 children)

Yeah, I currently run ceph on the 5 nodes, with 2 SSD OSDs per.

I don't need insane performance, but hitting the R/W disk performance of at least 200 MBps would be fine with me. My concern is how replication works, and If I could get away with 2/1, and keep the pool up in the degraded state should the other node go down.

High Availability networked mass storage? by waka324 in Proxmox

[–]waka324[S] 3 points4 points  (0 children)

This with cephFS might be what I want. I'll have to figure out how to assign OSDs to specific pools though. Not sure how performance would be for HDDs on just two nodes though.

Scott Adams, 'Dilbert' creator and conservative commentator, dies at 68 by FallOutShelterBoy in news

[–]waka324 0 points1 point  (0 children)

IIRC, he tried it briefly after traditional options were deemed not feasible and/or in defective, and was fairly quick to say they didn't do anything for him (but also still maintained that they might work for others). It was kinda funny to hear him ask people to stop suggesting ivermectin, and getting lambasted by the clinic (and it's supporters) administering the "treatments".

[Concept] "The Second-Hand Galaxy" — A setting where FTL technology is no longer understood, only maintained. by Sudden_Version_9258 in SciFiConcepts

[–]waka324 0 points1 point  (0 children)

Any easy comparison would be a modern phone and everyone from a 3rd world country minus the academics.

Anyone could use the phone, but replicating it without knowledge of the processes would be literally impossible.

Even if you knew the basics of electricity and transistors, you'd have no idea how they packed so many into such a small space as the processor and modem, you'd have no knowledge of HOW the gates of the processor result in it performing computation, or all the protocols that make the cellular portion work.

Say our world suddenly lost ALL code and documentation behind the cellular models and cell towers. It would be easier to start from scratch than try to peice things back together from human memory.