When connected to your internal network, what is the results of:

nslookup sub.domain.tld AGH.IP.Address

This should respond authoritative with the IP you need to access NPM’s VIP IP address. If that is not the case, let us see your AGH configuration for your sub.domain.tld.

If that does return the correct IP, verify that it responds to https using curl on Linux or windows (replace curl with curl.exe)

curl -vvvI https://sub.domain.tld/

If this is not connecting or showing a cert error then there’s a misconfiguration on the NPM side. Screenshots of your site configuration for one of the sites would be helpful. The domain name should match sub.domain.tld (not your duckdns) and be bound to the let’s encrypt cert.

Technically Zero is 0-0 since One hasn’t been set to anything yet.

Kinda shocks me that most of these cli apps still have no method of securing these credentials. No encryption with passphrase, no integration with password/secret managers. Just a plaintext credentials file in a static location.

IIRC there is a non-tor browser, which is included for things like logging in to wifi captive portals. Not sure I understand exactly what you’re after but you can uninstall the package if needed.

Instead of a default gateway you can configure just your VPN IP address to go to your gateway. You might also need DNS servers depending on your setup.

Example: ip route add 1.1.1.1/32 via 192.168.1.1 dev eth0

Note that without a script this may be flaky if you’re using DNS to resolve the VPN. It might be better to have a script that resolves the IP(s) of the VPN and then adds routes.

That being said, your VPN software is usually designed to install routes that have higher priority so that they will get used before the local network. One such way is by adding half-internet routes (0.0.0.0/1 and 128.0.0.0/1) which get preferred over the larger default route. If you run ip route once connected you may see those routes present.

While I’m not sure if it works in rootless, take a look at binhex/arch-delugevpn project which has scripts to set up a similar network isolation environment.

IMO as a developer this is a sane change. There’s no telling when the format of the first-party api key will change. They may switch from reference tokens to JWT tokens tomorrow. The validation should be using the token and seeing if it works.

The p number refers to the pci bus that the port was detected on. It could be the cpu has a different process when detecting the pci bus layout.

Same lol. I don’t remember being knocked out. Afterwards they were like “don’t drink through a straw” and my dumbass went to McDonald’s and downed a whole coke through a straw.

For the future, git is highly resilient so squashing the commits still leaves all the data in the reflog. After you do that operation a git gc would be needed to remove any unreferenced commits and shrink the git folder.

Pretty sure it’s stock Cinnamon, but I do have extensions installed which could be screwing with things.

Right clicking the title bar of a window on Linux Mint, the menu appears but I can’t click it until I move the window away from it (the menu doesn’t close) and then it becomes responsive. I love Linux.

Just to clarify, the only thing you would be able to import/export from the ME Drive would be the disks. You connect the cable to the drive and then import/export to what you want to interact with.

To add to this, if your car doesn’t come with those electronic blind spot indicators, go to a local car wash and see if they have a shop that sells small blind spot mirrors. They take up a small part of the mirror, but allow you to see the blind spot angle at a glance.

I would also recommend a defensive driving course. We had one here down at a motor speedway that took us through driving on wet roads, how the car reacts to loss of traction, understanding how the car handles, etc.

Clearly the Linux user just broke their prompt by updating. Classic.

Was about to say it always had this but I guess it is a change to the people who were grandfathered in. I personally haven’t hit this limit but I only use it for a select few games that don’t run natively or well on Linux.

2>&1 pipes stderr to stdout, which would not affect a binary like file which doesn’t parse stdin. You would need something like xargs file which would convert the stdout to command line arguments.

One thing not mentioned is that modern password hashing algorithms will iterate your password hundred of thousand of times. This makes cracking the hash much more time intensive. For example if 1 hash takes 1ms (most hash algorithms are way quicker), then 1000 iterations of that means it will take 1 second to compute your hash from the input. The server has to spend that time to validate your password when you login, but that’s a small tradeoff to make brute force attempts which will now have to calculate 1000x hashes for each input.

We updated to the NIST recommendation of 600000 iterations a few years ago when it was released, with regular increases every year. Logins take upwards of 5 seconds but it’s added security in the event the data is leaked.

I think NetworkChuck has a good set of tutorial videos about self hosting. For the most part you can search for what you want to find info on and he probably had a video on it. E.g. Nginx: https://m.youtube.com/@NetworkChuck/search?query=Nginx

Totally agree with that. What I have a problem with is withholding security updates on the latest LTS releases and only releasing them on ESM. That’s some scummy BS.

Based on where the engine was afterward (about 70% down the runway), it was likely they were well above V1: the decision point speed. Above this it is unlikely that the plane can stop on the runway and it’s better to get into the air and try to fix the problem. Based on some new video it looks like the middle engine was in a compressor stall and not producing full thrust. I don’t know if the MD-11 (a trijet) can get into the air with only one engine.