I like to code, garden and tinker
Can someone explain to me how using biometrics rather than a password/pin to protect from unauthorized access to your passkeys doesn’t violate the “something you have” and “something you know” principle of multi-factor authorization? Most of these implementations seem squarely geared at user convenience at the cost of actual security.
Agreed. You watch one video and the entire homepage changes.
Disclaimer: I have no experience with Bazzite. A quick web search shows that it’s a distro based on Fedora Atomic. That being said, if you did everything according to the documentation, this is probably a bug that should be raised with the developers.
The first line states /init: error while loading shared libraries: libsystemd-core-256.11.1-fc41.so: c. This is basically the issue, for whatever reason the shared library for systemd (which if being used, is basically the backbone to your systems startup) isn’t available. The next place I would look is whatever tool/command you use to upgrade/build your system, this might of spit out an error related to why this library could not be built or why it’s inaccessible on the next boot. If the solution isn’t obvious from those logs, I would report this to the distro developers as a ticket in their bug tracker.
As to look at the positives, you have discovered the beauty of immutable/atomic distros. You can just go back to the working version instead of cussing at your PC.
Tariffs: A list or system of duties imposed by a government on imported or exported goods.
You provide a service, not goods. You will be unaffected by any tariffs.
Centralization is a weakness. These services can be targeted by governments that want to limit communication. Free speech is a commodity, and servers host this free speech. If a hostile organization, such as a government, targets a channel of free speech such as those hosted on a platform that makes it easy to setup a mastodon instance, this become an easy target that will affect a large portion of users. If you are serious about freedom, you have the freedom to self-host your own platforms.
Edit: I realize my post doesn’t answer the question proposed, but it’s more of an argument against such services. I would argue self-hosting doesn’t rely on paying third-parties to host your software, but I guess this is in the eye of the hoster.
When I say residential IP addresses, I mostly mean proxies using residential IPs, which allow scrappers to mask themselves as organic traffic.
Edit: Your point stands on there are a lot of services without these protections in place, but a lot of services are protective against scrapping.
I mean it’s true, in the same sense that in some countries you don’t flush the toilet paper as it will cause plumbing issues. It’s all about design of the plumbing at that point, and in places where you flush toilet paper it shouldn’t be that big of a concern unless they skimped on the plumbing.
Also as my grandma taught me, there is such a thing as a courtesy flush before ya wipe.
Well, that’s something I learned today, didn’t know these were a thing.
a bidet a better investment
Edit: A sports water bottle can provide a strong stream of water. That’s all I going to say
That’s why I treat it like a Chuck E. Cheese ticket machine and use about 50 tiles a wipe.
The only way I can think of is require users to authenticate themselves, but this isn’t much of a hurdle.
To get into the details of it, what do you define as an AI bot? Are you worried about scrappers grabbing the contents of you website? What is the activities of an “AI Bot”. Are you worried about AI bots registering and using your platform?
The real answer is not even cloudflare will fully defend you from this. If anything cloudflare is just making sure they get paid for access to your website by AI scappers. As someone who has worked around bot protections (albeit in a different context than web scrapping), it’s a game of cat and mouse. If you or some company you hire are not actively working against automated access, you lose as the other side is active.
Just think of your point that they are using residential IP addresses. How do they get these addresses? They provide addons/extensions for browsers that offer some service (generally free VPNs) in exchange for access to your PC and therefore your internet in the contract you agree to. The same can be used by any addon, and if the addon has permissions to read any website they can scrape those websites using legit users for whatever purposes they want. The recent exposure of the Honey scam highlights this, as it’s very easy to get users to install addons by selling users they might save a small amount of money (or make money for other programs). There will be users who are compromised by addons/extensions or even just viruses that will be able to extract the data you are trying to protect.
I’d just skip OpenVPN altogether and get started with Wireguard or Headscale/Tailscale.
This one was huge for me. OpenVPN is pretty heavy with CPU overhead, where as wireguard is almost free. I was getting throttled due to the overhead of OpenVPN and roasting the CPU on my Netgear R6350 (it’s what I had lying around). With wireguard I get nearly the same speeds as without a VPN and my loads are very reasonable.
Also with weaker routers like mine, be wary of trying to use QoS, this will probably not help network congestion and instead become a bottleneck (like it did for me). This is where a beefy dedicated router really shines.
If you are expecting a more windows-like experience, I would suggest using Ubuntu or Kubuntu (or any other distro using Gnome/KDE), as these are much closer to a modern Windows GUI. With Ubuntu, I can use the default file manager (nautilus) and do Ctrl+F and filter files via *.ext, then select these files then cut and paste to a new folder (drag and drop does not seem to work from the search results). In Kubuntu, the search doesn’t recognize * as a wildcard in KDE’s file manager (dolphin) but does support drag/drop between windows.
Does the flash drive show when you run lsblk with the correct amount of space? dd will overwrite the partition table and works directly with the underlying physical blocks of the device. If the flash drive isn’t broken, you should be able to rebuild the partition table with parted (tutorial from linuxconfig.org on the matter)
As for the data transfer costs, any network data originating from AWS that hits an external network (an end user or another region) typically will incur a charge. To quote their blog post:
A general rule of thumb is that all traffic originating from the internet into AWS enters for free, but traffic exiting AWS is chargeable outside of the free tier—typically in the $0.08–$0.12 range per GB, though some response traffic egress can be free. The free tier provides 100GB of free data transfer out per month as of December 1, 2021.
So you won’t be charged for incoming federated content, but serving content to the end user will count as traffic exiting AWS. I am not sure of your exact setup (AWS pricing is complex) but typically this is charged. This is probably negligible for a single-user instance, but I would be careful serving images from your instance to popular instances as this could incur unexpected costs.
It’s still a fingerprint, the most vague information correlated with other data points can make a useful fingerprint. This is how a lot of the companies can track you even if you aren’t logged in, you using any service creates a pattern that with enough aggregate data can be used to approximate who you are.
Each instance serves the content from that instance, so from my understanding the only thing other instances can see are subscribed communities to be able to federate posts. Upvotes/Downvotes can possibly be tracked per user as they are federated on a per-vote basis currently, though this is just something I read and don’t have sources at the present.
Being an admin of an instance, I can’t even see my own history of visited posts. I can’t verify this, but I doubt this information is being stored in the database currently.
This being said, each instance has full control over their API server and the web-based application being served, so they could add monitoring to either to gather this data. If they did this on the API end it would be undetectable. Running your own instance is the only fool proof method, otherwise you need to trust the instance operator.
Using Nvidia with closed source drivers by chance? I had a similar issue and had to disable the services related to nvidia suspend/hibernate/resume:
systemctl disable nvidia-suspend nvidia-hibernate nvidia-resume
This is all I can think of, some hardware specs might help others with assisting you.
This assumes a pin is used, which according to the WebAuthn wikipedia page is not generally the case:
The way I read this, a pin is even too much for the end-user and biometrics replace it for usability.