Xanza @ Xanza @lemm.ee Posts 2Comments 907Joined 2 mo. ago
Locking down your phone does nothing for you... If they see that you have a phone and they can't access it they simply won't let you in the country regardless of who you are.
The only solution to this is to simply not have an electronic device when going through customs.
Overnight your cell phone to yourself if you're that worried about it. Any other solution is superfluous and outright stupid.
If you're entering the US through Mexico and they demand you unlock your phone and you refuse or it's "locked down" you don't win that conflict. You're just a permanent resident of Mexico now because you're not getting into the United States regardless of your citizenship status.
And I'm a CEHv7. A literal security professional--and I say that an overwhelming vast majority of attacks against servers using SSH are going to come over the default port. Quite literally 99%. This means that you can lower your attack surface by exactly 99% by simply changing the default SSH port...
Those posts provide no meaningful insight and what they say is by the very technical of all interpretations is correct, I absolutely disagree with these statements. What they mean to say is that simply changing the default SSH port isn't alone I means of strictly protecting yourself. Meaning you shouldn't change the default SSH port and think that your server is secured because it's not.
Quite the different interpretation than me saying it should be mandatorily a part of your security strategy.
In protecting yourself against port scanning is trivial.
Anyone underestimating the power of changing The default SSH port is someone who's opinion I can safely disregard.
Why would you even waste your time to reply if you're not going to read what you're replying to?
Using a nonstandard port doesn’t get you much
Uhh... It gets you a lot. Specifically, unless you know the port you can't connect... So hey, there's that..
This community really says shit sometimes that makes me go cross-eyed....
Even illegal aliens are protected by the US constitution--where was his due process?
Why are you sending an email with multiple questions? If you have more than one question, it merits a phone call. Nobody has the time to answer all of your questions via email all day every day.
I personally receive over 200 business emails a day. Can you imagine what it would be like to answer multiple questions from each one?
If you have more than 1 question, call. Don't wanna call? Then it's not that important.
I’m not going to do anything enterprise.
You are, though. You're creating a GPU cluster for generative AI which is an enterprise endeavor...
consumer motherboards don’t have that many PCIe slots
The number of PCIe slots isn't the most limiting factor when it comes to consumer motherboards. It's the number of PCIe lanes that are supported by your CPU and the motherboard has access to.
It's difficult to find non-server focused hardware that can do something like this because you need a significant number of PCIe lanes to accommodate your CPU, and your several GPUs at full speed. Using an M.2 SSD? Even more difficult.
Your 1 GPU per machine is a decent approach. Using a Kubernetes cluster with device plugins is likely the best way to accomplish what you want here. It would involve setting up your cluster, installing the drivers for your GPU (on each node) which then exposes the device to the system. Then when you create your Ollama container, in the prestart hook, ensure you expose your GPUs to the container for usage.
The issue with doing this, is 10Gbe is very slow compared to your GPU via PCIe. You're networking all these GPUs to do some cool stuff, but then you're severely bottle-necking yourself with your network. All in all, it's not a very good plan.
I like to use a justfile to do this all in one fell swoop;
justfile
default: just --list caddy-refresh: caddy fmt --overwrite ~/.caddy caddy validate --config /etc/caddy/Caddyfile -a caddyfile caddy-reload: caddy-refresh doas docker exec -it caddy caddy reload --config /etc/caddy/Caddyfile
~/.caddy is my caddyfile, which is system linked to /etc/caddy/Caddyfile. Doing it this way ensures there are no permission issues, and you don't need sudo to edit your caddyfile. So you simply nvim ~/.caddy, make your changes, and then run just caddy-reload, which runs caddy-refresh before reloading the caddy config via docker.
Works great, and only involves one command.
Depends on your perspective, I guess. If his objective was to manipulate the market more than at any other time in history while simultaneously destroying three decades of progress between two of the largest countries, and one of the largest federation of countries in the entire world then I would say he's been outrageously successful.
If you mean anything else, then no. He hasn't been. But I can't wait for the MAGA crew to get in here to tell me how tariffs are actually good and how they strengthen an industry which no longer exists in the country.
Why the hell does everything have to be AI for you people to be happy? I just plain don't understand it. We know that AI hurts your critical thinking and reasoning skills, and we continue to just pack AI into everything... Doesn't make sense. Sooner or later you're gonna need to ask ChatGPT whether or not you need to wipe your own ass or not.
There is no viable alternative to Gmail. That's why its still as popular as it is despite privacy concerns.
Is it technically feasible to target those systems with any political action as a response to the tariffs levied by the US?
Not generally. There's no current drop-in replacement for these systems available. So if you piss off these private corporations, you're going to significantly harm trade within the EU if they decide to take offense to it. When was the last time you used cash?
Now imagine you must use cash, because Visa, MasterCard, Google Pay, and Apple Pay refuse to work inside of the EU because they're being targeted with ire for things the US President and Government are doing.
It's not as easy a situation as you describe here.
Because he's distancing himself from her politically to be able to run without their performance in the 2024 election dragging him down--and whomever wrote the article clearly has an issue with him and doesn't want the stunt to do what it was designed to do.
I'm torn. If the Koch brothers don't want it, I want it. 💀💀💀 What even is this fucking timeline.
This crash has to be so bad that the next US President that even so much as hints at wanting to use tariffs for any purpose other than what they're intended for, would be personally walked to the gallows.
- Disable passwordless login.
- Disable password login.
- Require SSH keys
- Move SSH port to non-standard port
- Reject connections to port 22
- Install and enable fail2ban
About the best you can do.
That's not how it works, though. He's already been deported, and is in another countries custody. The US can lobby to get him back, but they can hardly demand it.
This US citizen has essentially been expatriated by ICE. I'm sure they forced him to sign documentation that he's in some violent gang, as well. There's no getting him back unless El Salvador decides to let him go.
love me a good gruvbox.