Elvith Ma'for

German has both genders for dogs, but since the variants look (and sound) slightly different, it’s not instantly obvious:

Der Hund - a male dog
Die Hündin - a female dog

I know, but still it’s clearly a “you had one job to do, taskmanager”.

Also the task manager currently has a bug where it’s process keeps running when you close the window. So, to get rid of it, you now either need to open another task manager and kill that process (and the one you have currently open) or do a reboot…

It’s not that I’ve been healing 27 times throughout the fight and he only once. It’s that I just realized, that I probably need to heal 54 times or more in this fight, but I only brought about 30 potions…

That’s basically any modern network. There is no more trivial “inside our network” vs. “outside on the internet”. Networks are segmented on a need-to-know principle. You can access some information from the public internet. Some other things can be accessed from the internet, but only on corporate devices, if your user AND device is whitelisted. And then you have one or more VPNs on top of that for more sensitive stuff. Also those VPNs may be “dynamic” in the sense that it may also be dependent on the user, device and authentication method what is currently accessible over that VPN connection.

I thought the easy way were “A Pussy So Tight No Dick Penetrates”?

>:-(

Can I interest you in the blog Buried Treasure? The author reviews small and unknown indie games an there are a lot of pearls to be found

I didn’t get mine to have less than about a second latency LOL

Let’s just say „every unmarked block, but one“?

If we count diverse electronic trinkets (ESPs, Raspberry Pis, breadboards, LEDs,….) as crafting supplies, then yes that’d work perfectly

I get the idea, and in general I love it - especially since they eliminate phishing in theory. BUT making my device my “password” now shifts the single point of failure from me forgetting my password to me protecting my devices from any kind of error/damage/data loss/… Collecting all passkeys in your Google Account is probably also not the best idea, considering how little chance you have to get your account back if it ever gets locked by a random event you may or may not have participated in.

Having them device independent (e.g. in a password safe) is nice, though. But then, if I use my password safe right, I should already be somewhat protected from phishing, as my auto fill won’t trigger on a random phishing site.

I mean… gestures wildly at other Black Mirror episodes …yes?

And I always considered dystopian tales to be meant as a warning, not as a blueprint…

I thought it was a reference to Black Mirror S02E01 - Be Right Back that got a bit modernized.

Interestingly, that episode is now almost 13 years old.

Mine didn’t want to migrate and I had to build them a new PC with Win11 (their old one was barely able to run win 10 and had already some hardware problems, so a new one was on my bucket list for a while) - but… yeah the most time was spent tracking down all these passwords and accounts they were constantly using without knowing which email address and which password was used for the account…

Pop goes the weasel bubble

Watch out to not accidentally make a typo and change a vowel. Otherwise pacman will be upset and sabotage your install.

No, that’s just another hypothetical app that you’re using a reverse proxy for. I just included it to show how you can also set settings for a single subdomain/reverse proxy entry that isn’t used globally on all domains that get served. I used a hypothetical REST API that needs a CORS Header that other apps don’t need (or maybe serve themselves).

admin off disables Caddy’s admin interface (which shouldn’t be public and if you’re using config files this usually isn’t needed. So just a bit of gardening)

servers sets some general server options.

and then I just inserted several blocks that each define a reverse proxy to a different app / backend to show that you can just dump them all in a single Caddyfile. And the last example to show that you can set specific settings only for a specific subdomain instead of globally. As I set headers mostly used by REST APIs, I just called that api.example.com instead of app3.example.com.

If you like, I can send you an example of the Caddyfiles, that I’m using (I used the import directive to split every service into its own Caddyfiles, you could just copy and paste everything in the same file). It will take a few hours until I get home, though.

But basically you can just put every subdomain and it’s target in a separate block and the add some things globally (e.g. passing the original IP, switching off the admin API of Caddy,…)

Something like this should work:

admin off 

servers {
		client_ip_headers X-Forwarded-For X-Real-IP
}

app.example.com {
    reverse_proxy 127.0.0.1:8080
}

app2.example.com {
    reverse_proxy 127.0.0.1:8081
}

api.example.com {
    reverse_proxy 127.0.0.1:8082
    header {
        Access-Control-Allow-Methods "GET, OPTIONS"
        Access-Control-Allow-Origin "*"
    }
}

Go ahead and give them your Social Security number, and see what happens.

“Socially I’m rated 3/10, but for security I’m an 8/10. Now that I’m replying to this, I think my security score just dropped a bit, though.”