𝒍𝒆𝒎𝒂𝒏𝒏

Hey 👋 I’m Lemann: mark II

I like tech, bicycles, and nature.

Otherwise known as; @lemann@lemmy.one and @lemann@lemmy.world

Dancing Parrot wearing sunglasses

  • 1 Post
  • 61 Comments
Joined 1 year ago
cake
Cake day: December 22nd, 2023

help-circle


  • ASMedia is the only controller IC manufacturer that can be trusted for these IME. They also have the best Linux support compared to the other options and support pass-through commands. These are commonly found in USB DAS enclosures, and a very small fraction of single disk SATA enclosures

    Innostor controllers max out at SATA 2 and lock up when you issue pass-through commands (e.g. to read SMART data). These also return an incorrect serial number. These are commonly found in ultra cheap desktop hard drive docks, and 40pin IDE/44pin IDE/SATA to USB converters

    JMicron controllers (not affiliated with the reputable Micron) should be avoided unless you know what you are doing… UASP is flaky, and there are hacky kernel boot time parameters required to get these working on Raspberry Pi boards. Unfortunately these are the most popular ones on the market due to very low cost



  • Deleting documents from insider branch users a few years back, forced installation of HP SMART printer utility, constantly switching users’ default browser back to Edge, even bypassing my employer’s GPO to do so at one point in a Teams update

    Not to mention their habit of making practically everything opt-in by default. And what is up with the new Aptos “cloud” font that only works if you have an active Office 365 subscription?

    I don’t know tbh, Windows just doesn’t cut it for me anymore personally, mainly because of Microsoft. Stuck with it on my desktop though because of sim hardware.

    I still have XP on an airgapped old PC for nostalgia ☺️




  • This kind of stuff happens all the time IMO, we’re human and not perfect 🤷‍♂️

    I don’t know how much of a help ChatGPT would be in this situation without access to your schema, at least with Copilot you can write a comment in the code explaining what you’re trying to do and get some usable pointers in the generated suggestion (which takes your codebase into account).

    I usually try to get a second pair of eyes on my code if something that seems relatively simple isn’t working as expected… As you gain more experience these mistakes will become less common, and easier to spot




  • I used to use MQTT, static_status and Healthchecks.io, and have that data passed through to Home Assistant, but it started to get pretty cumbersome as the amount of machines I had grew.

    I now use just Zabbix and HealthchecksIO. I did need to spend some time writing new templates for some additional data I wanted to collect (like SMART data for SSDs that provide health metrics in non-standard attributes, and HealthchecksIO so I could see the status of various checks on my zabbix dashboard)

    Zabbix also has some additional features I found appealing, like proxies that can continue recording data when the main server is down, and built in encryption. Some checks like open ports/icmp responses etc can be checked using either the local agent, the remote server, or both, which helps quickly diagnose things like firewall config issues.

    I did look at some other solutions, but I wanted something integrated to hit the ground running. Mobile apps are very limited, and there is no official one to my knowledge. I use Moobix which I don’t believe is FOSS - but I could be wrong there

    Try each solution out and see what works best for you!




  • I personally think some types of openly developed software projects should have a strict non-commercial license: if companies aren’t willing to contribute back to the source IMO they shouldn’t be granted permission to freeload & have volunteers fix issues their paying customers run into

    Donations are possibly a bit of an exception here - there are quite a few companies that still do this, albeit growing slimmer by the day.

    Another big problem IMO is the subset of users that start attacking maintainers and volunteers because their “free app stopped working” etc. I see that a lot, mostly in the arduino community, but especially egregiously on the Zabbix project - I imagine a lot of those users are companies who aren’t even paying/donating to the project







  • If anyone is interested in mitigation, the only way around this AFAIK is to start with a brand new domain, only use wildcard certs (with DNS validation), and don’t bundle multiple renewals into a single cert.

    Also, don’t enter your domain or related IP address into dns reverse engineering tools (like dnsdumpster), and check certificate transparency logs (https://crt.sh) to see what information related to your cert renewals has been published.

    This won’t stop automated bots from scanning your ip for domains, but should significantly reduce the amount of bots that discover them