https://www.ebooks.com/en-us/book/136101/q-squared/peter-david/

Someone else can do databank, but here’s corrupted Data:

At best. And it’s probably gonna be a <= $2 Google Play Store gift card.

🍻

Well, removed yes. Deleted, not always.

That gave me an idea for an April Fool’s Day easter egg in Tesseract. Represent upvotes as negative downvotes and downvotes as negative upvotes.

Here’s hoping I remember to do that lol.

I remember both of those going downhill in real time but the one that hit me the hardest was Discovery Channel. One day it was Bill Nye, Mythbusters, Shark Week, and science documentaries and the next it was Pawn Stars, Swamp Loggers, and American Chopper. At least we got a nice meme template out of that last one.

Fuck it, it’s Christmas Tuesday.

I’ve been looking into crowdsec for ages now and still haven’t gotten around to even a test deployment. One of these days, lol, and I’ll get around to it.

Oooooh. That’s smart. I mostly host apps, but in theory, I should be able to dynamically modify the response body and tack on some HTML for a hidden button and do that.

I used to disallow everything in robots.txt but the worst crawlers just ignored it. Now my robots.txt says all are welcome and every bot gets shunted to the tarpit 😈

I’ve got bot detection setup in Nginx on my VPS which used to return 444 (Nginx for "close the connection and waste no more resources processing it), but I recently started piping that traffic to Nepenthes to return gibberish data for them to train on.

I documented a rough guide in the comment here. Of relevance to you are the two .conf files at the bottom. In the deny-disallowed.conf, change the line for return 301 ... to return 444

I also utilize firewall and fail2ban in the VPS to block bad actors, overly-aggressive scrapers, password brute forces, etc and the link between the VPS and my homelab equipment never sees that traffic.

In the case of a DDoS, I’ve done the following:

• Enable aggressive rate limits in Nginx (it may be slow for everyone but it’s still up)
• Just stop either Wireguard or Nginx on the VPS until the storm blows over. (Crude but useful to avoid any bandwidth overages if you’re charged for inbound traffic).

Granted, I’m not running anything mission-critical, just some services for friends and family, so I can deal with a little downtime.

I used to use HAProxy but switched to Nginx so I could add the modsecurity module and run WAF services. I still use HAProxy for some things, though.

I have never used it, so take this with a grain of salt, but last I read, with the free tier, you could not secure traffic between yourself and Cloudflare with your own certs which implies they can decrypt and read that traffic. What, if anything, they do with that capability I do not know. I just do not trust my hosted assets to be secured with certs/keys I do not control.

There are other things CF can do (bot detection, DDoS protection, etc), but if you just want to avoid exposing your home IP, a cheap VPS running Nginx can work the same way as a CF tunnel. Setup Wireguard on the VPS and have your backend servers in Nginx connect to your home assets via that. If the VPS is the “server” side of the WG tunnel, you don’t have to open any local ports in your router at all. I’ve been doing that, originally with OpenVPN, since before CF tunnels were ever offered as a service.

Edit: You don’t even need WG, really. If you setup a persistent SSH tunnel and forward / bind a port to your VPS, you can tunnel the traffic over that.

I’m always wary of any .news domain because literally anyone can run a blog and buy a cheap .news domain to point to it.

I also like to read in the evening, usually right before bed. My Kobo has adjustable color temp but I usually leave the backlight off and just use my lamp like with a normal book. Looks better and easier on the eyes IMO and also makes the epaper seem more magical. I dunno why, but the backlight on them ruins the effect for me.

Haven’t tried a color one. TBH, the Kobo I have is the very entry-level one since I wasn’t sure if I’d use it often or not. Turns out I love it so may upgrade at some point.

Both technical limitations, convenience, and moral objections to DRM (if it has to phone home or I can’t use it how I want, I won’t buy it). I have a Kobo but prefer to have a clean epub for whatever I buy so I feel like I actually own it.

The online shop I bought “Q-Squared” from has most of them DRM free, including all 3 of the Destiny books. Not sure how deep the DRM-free well is, but spot checking it shows most of the ones I looked at were clean. Worst comes to worse, I’ll do like I did when I still bought ebooks from Amazon and buy the DRM’d version and high-seas a clean copy.

https://www.thetrekcollective.com/p/trek-lit-reading-order.html?m=1

Someone else commented it a bit ago, and made me realize the rabbit hole for the Trek novelverse goes deeper than I thought.

Destiny was recommended twice here and the guide lists it as a good starting point, so once I power through this one I’ll probably start there.

I should buy A Stitch in Time. I borrowed a copy and read it years ago but I don’t actually have a copy myself.