Isn’t the purpose of an immutable OS supposed to be for things like specific services that generally aren’t supposed to be logged into? For example a web-proxy, or log-forwarder or maybe some kind of LB front-end?

I didn’t think “daily driving” an immutable OS as a user who needs to invoke a shell was its purpose.

You need to understand subnetting. Allowing 192.168.1.0/24 also allows 192.168.1.135/24 In fact 192.168.1.135/24 shouldn’t be valid syntax at all, but it is easier to accept it and then let subnet math fix the mistake.

I assume your router is 192.168.1.135 for whatever reason, so as long as your router is contained in the configured iptables allowed network, it’ll work with all of the following networks.

192.168.1.135/32
192.168.1.134/31
192.168.1.132/30
192.168.1.128/29
192.168.1.128/28
192.168.1.128/27
192.168.1.128/26
192.168.1.128/25
192.168.1.0/24
192.168.0.0/23
… And 22 even larger networks.

If you don’t configure a subnet mask for the rule, iptables will accept the IP address you put in as a single host, the /32 is implied. The same behavior would be seen using any kind of network filter, though they may not allow you to specify 192.168.1.135/24, they may require a bit boundary, but mathematically, it’s the same.

Why is there a need to comply with foolish laws? I’m sure I type stuff on lemmy.ml or elsewhere on the internet that doesn’t comply with some idiot law somewhere in like Myanmar or the DPRK. Why would I concern myself with those laws.

Not black text on white, but light grey/purple on dark grey was pretty popular with Sun Microsystems. I think OG Apple Macintosh used Black on White, or at least close enough colors.

That said I use something like this for work.

yea, ever since TPM was first making the conspiracy rounds in the 90’s there has been a huge misunderstanding of its purpose, let alone its capabilities. I 100% agree with the author that looking at the TPM as an evil blackbox is really just depriving users of a tool that can be implemented in an open source way to secure user privacy. The GPU however is impossible to implement in an opensource way by everyone except a small handful of semiconductor companies, and even then you would rely on proprietary microcode that woul take millions of manhours to reverse engineer if it were even possible. So if I were some megacorp who relied on Imaginary Property, the GPU that was exclusively created by a fellow megacorp is where I’d place my trust.

I also dont know why Win11 requires a tpm2.0, but since it does, and my current computer doesnt have one, I’m certanly not going to run it.

Saudi Arabia is absolutely bad. I’d go so far as to call them the EA of Countries.

I don’t think you should let Nazi’s win the war of language.

But in that “offline” mode, can you join a server or is it local only?

Right, so it sounds like there needs to be a Mod that allows Minecraft clients to bypass central auth, I suspect a mod like that would look very similar to piracy as far as Microsoft is concerned.

Wait seriously? I’ve never played Minecraft, but the only control Microsoft has is an optional(?) account? Without that you can use any version of minecraft you want to connect to any server you want? That can’t be right, otherwise I can’t understand why this thread exists.

It’s inevitable. Microsoft didn’t give Notch a billion dollars because they thought they could improve the product for the users. They bought it because of the number of users. They saw a revenue stream that wouldn’t require very many resources to maintain and that they could also expand to multiple microsoft platforms and then lock behind a walled-garden to sell access as a service. Of course they wanted to confine the player population to servers that microsfot controlled. That is the only way they could ensure that any add-ons/mods/players etc were gated behind their own storefront.

While that may be true, that fact is immaterial. Microsoft can control which servers can exist, and thus they can and will do anything they want. The only way around them is to mod the game so that it’s more like a Terraria model, where anyone can run a server and anyone can connect to it.

An Ex-post facto EULA. Because whatever dumbshit Microsoft acquisition EULA that bootlickers like you want to point to in order to justify censorship 100% didn’t exist beforehand. But beside all that if I’m running it on my computer, your EULA doesn’t matter anymore at all.

It would have been garbage. Either they would have had to severely restrict the player in absurd ways to make sure that no one played the game “wrong,” and then posted edgy youtubes about it. Or they would have had to narrow the scope and strip so much context that it would be basically impossible to tell it was supposed to be the American civil war, other then seeing some union flag props around.

Partitioning is one of those obsolete Unixisms that is best left in the 90s. Only exception is dual booting, but even there partitioning isn’t really very important anymore

This is fundamentally true. However it is possible to limit the bandwidth of data the employee can exfiltrate.

Assuming a privileged employee suddenly becomes a bad actor. Private-keys/certs are compromised, any kind of shared password/login is compromised.

In my case I have a legit access to my company’s web-certs as well as service account ssh-key’s, etc. If I were determined to undermine my company, I could absolutely get access to our HSM-stored software signing keys too. Or more accurately I’d be able to use that key to compile and sign an arbitrary binary at least once.

But I couldn’t for example download our entire customer database, I could get a specific record, I could maybe social engineer access to all the records of a specific customer, but there is no way I’d be able to extract all of our customers via an analog loophole or any standard way. The data set is too big.

I also wouldn’t be able to download our companies software source code in it’s entirety. Obviously I could intelligently pick a few key modules etc, but the whole thing would be impossible.

And this is what you are trying to limit. If you trust your employees (some you have to), you can’t stop them from copying the keys to the kingdom, but you can limit the damage that they can do, and also ensure they can’t copy ALL the crown jewels.

You are disappointed because it doesn’t have to be this way.

On here I’d 100% agree, though if some member here got into some kind of discord drama that you weren’t apart of, why would you choose a side? You’ll have incomplete information, and no doubt one of them will claim they were harassed while leaving out some important details.

the sane response is to go “wow that is awful. the gaming community does indeed contain some terrible people, i am glad to be one of the good ones and will distance myself from this behavior”

I’d say the saner response is none at all. This seems like a pretty niche community issue somewhere on the internet involving at most <100 people. I doubt anyone here is closer then 3 degrees of separation from anyone involved. Why would you expect any of the outsiders here to “take a stand,” based on incomplete information?

Game not selling well? Find a tweet from a nobody talking about your shitty game being “woke.” Sensationalize it, position yourself as a bastion fighting against the hordes, imply that only by purchasing the failing game can the average liberal “fight back.”

Profit.