In 2003, Bill Burr wrote “NIST Special Publication 800-63. Appendix A” – a security document that recommended passwords be changed every 90 days, and have irregular caps and special characters. When asked about it, and the resultant trends in people adding !@#$%^&*() to the end of their passwords, Burr said something enlightening:

“Much of what I did I now regret.”

Lmao

so yeah I hit the Bitwarden generate button and forget

Whoa, I didn’t know about this! My trustworthy beloved orange apps were sold to ZipoApps, a company that flips apps into ad revenue.

But has anything changed for the worse yet? I don’t see any odd commits in the history (e.g. Draw). I’ll probably just lock the F-Droid version of the Simple gear I can’t switch.

-1 accuracy point ( ◞ ﹏ ◟)

linux 4.5-rc5 had efivarfs fixed to prevent “rm -rf /” bricking uefi motherboards – so maybe someone can try it out? :]

Lots of good answers here but I’ll toss in my own “figure out what you need” experience from my first firewall funtime. (Disclaimer: I used nftables – it should be similar to ufw in terms of defaults though).

• Right off the bat, everything unneeded was blocked. I “needed” no configuration, except for maybe…
• Whatever CUPS runs on (when I use it)
• Sometimes I ran python -m http.server – I unblocked port 8000 for personal use.
• I chose to unblock port 53 (DNS). I wanted to connect to another computer via hostname IIRC (e.g. connecting to raspberry-pi.local. I might be misremembering this though).
• At one point I played with NGINX – that’s port 80 (HTTP) and port 443 (HTTPS).
• SSH was already permitted (port 22 – you need root access to enable traffic through ports below 1024 anyway so this wasn’t an issue for running typical apps)

I didn’t use WireShark back then, really. I think I just ran something like

sudo lsof -nP -iTCP -sTCP:LISTEN

which showed me a bunch of port traffic (mostly just harmless language servers).

You don’t have to dive to deep into all the “egress” and “ingress” and whatnot unless you’re doing something special. Or your software uses a weird port. (LocalSend lol)

You prevent them from waking up earlier, huh? Youngsters definitely have infinite energy at the odder times. I sure did my fair share of waking up early to increase the fraction of the day I gamed for.

This is a pretty convincing stance in favor of timers, actually. The idea of transferring video-watching from the iPad to the television is a friendly way to prevent an unchecked iPad-kid situation. My opinion shifted a little. :P

Do you have timers on the iPad for any mobile games, or just YouTube?

Your stance on the age-inappropriate reminds me of what @southsamurai commented! I’ve definitely seen a lot of “Don’t protect your child too hard by concealing the inappropriate from them” lately. I wonder how many modern parents are shifting to that ideal.

“Kids respond well to being treated seriously.” (from Vox, “Why safe playgrounds aren’t great for kids”, 3:17)

You mention that there are some cases where parental controls would help, but you also mentioned that, (1) regarding inapproriacy, you shouldn’t baby children and (2) regarding screen time, BananaKing’s take is the best route. Doesn’t that cover both aspects of where parental controls would be used? What cases would you say parental controls would help with?

That makes a lot of sense! Definitely much less friction in that approach – clearly delineated boundaries, decently low pressure, and secure trust without the ethical quandary.

…don’t attempt technical solutions to administrative problems.

Good advice.

Thanks for the in-depth response!

My parents “let health class do the job” and kept their eyes closed – regarding porn – so your punishmentless one-on-ones are new and interesting to me. Trust is definitely the most vital here.

Someone downvoted you but I’d like to hear differing opinions, so I upvoted.

By teaching the child how to circumvent these measures, what do you mean by that? Do you teach them to break your router rules? And when would you do that – when they appear mature enough to you? Of course, there’s the chance that they don’t like tech.

Imaginarily, my kid and I could have some arms-race fun, but I don’t know how realistic that is.

Hah! Faraday Cage, nice. Location spoofs too!

Interestingly, the route my mother took was, when I went off to college, she asked me if she could track me. We discussed privacy (who has my location?) and security (Is the protection endeavor proportionate to the threat chance?), and I demonstrated a basic location spoof (I am in control of my data).

In the end, we agreed to allow some monitoring.

That’s different of course – it’s a rare (I think) circumstance and consent, and isn’t quite parental control, as both parties had equal grounds to form said consent.

I wonder if such a conversation could happen among younger children. 12 to 13 y/os maybe? Depends of course.

That’s fair. Subscribing to a singular doctrine doesn’t make sense, and there are lots of culture gaps to acknowledge.

What about for you specifically? To what extent would you/do you digitally monitor your kids (if you have any or not)?

Hahaha, I’m overjoyed that you’re joyful! Net positive.

You aren’t alone on the absolutivity thing, autism or not. Absolute blanket statements have always made me uncomfortable. With stuff like

Leftists are all self-righteous.

American Republicans are all backwards.

Christians are cultists.

and the obvious accompanying internet convoy of

Clicks -> discussion -> algorithm promotion -> pipeline -> opinions upgrade from “bad cases of” to “lots of them” to “all of them”

not only sacrifice nuance and make it easy to Just Stay Agreeable, but discourage any questioning of the status quo.

Of course, one can argue that this is an online thing, an archetype of Reddit and Tumblr and Twitter spaces, but now I don’t even question these things aloud in real life. I don’t want to be seen as

The “see-from-all-sides” guy is obviously a closeted bigot lmao.

in a place where reputation actually matters, but it’d be easy to lump me in like that. Nuancelessness is simple, kneejerk, catchy…

Now, my point. I don’t think I’m making this up, and maybe I’ll get downvoted for this diatribe but I feel like disagreeing in real life has become much riskier. Am I sounding cynical again? As a solution (solutions aren’t cynical right?), optimally I’d want a way to discuss across views in an educated, “I’ll hear you out” way, but the real-life risk outweighs reward, and online spaces bubble-up really easily. Counterpoint: r/changemyview has put up promising resistance.

The other day I saw this business school complaint discussion. It’s on a kind of out-of-touch subreddit, but what do you think of its survivalistic smile-and-wave message?

Sorry for being so negative =.=

Wow, really interesting take! Made me realize…

Wow. I’m the baddie.

I’ve done my fair share of admit “AI bad, Twitter bad” and felt that shift towards cynicism, I admit – but 'til now I couldn’t see my own hand in the subject. I’d worked hard over the years to avoid the more overt frustrator communities like r/facepalm, but as much as I’d like to presume… I’m clearly not doing so much better after all.

That ambient cynicism… I still perpetuated it, I still wrote those kneejerk comments, I still went on the preordained in-group spiel of valuelessnesses.

It’s so easy to insult the things you mentioned, to partake in the “I Want to be Agreeable and Get Points” mindset and dunk. But it’s precluding our ability to experience the things you mentioned in para #4. I want more of para #4 in my life… I’ll need to think things differently.

Idk. Thanks for the meaningful substance. :p

Oh I love the “walk me through what I’m about to do” concept. Dry runs should be more common – especially in shell scripts…

The world would be a better place if every install.sh had a --help, some nice printf’s saying “Moving this here” / “Overwrite? [Y/N]”, and perhaps even a shoehorned-in set -x.

Hope your r/w wasn’t eaten up by the subfolder incident (that I presume happened) :P

The depth of a dive is always delightful! Does K8s have a solid use-case for the project or did you just sK8 for fun?

Hah, stochastic parrots.

Makes me wonder. Every laziness I’ve had with the vector guessers, I’ve seen an exact counterweight.

One, you can invoke more often (throw ChatGPT configs against the wall until it doesn’t error); the other you can invoke more deeply. So I can’t help but wonder – when we cancel out all the terms – if the timesaving sum is positive or negative. ¯\_(ツ)_/¯

Yeah, it’s pretty funny how distros just passed each other by like that. Back then it was Debian that was regarded as the hyper-poweruser distro:

The reason I havn’t used Debian is because I can’t install it. “This guy is totally clueless” you might think. My only response is that I’m writing this on a Gentoo box that I have installed myself.

And then now there are plenty of people reading this thread who liked Windows 7. As time passed, their grade on the ease-of-use of A passed the don’t-get-in-my-way of B, and a load of Windows 10ers jumped ship to Linus & Friends, the last place their Windows 7 selves would have expected to go. Always a reminder that the end of history isn’t now.

Bending the question a little but my second “first impression” of Arch’s “simplicity” surprised me the most.

I was running Gentoo for a while before deciding to move back, and I was surprised that somehow I had

• saved space
• gotten faster at doing new things (…)
• didn’t lose any boot speed or anything like that

Granted, I had jumped on Gentoo because of misconceptions (speed, ricing, the idea that I needed USE flags), but going back, I saw things more clearly:

• the AUR being basically a shell script download + 300 MB of base-devel was simpler and more space-efficient than /var/db/repos (IIRC – since the portage and guru ebuilds were all held locally anyway after syncing, an on-demand AUR saved space).
  • the simple automatic build file audits on Arch felt more clean to me. I like checking my build files; had to make a script for the guru ebuild equivalent (but maybe there’s a portage arg i missed somewhere – wouldn’t be the first time)
• Arch repos separating parts of packages in case you don’t need some part (like splitting some font into its languages, or splitting a package into x and x-doc and x-perl) was almost a simple USE flag-ish thing already
• /etc/makepkg.conf was Gentoo’s make.conf. And its build flags looked similar to the CFLAGS I manually set up anyway.
• My boot time (btrfs inside LUKS with encrypted /boot) was the same with systemd vs. openrc
• I realized I liked systemd (because of the completeness of my systemctl muscle memory, like with systemctl status and journalctl, or managing systemd-logind instead of using seatd and friends).

Not bashing on Gentoo or anything, but it’s when I realized why Arch was “simple.” Even me sorely missing /etc/portage/patches was quelled by paru -S <pkg> --fm vim --savechanges.

And Arch traveling at the speed of simplicity even quantifiably helped: Had to download aur/teams the other day with nine-minute warning.

¯\_(ツ)_/¯

Successful GitHub pulls are rare; more often, patches live like this. You’re better off contacting the maintainer of the subsystem you’re editing. See the official submission guide.

Not to be dejecting!

Fun investigations (tac and factor), things I never bothered to check the existence of until now (install -s), and fundamentals I glossed over ([). Pretty fun read.

And of course,

And that’s why the ‘$cmd’ command is my favourite Linux command.