![](/static/253f0d9b/assets/icons/icon-96x96.png)
![](https://sh.itjust.works/pictrs/image/c38fd5ff-821e-45c9-b2ee-957d0321d2e2.webp)
I haven’t started using passkeys yet because I haven’t looked into them. Sell me on them?
I haven’t started using passkeys yet because I haven’t looked into them. Sell me on them?
Looks like it’s mostly for live TV? I haven’t had cable in a long time, don’t really need to record things.
Recurring incidents like these raise the question, how does one strike a balance?
Relentlessly reporting theoretical vulnerabilities can leave open-source developers, many of who are volunteers, exhausted from triaging noise.
On the flip side, would it be ethical if security practitioners, including novices, sat on what they thought was a security flaw—so as not to inconvenience the project maintainers?
This was already answered in the article: verify your security findings. Make a POC that actually exploits the vulnerability, then submit it with your report.
I like getting Bee-link boxes - they can be upgraded to 64gb RAM, have plenty of CPU, and can have two drives. I run Proxmox on them and make VMs that then run my services in docker.
There’s been a lot of talk about N100s as well. I haven’t looked into them much, but I assume they should be similar. Looks like their max memory is 16gb. I’d stick with Bee-link.
I’m in this comment.
And you can self host it!
How are you persisting Immich’s database?
This feels like hell to me. Is this hell?
If you’re not paying for a service, you’re likely being monetized by watching ads or providing personal data to companies that don’t necessarily have your best interests at heart.
This is a bit out of date. Nowadays, you pay for the service and are monetized by watching ads and providing personal data to companies that definitely don’t have your best interests at heart.
Okay, so it’s just like Yubikey-type stuff? I’ve thought about that before but it seems very risky - they recommend you get two and set both of them up so you have a backup, but that would require all websites to support that, right?
I’m down for using BitWarden, though, if I can substitute it for physical keys.