shadowtofu

But Google also stopped publishing device trees for their devices. And they are withholding the Android source code until release. Android is being developed in secrecy behind closed doors now. Public access to security patches is delayed by four months.

Google is increasing their chokehold on the platform. Development and maintenance of custom ROMs is getting more and more difficult. More and more vendors such as Samsung and Xiaomi are removing the possibility to unlock the bootloader. Installing a custom ROM was never a mainstream thing, and it is increasingly becoming impossible for most people.

I did the same last week (and am still in the process of setting up more services for my new server). I have a few VMs (running Fedora CoreOS, with podman preinstalled), and I use ansible to push my quadlets, podman secrets, and static configuration files. Persistent data volumes get mounted using virtiofs from the host system, and the VMs are not supposed to contain any state themselves. The VMs are also provisioned using using ansible.

Do you use ansible to automatically restart changed containers after pushing your changes? So far, I just trigger a systemctl daemon-reload, but trigger restarts manually (which I guess is fine for development).

Around 2010, I was using Pidgin to communicate with friends, a universal client to connect to instant messaging platforms. At the time, this would have been MSN, ICQ, AOL messenger, Skype, etc. Even facebook was running its own XMPP server that you could connect to, and communicate with your facebook friends! Pre-enshittification-times were really amazing.

In this pre-Snowden era, end-to-end encryption was pretty much unheard of, TLS was used for “serious stuff” like online banking. Still, Pidgin had a plugin implementing OTR messaging, which is essentially an ancestor of the Signal protocol. It worked by sending the encrypted messages as plain text messages over any supported service. Me and my friend (who, I believe, was using a different non-Pidgin MacOS client?) would talk to each other using OTR-encrypted messages via Facebook Messenger. Key verification was not a solved issue and had to be done manually using a different channel. And when you opened Facebook itself to look at your messages, all you could see was a bunch of base64(?)-encoded gibberish. Fun times.

The only way to outlaw encryption is to outlaw mathematics. If two (or more) persons want to exchange messages securely, they can and will always be able to do so. If I cannot trust my messaging application, I will find a way that I do not have to trust it, and people that have something to hide even more so. Encryption is not a loophole for criminals; it is a bulwark against tyranny. This proposal will solve no problems, but establish a authoritarian surveillance state.

Yes, absolutely. Right now, SSDs are probably superior in comparison to HDDs in every category except for price (and long-term data integrity when switched off). But when you consider large parity raids and take into account the cost of electricity, even the price difference might only be small, making SSDs even more attractive.

Hmm. Let’s say I add 6 SSDs, 2TB each, for a total of 600€. In a RAID6 configuration, that gives me 8TB of storage. Compare that to a classical NAS with 2×8 TB HDDs for a total of 350€.

The HDDs will draw around 4W idle each, 8W in total. Assuming 0.3€/kWh, over a span of 5 years, that is approximately 100€. The power consumption of the SSDs will be negligible.

So, just in terms of storage, the SSD solution is around 33% more expensive over 5 years. If you include the cost of the NAS itself, the price increment is even less noticeable.

Very helpful. I was just looking at this the other day.

I just checked, and I have connectivity while on cellular. Maybe (just wild speculation) your mobile network is IPv6-only? Android (not Linux) should list 192.0.0.4 as an IP address in that case.

Yes, Linux is running in a VM, and the network interface is a virtualized veth interface connected to a host bridge. The host android system has IP address 192.168.0.1, and this network interface is called avf_tap_fixed (as seen from termux).

While this is very exciting, I just tried it, and the network connectivity seems to be broken. No IPv6.