higmanschmidt's recent activity

  1. Comment on <deleted topic> in ~tech

    higmanschmidt
    Link Parent
    Have you tried Emacs in WSL2? I used Emacs almost exclusively for 2+ years, and it was much faster running in WSL2 with X forwarding to X410 or Xming instead of native in Windows. I’m now using...

    Have you tried Emacs in WSL2? I used Emacs almost exclusively for 2+ years, and it was much faster running in WSL2 with X forwarding to X410 or Xming instead of native in Windows.

    I’m now using Obsidian, mostly because of a career change where I’m no longer in front of a computer all the time, and I was losing the muscle memory for how to do things in Emacs.

  2. Comment on What operating system do you run your home servers on? in ~tech

    higmanschmidt
    Link Parent
    Are you referring to the Docker Compose Manager plugin? Interested in moving my Unraid docker setup to a better defined environment than my current manually configured containers.

    Are you referring to the Docker Compose Manager plugin? Interested in moving my Unraid docker setup to a better defined environment than my current manually configured containers.

    1 vote
  3. Comment on What are some more obscure hobbies you enjoy? in ~hobbies

    higmanschmidt
    Link Parent
    Me too. Had an amazing day a few weeks ago using a my own variation of a pattern. When you make up your own pattern, or twist and it works out, I love that!

    Me too. Had an amazing day a few weeks ago using a my own variation of a pattern. When you make up your own pattern, or twist and it works out, I love that!

    1 vote
  4. Comment on Bags and backpacks! What do you look for, what do you use? in ~life.style

    higmanschmidt
    Link Parent
    I’m also a big fan of MOLLE. I looked for a long time before I finally found the Tasmanian Tiger Assault Pack 12 which I think doesn’t look too military in the black color. I’ve been extremely...

    I’m also a big fan of MOLLE. I looked for a long time before I finally found the Tasmanian Tiger Assault Pack 12 which I think doesn’t look too military in the black color. I’ve been extremely pleased with the quality of construction and the durability of the zippers.

  5. Comment on Apollo will close down on June 30th. Reddit’s recent decisions and actions have unfortunately made it impossible for Apollo to continue. Thank you so, so much for all the support over the years. in ~tech

    higmanschmidt
    Link Parent
    Ok ok, I’ll get my home lab back up and running and look into the current batch of self hosted rss readers. Any suggestions on that front, since you’ve been so helpful?

    Ok ok, I’ll get my home lab back up and running and look into the current batch of self hosted rss readers. Any suggestions on that front, since you’ve been so helpful?

    2 votes
  6. Comment on Apollo will close down on June 30th. Reddit’s recent decisions and actions have unfortunately made it impossible for Apollo to continue. Thank you so, so much for all the support over the years. in ~tech

    higmanschmidt
    Link Parent
    Ah I missed that it was Doctorow in the wired link. That makes a lot of sense. His work seems to resonate with me. I need to figure out a good rss system or something similar so I can stop getting...

    Ah I missed that it was Doctorow in the wired link. That makes a lot of sense. His work seems to resonate with me. I need to figure out a good rss system or something similar so I can stop getting my news from an algorithm.

    3 votes
  7. Comment on Apollo will close down on June 30th. Reddit’s recent decisions and actions have unfortunately made it impossible for Apollo to continue. Thank you so, so much for all the support over the years. in ~tech

    higmanschmidt
    Link Parent
    Whoa that link about enshittification is a great essay. That’s worth it’s own post. It puts into words something I’ve struggled to quantify or describe on my own.

    Whoa that link about enshittification is a great essay. That’s worth it’s own post. It puts into words something I’ve struggled to quantify or describe on my own.

    4 votes
  8. Comment on Please post your podcast preferences in ~hobbies

    higmanschmidt
    Link
    If anybody is into fly fishing I have really liked the Troutbitten podcast. I’ve learned so much from those guys, and the Troutbitten website is a treasure trove of great information.

    If anybody is into fly fishing I have really liked the Troutbitten podcast. I’ve learned so much from those guys, and the Troutbitten website is a treasure trove of great information.

  9. Comment on Musk promises manufacturing, self-driving, battery breakthroughs—and profits in ~transport

    higmanschmidt
    Link
    For anyone else that want's to watch it, the shareholder meeting can be streamed from here.

    For anyone else that want's to watch it, the shareholder meeting can be streamed from here.

  10. Comment on Firefox 62 Nightlies: Improving DNS Privacy in Firefox in ~comp

    higmanschmidt
    Link Parent
    I think you're right for cases where the all the subdomains share a nameserver, but in the cases where subdomains do not have the same nameserver, your still have to connect to each nameserver as...

    I think you're right for cases where the all the subdomains share a nameserver, but in the cases where subdomains do not have the same nameserver, your still have to connect to each nameserver as you work your way up the QNAME ladder with or without QNAME Minimization. I had to think through the different scenarios. Here's a link to what I came up with.

    2 votes
  11. Firefox 62 Nightlies: Improving DNS Privacy in Firefox

    Firefox recently introduced DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) in nightly builds for Firefox 62. DoH and TRR are intended to help mitigate these potential privacy and...

    Firefox recently introduced DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) in nightly builds for Firefox 62.

    DoH and TRR are intended to help mitigate these potential privacy and security concerns:

    1. Untrustworthy DNS resolvers tracking your requests, or tampering with responses from DNS servers.
    2. On-path routers tracking or tampering in the same way.
    3. DNS servers tracking your DNS requests.

    DNS over HTTPs (DoH) encrypts DNS requests and responses, protecting against on-path eavesdropping, tracking, and response tampering.

    Trusted Recursive Resolver (TRR) allows Firefox to use a DNS resolver that's different from your machines network settings. You can use any recursive resolver that is compatible with DoH, but it should be a trusted resolver (one that won't sell users’ data or trick users with spoofed DNS). Mozilla is partnering with Cloudflare (but not using the 1.1.1.1 address) as the initial default TRR, however it's possible to use another 3rd party TRR or run your own.

    Cloudflare is providing a recursive resolution service with a pro-user privacy policy. They have committed to throwing away all personally identifiable data after 24 hours, and to never pass that data along to third-parties. And there will be regular audits to ensure that data is being cleared as expected.

    Additionally, Cloudflare will be doing QNAME minimization where the DNS resolver no longer sends the full original QNAME (foo.bar.baz.example.com) to the upstream name server. Instead it will only include the label for the zone it's trying to resolve.

    For example, let's assume the DNS resolver is trying to find foo.bar.baz.example.com, and already knows that ns1.nic.example.com is authoritative for .example.com, but does not know a more specific authoritative name server.

    1. It will send the query for just baz.example.com to ns1.nic.example.com which returns the authoritative name server for baz.example.com.
    2. The resolver then sends a query for bar.baz.example.com to the nameserver for baz.example.com, and gets a response with the authoritative nameserver for bar.baz.example.com
    3. Finally the resolver sends the query for foo.bar.baz.example.com to bar.baz.example.com's nameserver.
      In doing this the full queried name (foo.bar.baz.example.com) is not exposed to intermediate name servers (bar.baz.example.com, baz.example.com, example.com, or even the .com root nameservers)

    Collectively DNS over HTTPs (DoH), Trusted Recursive Resolver (TRR), and QNAME Minimization are a step in the right direction, this does not fix DNS related data leaks entirely:

    After you do the DNS lookup to find the IP address, you still need to connect to the web server at that address. To do this, you send an initial request. This request includes a server name indication, which says which site on the server you want to connect to. And this request is unencrypted.
    That means that your ISP can still figure out which sites you’re visiting, because it’s right there in the server name indication. Plus, the routers that pass that initial request from your browser to the web server can see that info too.

    So How do I enable it?
    DoH and TRR can be enabled in Firefox 62 or newer by going to about:config:

    • Set network.trr.mode to 2
      • Here's the possible network.trr.mode settings:
        • 0 - Off (default): Use standard native resolving only (don't use TRR at all)
        • 1 - Race: Native vs. TRR. Do them both in parallel and go with the one that returns a result first.
        • 2 - First: Use TRR first, and only if the name resolve fails use the native resolver as a fallback.
        • 3 - Only: Only use TRR. Never use the native (after the initial setup).
        • 4 - Shadow: Runs the TRR resolves in parallel with the native for timing and measurements but uses only the native resolver results.
        • 5 - Off by choice: This is the same as 0 but marks it as done by choice and not done by default.
    • Set network.trr.uri to your DoH Server:
    • The DNS Tab on about:networking will show which names were resolved using TRR via DoH.

    Links:
    A cartoon intro to DNS over HTTPS
    Improving DNS Privacy in Firefox
    DNS Query Name Minimization to Improve Privacy
    TRR Preferences

    I'm not affiliated with Mozilla or Firefox, I just thought ~ would find this interesting.

    13 votes
  12. Comment on Let's talk podcasts. What are some that you like and why? in ~talk

    higmanschmidt
    Link
    The Modern Maker - Podcast about making things by hand. From wood, to concrete, to leather. Reclaimed Audio - Podcast about making with reclaimed materials. I'd like to find some more woodworking...

    The Modern Maker - Podcast about making things by hand. From wood, to concrete, to leather.

    Reclaimed Audio - Podcast about making with reclaimed materials.

    I'd like to find some more woodworking / making podcasts if anybody has suggestions!

  13. Comment on What are your hobbies? in ~talk

    higmanschmidt
    Link Parent
    What are you doing when volunteering with wildlife? Sounds interesting

    What are you doing when volunteering with wildlife? Sounds interesting

  14. Comment on What are your hobbies? in ~talk

    higmanschmidt
    Link
    Woodworking - Recently I sketched out a couple pieces of furniture for our new house. I'm also planning out the new garage / workshop space. Automotive repair - Cursing at our cars, truck, and...

    Woodworking - Recently I sketched out a couple pieces of furniture for our new house. I'm also planning out the new garage / workshop space.

    Automotive repair - Cursing at our cars, truck, and motorcycles. I've got a Subaru that needs a new clutch, a Tacoma that needs a seal replaced in the transfer case and a custom transfer case actuator built. One motorcycle is about to get a larger front sprocket, the other motorcycle doesn't run right with pod style air filters, and needs the airbox put back on so it will run right.

    Gardening - We're in the process of planning a garden and patio space. That's going to involve recovering the cushions of our patio furniture, I've been trying to figure out if we should try to do it ourselves or get an upholstery place to do it.

    I also can't wait to get back into gaming. Once we move I'll have the space to setup my PC again!

    2 votes